Language: 日本語English

codex-security Codex Plugin

Author
OpenAI
Category
Security
Topics
Security, Auth & Compliance
Version
0.1.11
First seen
2026-07-12
Last confirmed
2026-07-13
Explanation last updated
2026-07-12

The explanation below is AI-generated. Please verify it against the sources.

codex-security is an official OpenAI plugin (version 0.1.11) that packages reusable Codex workflows for security scanning, analysis, validation, and investigation across code, diffs, and related artifacts. It is installed into Codex and offers an interactive, read/write capability set, with default prompts for running a scan, a diff scan, or triaging existing findings. A related but separate offering, Codex Security cloud, is described on the same homepage as a research-preview feature that scans connected GitHub repositories through Codex cloud. According to the plugin manifest, the license is Proprietary and the developer/publisher is OpenAI.

Overview

codex-security is a Codex plugin (category: Security) that adds security-focused workflows to Codex tasks, such as scanning a codebase or diff, reviewing changes, and triaging or fixing findings. It runs inside a Codex task, as distinguished on the homepage from the separately described Codex Security cloud, which scans connected GitHub repositories via Codex cloud and is currently in research preview.

What you can do with codex-security

  • Run a security scan on a repository or a scoped folder
  • Run a deep security scan for a more comprehensive review that takes longer
  • Review code changes before merging a pull request or branch
  • Triage a backlog of existing security findings
  • Fix and verify approved findings with bounded patches
  • Export or track findings as portable artifacts or approval-gated tracking destinations

Sources

Original description (English)

Codex Security workflows for security scans, analysis, and investigation.

History of codex-security

Back to list