The inner provider permission layer for Codex: configure sandbox_mode, network_access policy, and permission levels to match the strict-deny posture and explicit prohibitions enforced for Claude (#18).
Spec §3.2 (Codex permission/lockdown column), §7.4 (provider permission layer — inner), §7.5 (explicit prohibitions).
Acceptance criteria
Depends on: #70
The inner provider permission layer for Codex: configure
sandbox_mode,network_accesspolicy, and permission levels to match the strict-deny posture and explicit prohibitions enforced for Claude (#18).Spec §3.2 (Codex permission/lockdown column), §7.4 (provider permission layer — inner), §7.5 (explicit prohibitions).
Acceptance criteria
sandbox_modeandnetwork_accesspolicy set deny-by-default; only the Squid egress allowlist (§7.2) is reachable.run_session— not opt-in.Depends on: #70