← 返回 Skills 市场
1247
总下载
0
收藏
4
当前安装
2
版本数
在 OpenClaw 中安装
/install codex-sub-agents-1
功能描述
Use OpenAI Codex CLI for coding tasks. Triggers: codex, code review, fix CI, refactor code, implement feature, coding agent, gpt-5-codex. Enables Clawdbot to delegate coding work to Codex CLI as a subagent or direct tool.
使用说明 (SKILL.md)
OpenAI Codex CLI Skill
Use OpenAI Codex CLI (codex) for coding tasks including code review, refactoring, bug fixes, CI repairs, and feature implementation. Codex CLI runs locally on your machine with full filesystem access.
When to Use
- User asks for code changes, refactoring, or implementation
- CI/build failures need fixing
- Code review before commit/push
- Large codebase exploration or explanation
- Tasks requiring file editing + command execution
- When GPT-5-Codex model strengths are needed (code generation, tool use)
Installation & Auth
Codex CLI requires ChatGPT Plus/Pro/Business/Enterprise subscription.
# Install
npm i -g @openai/codex
# Authenticate (opens browser for OAuth)
codex login
# Or use API key
printenv OPENAI_API_KEY | codex login --with-api-key
# Verify auth
codex login status
Core Commands
Interactive Mode (TUI)
codex # Launch interactive terminal UI
codex "explain this codebase" # Start with a prompt
codex --cd ~/projects/myapp # Set working directory
Non-Interactive (Scripting)
codex exec "fix the CI failure" # Run and exit
codex exec --full-auto "add input validation" # Auto-approve workspace writes
codex exec --json "list all API endpoints" # JSON output for parsing
codex exec -i screenshot.png "match this design" # With image input
Session Management
codex resume # Pick from recent sessions
codex resume --last # Continue most recent
codex resume \x3CSESSION_ID> # Resume specific session
Slash Commands (In TUI)
| Command | Purpose |
|---|---|
/model |
Switch model (gpt-5-codex, gpt-5) |
/approvals |
Set approval mode (Auto, Read Only, Full Access) |
/review |
Code review against branch, uncommitted changes, or specific commit |
/diff |
Show Git diff including untracked files |
/compact |
Summarize conversation to free context |
/init |
Generate AGENTS.md scaffold |
/status |
Show session config and token usage |
/undo |
Revert most recent turn |
/new |
Start fresh conversation |
/mcp |
List configured MCP tools |
/mention \x3Cpath> |
Attach file to conversation |
Approval Modes
| Mode | Behavior |
|---|---|
| Auto (default) | Read/edit/run commands in workspace; asks for outside access |
| Read Only | Browse files only; requires approval for changes |
| Full Access | Full machine access including network (use sparingly) |
Key Flags
| Flag | Purpose |
|---|---|
--model, -m \x3Cmodel> |
Override model (gpt-5-codex, gpt-5) |
--cd, -C \x3Cpath> |
Set working directory |
--add-dir \x3Cpath> |
Add additional writable roots |
--image, -i \x3Cpath> |
Attach image(s) to prompt |
--full-auto |
Workspace write + approve on failure |
--sandbox \x3Cmode> |
read-only, workspace-write, danger-full-access |
--json |
Output newline-delimited JSON |
--search |
Enable web search tool |
Clawdbot Integration Patterns
Pattern 1: Direct exec Tool
Call Codex from Clawdbot's exec tool for coding tasks:
# In Clawdbot session
exec codex exec --full-auto --cd ~/projects/medreport "fix the TypeScript errors in src/components"
Pattern 2: Subagent Delegation
Spawn a coding subagent that uses Codex:
// In agents.defaults or per-agent config
{
agents: {
list: [
{
id: "coder",
workspace: "~/clawd-coder",
model: "openai-codex/gpt-5.2", // Uses Codex auth
tools: {
allow: ["exec", "read", "write", "edit", "apply_patch", "process"]
}
}
]
}
}
Pattern 3: CLI Backend Fallback
Configure Codex as a text-only fallback:
{
agents: {
defaults: {
cliBackends: {
"codex-cli": {
command: "codex",
args: ["exec", "--full-auto"],
output: "text",
sessionArg: null // Codex manages its own sessions
}
}
}
}
}
Pattern 4: MCP Server Mode
Run Codex as an MCP server for other agents:
codex mcp-server # Exposes Codex tools via stdio MCP
Clawdbot Config: OpenAI Codex Provider
Use your ChatGPT Pro subscription via the openai-codex provider:
{
agents: {
defaults: {
model: { primary: "openai-codex/gpt-5.2" },
models: {
"openai-codex/gpt-5.2": { alias: "Codex" },
"anthropic/claude-opus-4-5": { alias: "Opus" }
}
}
}
}
Auth syncs automatically from ~/.codex/auth.json to Clawdbot's auth profiles.
