Skip to content

Codex

Prompts and configuration targeted at Codex (OpenAI’s hosted coding agent).

What usually lives here

  • AGENTS.md — the repo brief Codex reads on every invocation. Covers how to build, how to test, style conventions, and what files are out-of-bounds.
  • Task prompts — the narrow description you paste into a Codex task that turns a finding into a PR.
  • PROJECT_GUIDELINES snippets that are small enough to share but too big to inline in every task prompt.

Browse entries

Every entry carries its author, team, and maturity. Click any card for the full prompt.

Vulnerable dependency remediation (non-interactive)

development

A Codex CLI prompt designed for non-interactive, CI-driven runs (codex exec --full-auto --json). It picks up a single CVE / advisory id, locates the affected dependency in the …

author Stephen M Abbottteam Securitymodel used Opus 4.7updated 2026-04-21
scacvedependenciescodexnoninteractiveci

Sensitive data element remediation (non-interactive)

development

A Codex CLI prompt for headless SDE remediation — hard-coded secrets, PII in logs, credentials committed to source — wired for codex exec --full-auto --json so it can be dispatched …

author Stephen M Abbottteam Securitymodel used Opus 4.7updated 2026-04-21
sdesecretspiidlpcodexnoninteractiveci

Contribute a new Codex prompt →