Codex danger-full-access sandbox
sandbox:codex-danger-full-access
Sandboxlifecycle/sandboxes/codex-sandboxes.yaml·Open in Graph → {
"id": "sandbox:codex-danger-full-access",
"_kind": "Sandbox",
"_file": "lifecycle/sandboxes/codex-sandboxes.yaml",
"_cluster": "lifecycle",
"attributes": {
"displayName": "Codex danger-full-access sandbox",
"filesystemPolicy": "read-write",
"networkPolicy": "full",
"description": "Codex CLI sandbox mode `danger-full-access`: commands run without Codex filesystem or network sandbox restrictions and should be used only where the surrounding environment supplies the required isolation.\n",
"fsAllowList": [],
"fsDenyList": [],
"netAllowList": [],
"netDenyList": [],
"execAllowedBinaries": [],
"execDeniedBinaries": [],
"envVarScope": "inherit-all",
"secretAccessScope": "all",
"auditLogPolicy": "structured-jsonl",
"policyEvaluationPoint": "post-call-attestation"
},
"outgoingEdges": [
{
"from": "sandbox:codex-danger-full-access",
"to": "layer:9-sandbox",
"kind": "realizes",
"attributes": {}
}
],
"incomingEdges": [
{
"from": "claim:codex-research-sandbox-modes",
"to": "sandbox:codex-danger-full-access",
"kind": "about_subject"
}
]
}