OpenAI Codex Operator

v1.0.1

Run OpenAI Codex CLI from OpenClaw for coding tasks in a target project directory. Use when the user asks OpenClaw to use Codex for implementation, debugging...

⭐ 2· 1.1k·1 current·2 all-time

bysaiph@cecwxf

Security Scan

VirusTotal

Suspicious

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name/description match the contents: SKILL.md, references, and example script all describe running the Codex CLI (codex / codex exec) in a specified workdir. No unrelated binaries, env vars, or config paths are requested.

ℹ

Instruction Scope

Instructions stay within the stated purpose (running Codex in a target repo, foreground/background modes, polling). They do not instruct reading arbitrary system files or unrelated credentials. Note: the skill does not provide guidance about avoiding sending secrets to Codex — the CLI may transmit repository contents to OpenAI during its operation, so users should be warned to scrub sensitive data before running.

✓

Install Mechanism

No install spec is provided (instruction-only), and the included script only instructs installing the official npm package (@openai/codex) if codex is missing. There are no downloads from untrusted URLs or extract actions.

✓

Credentials

The skill declares no required environment variables or credentials. It does mention Codex/CLI authentication in references (ChatGPT login or API key), which is expected for this integration and is not requested by the skill itself.

✓

Persistence & Privilege

The skill does not request always:true, does not modify other skills or global agent settings, and has no install-time persistence. Autonomous invocation is allowed (platform default) but is not combined with other concerning privileges.

Assessment

This skill appears to do only what it claims: run the local Codex CLI against a repository. Before installing or invoking it, ensure you understand that the Codex CLI will contact OpenAI and may send repository contents (including secrets or PII) to OpenAI; remove or redact sensitive files or use a sanitized checkout. Also confirm you trust the locally installed `@openai/codex` package and its authentication mechanism (ChatGPT login or API key) before granting access.

Like a lobster shell, security has layers — review code before you run it.

latestvk975s2va0escfk0vj9pr0z9bz181a87f

1.1kdownloads

2stars

2versions

Updated 3h ago

v1.0.1

MIT-0

OpenAI Codex Operator

Use this skill to reliably call Codex CLI from OpenClaw.

Core rules

Verify Codex CLI exists (codex --version) before first task.
Always run Codex through OpenClaw exec with pty:true.
Always set explicit workdir to the target repository.
For long tasks, use background:true and track via process.
Report clear milestones: started, waiting-input, finished/failed.

Execution patterns

One-shot coding task

Use:

exec.command: codex exec "<task>"
exec.pty: true
exec.workdir: <repo path>

Interactive session

Use:

exec.command: codex
exec.pty: true
exec.workdir: <repo path>

Long-running background task

Start with exec(background:true, pty:true, workdir, command:"codex exec ...")
Record returned sessionId.
Poll with process action:poll.
Read output with process action:log.
If Codex asks for input, use process action:submit.

Recommended prompts

"Implement <feature> with tests, run tests, and summarize changed files."
"Find root cause for failing CI in this repo and propose minimal fix."
"Review current branch diff and list high-risk issues first."

Guardrails

Do not claim files were changed unless logs show completion.
If codex is missing or auth fails, return exact remediation steps.
Keep OpenClaw tool config (pty/workdir/background) separate from CLI args.

References

references/codex-doc-summary.md
references/codex-usage-recipes.md
scripts/run-codex-example.sh

Comments

Loading comments...