core/core-agent-ide
8
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
core-agent-ide/docs
History
Michael Bolin bef36f4ae7
feat: if .codex is a sub-folder of a writable root, then make it read-only to the sandbox (#8088) 
In preparation for in-repo configuration support, this updates
`WritableRoot::get_writable_roots_with_cwd()` to include the `.codex`
subfolder in `WritableRoot.read_only_subpaths`, if it exists, as we
already do for `.git`.

As noted, currently, like `.git`, `.codex` will only be read-only under
macOS Seatbelt, but we plan to bring support to other OSes, as well.

Updated the integration test in `seatbelt.rs` so that it actually
attempts to run the generated Seatbelt commands, verifying that:

- trying to write to `.codex/config.toml` in a writable root fails
- trying to write to `.git/hooks/pre-commit` in a writable root fails
- trying to write to the writable root containing the `.codex` and
`.git` subfolders succeeds
2025-12-15 22:54:43 -08:00
..
advanced.md doc: fix relative links and add tips (#7319) 2025-11-26 09:35:08 -08:00
agents_md.md docs: fix agents fallback example (#5396) 2025-10-22 11:32:35 -07:00
authentication.md chore: subject docs/*.md to Prettier checks (#4645) 2025-10-03 11:35:48 -07:00
CLA.md chore: subject docs/*.md to Prettier checks (#4645) 2025-10-03 11:35:48 -07:00
config.md feat: if .codex is a sub-folder of a writable root, then make it read-only to the sandbox (#8088) 2025-12-15 22:54:43 -08:00
contributing.md remove release script (#7885) 2025-12-11 13:40:48 -08:00
example-config.md docs: document enabling experimental skills (#8024) 2025-12-14 14:34:22 -08:00
exec.md feat: arcticfox in the wild (#6906) 2025-11-19 16:31:06 +00:00
execpolicy.md fix: policy/*.codexpolicy -> rules/*.rules (#7888) 2025-12-11 14:46:00 -08:00
experimental.md docs: remove stale contribution reference (#5400) 2025-10-20 16:11:14 -07:00
faq.md docs: clarify xhigh reasoning effort on gpt-5.2 (#7911) 2025-12-11 21:18:47 -08:00
getting-started.md doc: fix relative links and add tips (#7319) 2025-11-26 09:35:08 -08:00
install.md docs: point dev checks to just (#7673) 2025-12-06 18:57:08 -08:00
license.md chore: subject docs/*.md to Prettier checks (#4645) 2025-10-03 11:35:48 -07:00
open-source-fund.md chore: subject docs/*.md to Prettier checks (#4645) 2025-10-03 11:35:48 -07:00
platform-sandboxing.md doc: fix relative links and add tips (#7319) 2025-11-26 09:35:08 -08:00
prompts.md Fix documentation errors for Custom Prompts named arguments and add canonical examples (#5910) 2025-11-15 09:25:46 -08:00
sandbox.md chore: update windows sandbox docs (#6872) 2025-11-18 21:02:04 -08:00
skills.md docs: document enabling experimental skills (#8024) 2025-12-14 14:34:22 -08:00
slash_commands.md docs: document enabling experimental skills (#8024) 2025-12-14 14:34:22 -08:00
windows_sandbox_security.md Windows: flag some invocations that launch browsers/URLs as dangerous (#7111) 2025-11-21 13:36:17 -08:00
zdr.md Never store requests (#3212) 2025-09-05 10:41:47 -07:00