Post Reboot Intelligence for the world after the reset
Back to News
News Item May 13, 2026 1 min read

OpenAI details the Windows sandbox it built for Codex

Category
OpenAI

OpenAI published a technical write-up on the Windows sandbox it built for Codex. Windows users previously had to either approve nearly every command, including many reads, or run Codex with full local access.

The design target was a Windows sandbox that lets Codex read broadly, write inside the workspace, and block unapproved internet access with operating-system-enforced controls. OpenAI evaluated AppContainer, Windows Sandbox, and Mandatory Integrity Control and rejected each for Codex’s open-ended developer workflow requirements.

The first prototype used synthetic SIDs and write-restricted tokens to control filesystem writes. The design granted writes to the current working directory and configured writable roots while explicitly denying writes to paths such as `.git`, `.codex`, and `.agents` inside those roots.

The early network-control layer used fail-closed environment overrides such as proxy poisoning and Git transport restrictions, but that layer remained advisory because child processes could bypass it or open sockets directly.

Source: OpenAI — https://openai.com/index/building-codex-windows-sandbox/

May 13, 2026

More From This Day

10:55 pm · General GitHub adds Copilot flex allotments and launches a $100 Max plan 10:55 pm · Google Google DeepMind outlines an AI-enabled mouse pointer for Chrome and Googlebook 10:55 pm · Google Google Gemini rollouts preview likely features for Apple’s new Siri 10:55 pm · xAI xAI expands Grok into Wall Street firms