codex-mcp-rs
Verified Safeby missdeer
Overview
This server acts as an MCP (Model Context Protocol) wrapper for the Codex CLI, enabling AI-assisted coding tasks through compatible clients like Claude Code.
Installation
npx @missdeer/codex-mcp-rsEnvironment Variables
- CODEX_BIN
- CODEX_DEFAULT_TIMEOUT
- CODEX_ALLOW_DANGEROUS
- CODEX_ALLOW_YOLO
- CODEX_ALLOW_SKIP_GIT_CHECK
- GITHUB_TOKEN
Security Notes
The server implements strong security practices including explicit sandbox policies ('read-only' by default, 'workspace-write', 'danger-full-access'), environment variable controls for dangerous features, and input validation for paths. It uses `std::process::Command` with `Command::arg()` for subprocess execution which handles argument escaping securely. The `npm/run.js` script uses `spawn` with path escaping for archive extraction, and GitHub downloads are performed over HTTPS. Output line limits are in place to prevent memory exhaustion. The primary security consideration is the use of 'danger-full-access' mode by the underlying Codex CLI, which is explicitly opt-in via an environment variable `CODEX_ALLOW_DANGEROUS` and defaults to disabled.
Similar Servers
codex-mcp-server
Serves as a Model Context Protocol (MCP) bridge to integrate OpenAI's Codex CLI for AI-powered code analysis, generation, and review within various editors like Claude Code, VS Code, and Cursor.
codex-mcp-go
Wraps the OpenAI Codex CLI as an MCP tool, enabling AI clients like KiloCode, Roo Code, and Claude Code to utilize Codex for high-precision coding tasks, debugging, and code reviews within an agentic workflow.
octomind
Session-first AI development assistant with built-in Model Context Protocol (MCP) tools and multi-provider LLM support for interactive coding, file management, and web research.
mcp-framework
A Rust framework for building AI agents with built-in Model Context Protocol (MCP) support, multi-LLM integration, and a web-based inspector for debugging.