Comment by justkez
12 hours ago
Genuinely curious if people would just let this rip with no obvious isolation?
I’m aware Mac OS has some isolation/sandboxes but without running codex via docker I wouldn’t be running codex.
(Appreciate there are still risks)
Shameless plug, but you can sandbox codex cli without a container using my macOS app: https://multitui.com
This is a really nice tool! (Also, I love the old school animated GIFs in the site's footer.)
(I work on Codex) We have a robust sandbox for macOS and Linux. Not quite yet for Windows, but working on that! Docs: https://developers.openai.com/codex/security
I wouldn't trust it. I'm moving to always running AI coding in a full VM.