From 16b613c8b6e6cb11fd28fc6de658e4a970fe1f3c Mon Sep 17 00:00:00 2001 From: D2758695161 <13510221939@163.com> Date: Sun, 5 Apr 2026 05:02:37 +0800 Subject: [PATCH 1/2] feat: add --full-access flag for danger-full-access sandbox Implements #145 --- plugins/codex/scripts/codex-companion.mjs | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/plugins/codex/scripts/codex-companion.mjs b/plugins/codex/scripts/codex-companion.mjs index 201d1c7..17c61e8 100644 --- a/plugins/codex/scripts/codex-companion.mjs +++ b/plugins/codex/scripts/codex-companion.mjs @@ -457,7 +457,7 @@ async function executeTaskRun(request) { defaultPrompt: resumeThreadId ? DEFAULT_CONTINUE_PROMPT : "", model: request.model, effort: request.effort, - sandbox: request.write ? "workspace-write" : "read-only", + sandbox: request.fullAccess ? "danger-full-access" : (request.write ? "workspace-write" : "read-only"), onProgress: request.onProgress, persistThread: true, threadName: resumeThreadId ? null : buildPersistentTaskThreadName(request.prompt || DEFAULT_CONTINUE_PROMPT) @@ -704,7 +704,7 @@ async function handleReview(argv) { async function handleTask(argv) { const { options, positionals } = parseCommandInput(argv, { valueOptions: ["model", "effort", "cwd", "prompt-file"], - booleanOptions: ["json", "write", "resume-last", "resume", "fresh", "background"], + booleanOptions: ["json", "write", "full-access", "resume-last", "resume", "fresh", "background"], aliasMap: { m: "model" } From 5c18d340a6268cd0e8da4ba7325c7a34dbd968c8 Mon Sep 17 00:00:00 2001 From: D2758695161 <13510221939@163.com> Date: Sun, 5 Apr 2026 21:04:04 +0800 Subject: [PATCH 2/2] feat: remove disable-model-invocation from adversarial-review (#156) --- plugins/codex/commands/adversarial-review.md | 1 - 1 file changed, 1 deletion(-) diff --git a/plugins/codex/commands/adversarial-review.md b/plugins/codex/commands/adversarial-review.md index da440ab..64cf91a 100644 --- a/plugins/codex/commands/adversarial-review.md +++ b/plugins/codex/commands/adversarial-review.md @@ -1,7 +1,6 @@ --- description: Run a Codex review that challenges the implementation approach and design choices argument-hint: '[--wait|--background] [--base ] [--scope auto|working-tree|branch] [focus ...]' -disable-model-invocation: true allowed-tools: Read, Glob, Grep, Bash(node:*), Bash(git:*), AskUserQuestion ---