SpyBara
Go Premium

Documentation 2026-06-12 18:02 UTC to 2026-06-13 00:58 UTC

6 files changed +127 −12. View all changes and history on the product overview
2026
Mon 22 19:03 Sat 20 03:58 Fri 19 23:57 Thu 18 23:01 Wed 17 17:02 Tue 16 20:00 Mon 15 19:59 Sun 14 16:58 Sat 13 00:58 Fri 12 18:02 Thu 11 20:02 Wed 10 20:00 Tue 9 18:50 Sat 6 00:58 Fri 5 18:45 Thu 4 01:09 Wed 3 19:27 Tue 2 19:22

app/browser.md +3 −1

Details

144 144 

145To enable it, open [**Settings > Browser**](codex://settings/browser-use) and,145To enable it, open [**Settings > Browser**](codex://settings/browser-use) and,

146under **Developer mode**, turn on **Enable full CDP access**. If your146under **Developer mode**, turn on **Enable full CDP access**. If your

147organization has disabled this setting, you can't enable it locally.147organization has disabled this setting, you can't enable it locally. Admins can

148set `browser_use_full_cdp_access = false` under `[features]` in

149[`requirements.toml`](https://developers.openai.com/codex/enterprise/managed-configuration#pin-feature-flags).

148 150 

149Full CDP access lets Codex inspect and control sensitive browser internals that151Full CDP access lets Codex inspect and control sensitive browser internals that

150may put your data at risk. Codex asks for explicit approval before it uses full152may put your data at risk. Codex asks for explicit approval before it uses full

app/settings.md +1 −1

Details

117the Chrome DevTools Protocol for performance profiling and deeper browser117the Chrome DevTools Protocol for performance profiling and deeper browser

118debugging. If your organization has disabled full CDP access, you can't enable118debugging. If your organization has disabled full CDP access, you can't enable

119it locally. See [Developer mode](https://developers.openai.com/codex/app/browser#developer-mode) for setup,119it locally. See [Developer mode](https://developers.openai.com/codex/app/browser#developer-mode) for setup,

120risk, and approval details.120risk, approval details, and the administrator requirement.

121 121 

122See [In-app browser](https://developers.openai.com/codex/app/browser) for browser preview, comment, and122See [In-app browser](https://developers.openai.com/codex/app/browser) for browser preview, comment, and

123browser use workflows.123browser use workflows.

cli.md +1 −1

Details

39 39 

40### Control model and reasoning40### Control model and reasoning

41 41 

42Use `/model` to switch between GPT-5.4, GPT-5.3-Codex, and other available models, or adjust reasoning levels.42Use `/model` to switch between available models or adjust reasoning levels.

43 43 

44 </BentoContent>44 </BentoContent>

45 <BentoContent href="/codex/cli/features#image-inputs">45 <BentoContent href="/codex/cli/features#image-inputs">

Details

1520 description:1520 description:

1521 "Managed default permission profile. The profile must be allowed by `allowed_permission_profiles`. Set this explicitly for predictable behavior; if omitted, Codex defaults to `:workspace` only when both `:workspace` and `:read-only` are explicitly allowed.",1521 "Managed default permission profile. The profile must be allowed by `allowed_permission_profiles`. Set this explicitly for predictable behavior; if omitted, Codex defaults to `:workspace` only when both `:workspace` and `:read-only` are explicitly allowed.",

1522 },1522 },

1523 {

1524 key: "enforce_residency",

1525 type: "string",

1526 description:

1527 "Require Codex service traffic to use a supported data residency. Currently accepts `us`.",

1528 },

1529 {

1530 key: "permissions",

1531 type: "table",

1532 description:

1533 "Admin-defined permission profiles keyed by profile name. Uses the same profile fields as `config.toml`.",

1534 },

1523 {1535 {

1524 key: "permissions.<name>",1536 key: "permissions.<name>",

1525 type: "table",1537 type: "table",

1531 type: "array<string>",1543 type: "array<string>",

1532 description: "Allowed values for `sandbox_mode`.",1544 description: "Allowed values for `sandbox_mode`.",

1533 },1545 },

1546 {

1547 key: "windows",

1548 type: "table",

1549 description: "Native Windows sandbox requirements.",

1550 },

1534 {1551 {

1535 key: "windows.allowed_sandbox_implementations",1552 key: "windows.allowed_sandbox_implementations",

1536 type: "array<string>",1553 type: "array<string>",

1567 description:1584 description:

1568 "When `true`, Codex skips user, project, session, and plugin hooks while still allowing managed hooks from `requirements.toml` and other managed config layers.",1585 "When `true`, Codex skips user, project, session, and plugin hooks while still allowing managed hooks from `requirements.toml` and other managed config layers.",

1569 },1586 },

1587 {

1588 key: "allow_appshots",

1589 type: "boolean",

1590 description:

