Public beta. SignalSpore is a decision-support registry, not certification or security assurance. Evidence may be incomplete; verify controls in your own environment. Methodology · Launch audit · Correction policy · Limitations
Agent rollout decision record

OpenAI Codex

Conditional pilot Pilot Codex on low-risk issues in non-production repos; require scoped GitHub access, protected branches, CI, and human review before merge.

Verdict

Conditional pilot

Cloud coding and PR handoff can be piloted after repo scope, branch policy, test credentials, and review ownership are set.

Decision depth: AI-assisted launch evidence record

Evidence audit: AI-assisted evidence audit

Permission footprint

Repository readexplicitly evidenced
File editsexplicitly evidenced
Shell commandsexplicitly evidenced
Pull requestsexplicitly evidenced
Issue/PR commentsnot evidenced
Network/API callsnot evidenced
Secrets/env varsexplicitly evidenced
Sandboxingnot evidenced
Permission controlsnot evidenced
Audit loggingnot evidenced
Enterprise adminnot evidenced
Branch isolationnot evidenced
Human approvalexplicitly evidenced
Production deploymentnot evidenced

Power level

Level 3: executes actions

Highest-risk evidenced power: shell command execution

Controls separated

Required before pilot — organization must implement

least-privilege permissions, isolated branch, protected branches, mandatory human review, sandbox, command allowlist, audit logs, separate test credentials

Vendor-native control evidenced

sandbox, branch isolation, security docs

Vendor-native control not evidenced

native sandbox, permission system, audit logs, admin console, SSO, data-retention settings

Pilot plan

Task class: Terminal and coding agent

Environment: non-production repository

Maximum access: shell command execution

Reviewer: engineering manager plus security reviewer

Success criteria: small reversible code changes pass tests and review without secret exposure

Stop conditions: unexpected command execution, broad repo access, failed audit trail, or reviewer cannot understand diffs

Prohibited: production deploys, unreviewed merges, secret access, large autonomous rewrites

Blocking issues and unknowns

Blockers: No blocking issue for the base record; run a personalized check for your environment.

Unknowns: Deployment and production-system access are not assumed by the record.

Limitations: Cloud execution changes data-boundary and repo-access review.

Claim-level evidence

reads repository

OpenAI Codex: reads repository

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Codex CLI (official-docs)

Excerpt: Start Codex in a repository to explore unfamiliar code, plan a change, edit files, and run your local development tools.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

edits files

OpenAI Codex: edits files

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Codex CLI (official-docs)

Excerpt: Inspect code, make changes, run commands, and automate repeatable work without leaving your terminal.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

runs commands

OpenAI Codex: runs commands

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Codex CLI (official-docs)

Excerpt: Inspect code, make changes, run commands, and automate repeatable work without leaving your terminal.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

supports human approval controls

OpenAI Codex: supports human approval controls

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Codex CLI (official-docs)

Excerpt: Steer the active turn, inspect commands and diffs as they appear, and keep follow-up work in the same session.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

opens pull requests

OpenAI Codex: opens pull requests

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Codex cloud (official-docs)

Excerpt: Inspect the summary and diff, request a follow-up, or open a pull request when the result is ready.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

accesses secrets or environment variables

OpenAI Codex: accesses secrets or environment variables

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Codex cloud (official-docs)

Excerpt: Configure any dependencies, tools, environment variables, or secrets the task needs.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

comments on issues or PRs

OpenAI Codex: comments on issues or PRs

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: OpenAI official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for comments on issues or PRs; treat as an evidence gap.

makes network/API calls

OpenAI Codex: makes network/API calls

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: OpenAI official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for makes network/API calls; treat as an evidence gap.

supports sandboxing

OpenAI Codex: supports sandboxing

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: OpenAI official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for supports sandboxing; treat as an evidence gap.

supports permission controls

OpenAI Codex: supports permission controls

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: OpenAI official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for supports permission controls; treat as an evidence gap.

provides audit logging

OpenAI Codex: provides audit logging

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: OpenAI official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for provides audit logging; treat as an evidence gap.

supports enterprise administration

OpenAI Codex: supports enterprise administration

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: OpenAI official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for supports enterprise administration; treat as an evidence gap.

Recent history

Last successful source check: 2026-07-15T05:34:48.576Z