Code Review Workflow
# Interactive review
codex
/review # Choose: branch, uncommitted, or specific commit
# Non-interactive
codex exec "review the changes in this PR against main branch"
Multi-Directory Projects
# Work across monorepo packages
codex --cd apps/frontend --add-dir ../backend --add-dir ../shared
# Or in TUI
codex --cd ~/projects/myapp --add-dir ~/projects/shared-lib
Custom Slash Commands
Create reusable prompts in ~/.codex/prompts/:
\x3C!-- ~/.codex/prompts/pr.md -->
---
description: Prepare and open a draft PR
argument-hint: [BRANCH=\x3Cname>] [TITLE="\x3Ctitle>"]
---
Create branch `dev/$BRANCH` if specified.
Stage and commit changes with a clear message.
Open a draft PR with title $TITLE or auto-generate one.
Invoke: /prompts:pr BRANCH=feature-auth TITLE="Add OAuth flow"
MCP Integration
Add MCP servers to extend Codex:
# Add stdio server
codex mcp add github -- npx @anthropic/mcp-server-github
# Add HTTP server
codex mcp add docs --url https://mcp.deepwiki.com/mcp
# List configured
codex mcp list
Web Search
Enable in ~/.codex/config.toml:
[features]
web_search_request = true
[sandbox_workspace_write]
network_access = true
Then Codex can search for current docs, APIs, etc.
Best Practices
- Start with
/initto create AGENTS.md with repo-specific instructions - Use
/reviewbefore commits for AI code review - Set
/approvalsappropriately — Auto for trusted repos, Read Only for exploration - Use
--add-dirfor monorepos instead ofdanger-full-access - Resume sessions to maintain context across coding sessions
- Attach images for UI work, design specs, error screenshots
Example Workflows
Fix CI Failure
codex exec --full-auto "The CI is failing on the lint step. Fix all ESLint errors."
Refactor Component
codex exec --cd src/components "Refactor UserProfile.tsx to use React Query instead of useEffect for data fetching"
Implement Feature from Spec
codex exec -i spec.png --cd ~/projects/app "Implement this feature based on the design spec"
Code Review PR
codex exec "Review the diff between main and feature/auth branch. Focus on security issues."
Troubleshooting
| Issue | Solution |
|---|---|
| Auth fails | Run codex logout then codex login |
| Commands blocked | Check /approvals, may need --full-auto |
| Out of context | Use /compact to summarize |
| Wrong directory | Use --cd flag or check /status |
| Model unavailable | Verify subscription tier supports model |
References
安全使用建议
This skill mostly describes how to integrate a local Codex CLI, which is reasonable — but it also tells the system to read and copy local authentication files, run Codex with flags that grant full filesystem and network access, and connect to arbitrary MCP servers/URLs. Before installing or using: 1) Verify you actually have an official codex binary from a trusted source (npm package identity, checksums). 2) Do not enable --full-auto / danger-full-access / --yolo unless you fully trust the repository and workspace; prefer read-only or explicit approval modes. 3) Disable or review any automatic auth sync: inspect ~/.codex/auth.json and ~/.clawdbot auth-profiles.json and back them up before allowing automatic copy. 4) Avoid adding unknown MCP servers or external URLs (they can receive code or data). 5) If you need to proceed, limit Codex to a confined workspace and require manual approvals for writes and network access. If you want a safer recommendation, provide the precise tooling and constraints you require and ask for a version that uses read-only workflows and explicit token provisioning.