1591 "Set to `false` to disable Appshots for managed users. If omitted, Appshots remain unconstrained by requirements and follow normal product availability.",

1592 },

1570 {1593 {

1571 key: "features.plugin_sharing",1594 key: "features.plugin_sharing",

1572 type: "boolean",1595 type: "boolean",

1585 description:1608 description:

1586 "Require a specific canonical feature key to stay enabled or disabled.",1609 "Require a specific canonical feature key to stay enabled or disabled.",

1587 },1610 },

1611 {

1612 key: "features.apps",

1613 type: "boolean",

1614 description:

1615 "Pin Apps integration availability on or off for managed users.",

1616 },

1588 {1617 {

1589 key: "features.in_app_browser",1618 key: "features.in_app_browser",

1590 type: "boolean",1619 type: "boolean",

1597 description:1626 description:

1598 "Set to `false` in `requirements.toml` to disable Browser Use and Browser Agent availability.",1627 "Set to `false` in `requirements.toml` to disable Browser Use and Browser Agent availability.",

1599 },1628 },

1629 {

1630 key: "features.browser_use_external",

1631 type: "boolean",

1632 description:

1633 "Set to `false` in `requirements.toml` to disable external-browser Browser Use availability.",

1634 },

1635 {

1636 key: "features.browser_use_full_cdp_access",

1637 type: "boolean",

1638 description:

1639 "Set to `false` in `requirements.toml` to prevent users from enabling full Chrome DevTools Protocol access in Browser Developer mode. If omitted, normal product availability applies.",

1640 },

1641 {

1642 key: "features.fast_mode",

1643 type: "boolean",

1644 description:

1645 "Pin the canonical `fast_mode` feature on or off for managed users.",

1646 },

1647 {

1648 key: "features.guardian_approval",

1649 type: "boolean",

1650 description:

1651 "Pin Guardian approval availability on or off for managed users.",

1652 },

1653 {

1654 key: "features.memories",

1655 type: "boolean",

1656 description: "Pin Memories availability on or off for managed users.",

1657 },

1658 {

1659 key: "features.multi_agent",

1660 type: "boolean",

1661 description: "Pin multi-agent availability on or off for managed users.",

1662 },

1663 {

1664 key: "features.plugins",

1665 type: "boolean",

1666 description: "Pin plugin availability on or off for managed users.",

1667 },

1600 {1668 {

1601 key: "features.computer_use",1669 key: "features.computer_use",

1602 type: "boolean",1670 type: "boolean",

1603 description:1671 description:

1604 "Set to `false` in `requirements.toml` to disable Computer Use availability and related install or enablement flows.",1672 "Set to `false` in `requirements.toml` to disable Computer Use availability and related install or enablement flows.",

1605 },1673 },

1674 {

1675 key: "features.workspace_dependencies",

1676 type: "boolean",

1677 description:

1678 "Pin bundled workspace-dependency runtime availability on or off for managed users.",

1679 },

1606 {1680 {

1607 key: "computer_use",1681 key: "computer_use",

1608 type: "table",1682 type: "table",

1759 description:1833 description:

1760 "Allow an MCP streamable HTTP server when its `mcp_servers.<id>.url` matches this URL.",1834 "Allow an MCP streamable HTTP server when its `mcp_servers.<id>.url` matches this URL.",

1761 },1835 },

1836 {

1837 key: "plugins",

1838 type: "table",

1839 description:

1840 "Plugin-specific MCP server allowlists keyed by plugin identifier.",

1841 },

1842 {

1843 key: "plugins.<plugin>.mcp_servers.<server>.identity.command",

1844 type: "string",

1845 description:

1846 "Allow a plugin's stdio MCP server when its configured command matches this value.",

1847 },

1848 {

1849 key: "plugins.<plugin>.mcp_servers.<server>.identity.url",

1850 type: "string",

1851 description:

1852 "Allow a plugin's streamable HTTP MCP server when its configured URL matches this value.",

1853 },

1854 {

1855 key: "apps",

1856 type: "table",

1857 description:

1858 "Managed app requirements keyed by app identifier. Requirements can disable an app or constrain approval behavior for individual tools.",

1859 },

1860 {

1861 key: "apps.<id>.enabled",

1862 type: "boolean",

1863 description:

1864 "Set to `false` to disable an app. A disabled requirement remains restrictive when multiple requirements sources are merged.",

1865 },

1866 {

1867 key: "apps.<id>.tools.<tool>.approval_mode",

1868 type: "auto | prompt | approve",

1869 description: "Set the managed approval mode for one app tool.",

1870 },

1762 {1871 {

1763 key: "rules",1872 key: "rules",

1764 type: "table",1873 type: "table",

Details

217":workspace" = true217":workspace" = true

218```218```

219 219 

220Example: disable Browser Use, the in-app browser, and Computer Use:220Example: constrain Browser Use, the in-app browser, and Computer Use:

