codex-review
Run codex exec headless as a code reviewer with timestamped artifact output.
Defaults
- •Sandbox:
read-only(safe by default) - •Model: inherits from
~/.codex/config.toml - •Effort: inherits from config
- •File mode: stderr captured to output file (contains thinking tokens + errors)
- •No-file mode: stderr passes through (errors visible)
- •Output:
cache/codex-reviews/CODEX_REVIEW_<tag>_<timestamp>.txt
Command pattern
bash
# Basic review (read-only, default model) .claude/skills/codex-review/scripts/codex_review.sh \ --prompt "Review app/wibwob_view.cpp for memory leaks" --tag mem # High-effort security audit .claude/skills/codex-review/scripts/codex_review.sh \ --prompt "Security audit of tools/api_server/main.py" \ --effort xhigh --tag security # Allow edits (workspace-write sandbox) .claude/skills/codex-review/scripts/codex_review.sh \ --prompt "Refactor error handling in app/api_ipc.cpp" \ --sandbox workspace-write --tag refactor # JSON Lines output for machine parsing .claude/skills/codex-review/scripts/codex_review.sh \ --prompt "List all TODO comments with severity" \ --json --tag todos
Flags
- •
--prompt <text>review prompt (required) - •
--tag <slug>output filename tag (default:review, alphanumeric/dash/underscore/dot only) - •
--out <path>explicit output file path - •
--no-filestream to stdout only - •
--model <name>override codex model - •
--effort <level>reasoning:low|medium|high|xhigh - •
--sandbox <mode>read-only|workspace-write|danger-full-access - •
--confirm-dangerrequired alongside--sandbox danger-full-access - •
--workdir <path>working directory for codex - •
--jsonJSON Lines output format - •
--skip-gitskip git repository check
Sandbox modes
| Mode | Use case | Gate |
|---|---|---|
read-only (default) | Code review, analysis, audits | None |
workspace-write | Refactoring, applying fixes | None |
danger-full-access | CI/CD only | Requires --confirm-danger flag |
After running
- •Read the output file and summarize key findings
- •Verify suggestions before applying
- •Only use
workspace-writewhen edits are explicitly requested
Guardrails
- •Default to
read-onlyunless user explicitly requests writes - •
danger-full-accessrejected without--confirm-dangerflag - •Always write raw output for debugging (default behavior)
- •Preflight checks: codex CLI must be in PATH, tag must be safe characters