功能分析
Type: OpenClaw Skill
Name: codex-sub-agents-1
Version: 1.0.1
This skill integrates the powerful 'codex' CLI tool, which is described as having 'full filesystem access' and can operate with 'danger-full-access' (full machine and network access) or `--yolo` (no approvals or sandbox) modes. The `SKILL.md` and `clawdbot-integration.md` files instruct the AI agent to use `codex exec` commands, frequently recommending the `--full-auto` flag, which allows unapproved workspace writes. This creates a significant prompt injection vulnerability, as a malicious prompt could lead to arbitrary code execution and file modification within the workspace without explicit user approval. Additionally, sensitive authentication tokens from `~/.codex/auth.json` are automatically synced.
能力评估
Purpose & Capability
The skill claims to enable use of a local OpenAI Codex CLI for coding tasks — the commands and patterns described match that purpose. However the documentation also instructs automatic syncing of auth from ~/.codex/auth.json into Clawdbot auth profiles and describes granting 'full access' (network + filesystem) and adding external MCP servers, which are broader privileges than a minimal CLI wrapper strictly needs.
Instruction Scope
SKILL.md explicitly directs reading and copying credential files (~/.codex/auth.json → ~/.clawdbot/.../auth-profiles.json), running codex with --full-auto / danger-full-access / --yolo flags, and adding arbitrary MCP servers/URLs. These are concrete instructions that allow token movement, unrestricted file writes and network access, and connecting to external endpoints — all of which expand the agent's scope beyond simple code editing.
Install Mechanism
This is an instruction-only skill with no install spec or shipped code files, so nothing is downloaded or written by the skill itself. That lowers the mechanical install risk.
Credentials
The skill declares no required env vars, but its instructions reference OPENAI_API_KEY and require access to ~/.codex/auth.json and Clawdbot auth profiles. Implicitly reading and syncing sensitive tokens is requested without those credentials being declared or constrained, which is disproportionate and surprising to users who expect only CLI invocation guidance.
Persistence & Privilege
Although always:false and there's no installer, the guidance instructs modifying Clawdbot auth profiles (writing tokens into ~/.clawdbot/agents/.../auth-profiles.json) and running long-lived MCP servers — actions that change other agent configuration and enable persistent cross-agent privileges. That degree of configuration/credential modification should be explicit and limited.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install codex-sub-agents-1 - 安装完成后,直接呼叫该 Skill 的名称或使用
/codex-sub-agents-1触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Documentation updated; no functional changes to the skill's features or behavior.
- SKILL.md reformatted and revised for clarity and readability.
v1.0.0
codex-sub-agents-1 v1.0.0
- Initial release, enabling Clawdbot to use OpenAI Codex CLI as a subagent or direct coding tool.
- Supports code review, bug fixing, refactoring, CI repair, and feature implementation via Codex CLI.
- Provides detailed workflows for integrating Codex with Clawdbot, including exec tool calls, subagents, CLI fallback, and MCP server mode.
- Includes a comprehensive SKILL.md covering install/auth, commands, approval modes, flags, and configuration.
- Documents best practices, troubleshooting steps, and integration patterns for multi-agent coding workflows.
元数据
常见问题
Codex Sub Agents 1 是什么?
Use OpenAI Codex CLI for coding tasks. Triggers: codex, code review, fix CI, refactor code, implement feature, coding agent, gpt-5-codex. Enables Clawdbot to delegate coding work to Codex CLI as a subagent or direct tool. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1247 次。
如何安装 Codex Sub Agents 1?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install codex-sub-agents-1」即可一键安装,无需额外配置。
Codex Sub Agents 1 是免费的吗?
是的,Codex Sub Agents 1 完全免费(开源免费),可自由下载、安装和使用。
Codex Sub Agents 1 支持哪些平台?
Codex Sub Agents 1 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Codex Sub Agents 1?
由 phucanh08(@phucanh08)开发并维护,当前版本 v1.0.1。
推荐 Skills