config-advanced.md Codex Docs, 2026-02-19 20:53 UTC → 2026-02-23 18:27 UTC

2 2 

3Use these options when you need more control over providers, policies, and integrations. For a quick start, see [Config basics](https://developers.openai.com/codex/config-basic).3Use these options when you need more control over providers, policies, and integrations. For a quick start, see [Config basics](https://developers.openai.com/codex/config-basic).

4 4 

5For background on project guidance, reusable capabilities, custom slash commands, multi-agent workflows, and integrations, see [Customization](https://developers.openai.com/codex/concepts/customization). For configuration keys, see [Configuration Reference](https://developers.openai.com/codex/config-reference).

6 

5## Profiles7## Profiles

6 8 

7Profiles let you save named sets of configuration values and switch between them from the CLI.9Profiles let you save named sets of configuration values and switch between them from the CLI.

182 184 

183## Approval policies and sandbox modes185## Approval policies and sandbox modes

184 186 

185Pick approval strictness (affects when Codex pauses) and sandbox level (affects file/network access). See [Sandbox & approvals](https://developers.openai.com/codex/security) for deeper examples.187Pick approval strictness (affects when Codex pauses) and sandbox level (affects file/network access).

188 

189For operational details that are easy to miss while editing `config.toml`, see [Common sandbox and approval combinations](https://developers.openai.com/codex/security#common-sandbox-and-approval-combinations), [Protected paths in writable roots](https://developers.openai.com/codex/security#protected-paths-in-writable-roots), and [Network access](https://developers.openai.com/codex/security#network-access).

186 190 

187```191```

188approval_policy = "untrusted" # Other options: on-request, never192approval_policy = "untrusted" # Other options: on-request, never

195network_access = false # Opt in to outbound network199network_access = false # Opt in to outbound network

196```200```

197 201 

202Need the complete key list (including profile-scoped overrides and requirements constraints)? See [Configuration Reference](https://developers.openai.com/codex/config-reference) and [Managed configuration](https://developers.openai.com/codex/security#managed-configuration).

203 

198In workspace-write mode, some environments keep `.git/` and `.codex/`204In workspace-write mode, some environments keep `.git/` and `.codex/`

199 read-only even when the rest of the workspace is writable. This is why205 read-only even when the rest of the workspace is writable. This is why

200 commands like `git commit` may still require approval to run outside the206 commands like `git commit` may still require approval to run outside the