History

Michael Bolin 67975ed33a refactor: inline sandbox type lookup in process_exec_tool_call (#7122 ) `process_exec_tool_call()` was taking `SandboxType` as a param, but in practice, the only place it was constructed was in `codex_message_processor.rs` where it was derived from the other `sandbox_policy` param, so this PR inlines the logic that decides the `SandboxType` into `process_exec_tool_call()`. --- [//]: # (BEGIN SAPLING FOOTER) Stack created with [Sapling](https://sapling-scm.com). Best reviewed with [ReviewStack](https://reviewstack.dev/openai/codex/pull/7122). * #7112 * __->__ #7122		2025-11-21 22:53:05 +00:00
..
src	chore: rework tools execution workflow (#5278 )	2025-10-20 20:57:37 +01:00
tests	refactor: inline sandbox type lookup in process_exec_tool_call (#7122 )	2025-11-21 22:53:05 +00:00
Cargo.toml	chore: unify cargo versions (#4044 )	2025-09-22 16:47:01 +00:00
README.md	fix: overhaul how we spawn commands under seccomp/landlock on Linux (#1086 )	2025-05-23 11:37:07 -07:00

codex-linux-sandbox

This crate is responsible for producing:

a codex-linux-sandbox standalone executable for Linux that is bundled with the Node.js version of the Codex CLI
a lib crate that exposes the business logic of the executable as run_main() so that
- the codex-exec CLI can check if its arg0 is codex-linux-sandbox and, if so, execute as if it were codex-linux-sandbox
- this should also be true of the codex multitool CLI