codex-mcp
Verified Safeby LanceVCS
Overview
Provides a robust MCP server wrapper for Codex CLI to enable reliable session ID tracking for multi-turn AI conversations.
Installation
node server.jsSecurity Notes
The server uses `child_process.spawn` with an array of arguments, which generally mitigates shell injection risks by not invoking a shell directly. It explicitly defaults the Codex sandbox mode to 'read-only' and restricts Playwright tools to a safe subset, enhancing security. No direct `eval` or obfuscation is present. The primary security considerations would stem from the inherent trust placed in the underlying `codex` CLI application and its own argument parsing/execution logic, or potential vulnerabilities in `codex` itself.
Similar Servers
codex-mcp-server
Serves as a Model Context Protocol (MCP) bridge to integrate OpenAI's Codex CLI for AI-powered code analysis, generation, and review within various editors like Claude Code, VS Code, and Cursor.
consult-llm-mcp
An MCP server that allows AI agents like Claude Code to consult stronger, more capable AI models (e.g., GPT-5.2, Gemini 3.0 Pro) for complex code analysis, debugging, and architectural advice.
codex-mcp-go
Wraps the OpenAI Codex CLI as an MCP tool, enabling AI clients like KiloCode, Roo Code, and Claude Code to utilize Codex for high-precision coding tasks, debugging, and code reviews within an agentic workflow.
claude-faf-mcp
Optimizes AI understanding of software projects by providing persistent context, fixing context-drift, and enabling bi-directional synchronization between project metadata and AI documentation.