Sign in Subscribe
openai

Codex CLI 0.125.0: Unix Sockets, Remote Plugins, Permission Profiles

Codex CLI 0.125.0 adds Unix socket transport, remote plugin management, and permission profile persistence. Reasoning tokens now surface in exec JSON output. Windows sandbox and WebSocket stability improved.

Codex CLI 0.125.0: Unix Sockets, Remote Plugins, Permission Profiles

TL;DR

  • App-server now supports Unix socket transport and remote thread config/store plumbing
  • Plugin marketplace can install remote plugins and upgrade configured marketplaces
  • Permission profiles now persist across TUI sessions, user turns, MCP sandbox, and shell escalation
  • Reasoning-token usage now reported in codex exec --json output

New

  • Unix socket transport for app-server — enables local IPC without TCP overhead, plus pagination-friendly resume/fork and sticky environments
  • Remote plugin management — install plugins and upgrade marketplaces directly from app-server without local filesystem access
  • Permission profiles round-trip — profiles now persist across TUI sessions, user turns, MCP sandbox state, shell escalation, and app-server APIs
  • Model provider discovery — providers now own model discovery; AWS/Bedrock account state exposed to app clients
  • Reasoning tokens in exec JSONcodex exec --json now reports reasoning-token usage for programmatic consumers
  • Rollout trace debugging — records tool, code-mode, session, and multi-agent relationships with a debug reducer command for inspection

Fixed

  • /review interrupt and TUI exit no longer wedge the interface on delegate startup or unsubscribe
  • Exec-server no longer drops buffered output after process exit and waits correctly for stream closure
  • App-server now respects explicitly untrusted project config instead of auto-persisting trust
  • WebSocket app-server clients less likely to disconnect during bursts of turn and tool-output notifications
  • Windows sandbox startup handles multiple CLI versions and installed app directories better; background PowerShell calls avoid visible windows
  • Config/schema handling now rejects conflicting MultiAgentV2 thread limits, resolves relative agent-role config paths, hides unsupported MCP bearer-token fields, and rejects invalid js_repl image MIME types

Update: npm install -g @openai/codex@0.125.0 or check the full release on GitHub

Source: Codex

Read next