221 221 

222```toml222```toml

223[features]223[features]

224browser_use = false224browser_use = false

225browser_use_full_cdp_access = false

225in_app_browser = false226in_app_browser = false

226computer_use = false227computer_use = false

227```228```

Details

84allowed_sandbox_modes = ["read-only", "workspace-write"]84allowed_sandbox_modes = ["read-only", "workspace-write"]

85```85```

86 86 

87### Disable AppShots87### Disable Appshots

88 88 

89To disable AppShots for managed users, set the top-level `allow_appshots` requirement:89To disable Appshots for managed users, set the top-level `allow_appshots` requirement:

90 90 

91```toml91```toml

92allow_appshots = false92allow_appshots = false

93```93```

94 94 

95Codex treats only `allow_appshots = false` as disabling AppShots. If the key is omitted, AppShots remains unconstrained by requirements and uses normal product availability checks. App-server clients that read effective requirements through `configRequirements/read` receive the same restriction as `allowAppshots`; an omitted or `null` `allowAppshots` value does not disable AppShots.95Codex treats only `allow_appshots = false` as disabling Appshots. If the key is omitted, Appshots remain unconstrained by requirements and use normal product availability checks. App-server clients that read effective requirements through `configRequirements/read` receive the same restriction as `allowAppshots`; an omitted or `null` `allowAppshots` value doesn't disable Appshots.

96 96 

97### Control available permission profiles97### Control available permission profiles

98 98 

109supporting release. Don't deploy managed custom profiles until the fleet upgrade109supporting release. Don't deploy managed custom profiles until the fleet upgrade

110is complete.110is complete.

111 111 

112When the table is present, it is the complete list of allowed profiles. Profiles112When the table is present, it's the complete list of allowed profiles. Profiles

113set to `true` are allowed. Profiles that are omitted or set to `false` are113set to `true` are allowed. Profiles that are omitted or set to `false` are

114denied, including built-ins added in future Codex versions.114denied, including built-ins added in future Codex versions.

115 115 

201":workspace" = true # Not honored because cloud requirements set this to false.201":workspace" = true # Not honored because cloud requirements set this to false.

202```202```

203 203 

204Set `default_permissions` explicitly to an allowed profile. If it is omitted,204Set `default_permissions` explicitly to an allowed profile. If it's omitted,

205Codex defaults to `:workspace` only when both `:workspace` and `:read-only` are205Codex defaults to `:workspace` only when both `:workspace` and `:read-only` are

206explicitly allowed. When `allowed_permission_profiles` is absent, managed206explicitly allowed. When `allowed_permission_profiles` is absent, managed

207requirements don't restrict which profile names users can select. Every entry207requirements don't restrict which profile names users can select. Every entry

248Use `[experimental_network]` in `requirements.toml` when administrators should248Use `[experimental_network]` in `requirements.toml` when administrators should

249define network access requirements centrally. These requirements are separate249define network access requirements centrally. These requirements are separate

250from the user `features.network_proxy` toggle: they can configure sandboxed250from the user `features.network_proxy` toggle: they can configure sandboxed

251networking without that feature flag, but they do not grant command network251networking without that feature flag, but they don't grant command network

252access when the active sandbox keeps networking off.252access when the active sandbox keeps networking off.

253 253 

254```toml254```toml

267 267 

268Use `experimental_network.managed_allowed_domains_only = true` only when you268Use `experimental_network.managed_allowed_domains_only = true` only when you

269also define administrator-owned `allowed_domains` and want that allowlist to be269also define administrator-owned `allowed_domains` and want that allowlist to be

270exclusive. If it is `true` without managed allow rules, user-added domain allow270exclusive. If it's `true` without managed allow rules, user-added domain allow

271rules do not remain effective.271rules don't remain effective.

272 272 

273The domain syntax, local/private destination rules, deny-over-allow behavior,273The domain syntax, local/private destination rules, deny-over-allow behavior,

274and DNS rebinding limitations are the same as the sandboxed networking behavior274and DNS rebinding limitations are the same as the sandboxed networking behavior

286 286 

287# Disable specific Codex feature surfaces when needed.287# Disable specific Codex feature surfaces when needed.

288browser_use = false288browser_use = false

289browser_use_full_cdp_access = false

289in_app_browser = false290in_app_browser = false

290computer_use = false291computer_use = false

291```292```

296 297 

297- `in_app_browser = false` disables the in-app browser pane.298- `in_app_browser = false` disables the in-app browser pane.

298- `browser_use = false` disables Browser Use and Browser Agent availability.299- `browser_use = false` disables Browser Use and Browser Agent availability.

300- `browser_use_full_cdp_access = false` prevents users from enabling full CDP

301 access in Browser Developer mode.

299- `computer_use = false` disables Computer Use availability and related302- `computer_use = false` disables Computer Use availability and related

300 install or setup flows.303 install or setup flows.

301 304