chore: example cli

Author: gersmann

.github/workflows/release-published.yml

@@ -18,7 +18,7 @@ jobs:
     runs-on: ubuntu-latest
     outputs:
       tag: ${{ steps.ctx.outputs.tag }}
-      version: ${{ steps.bump.outputs.version }}
+      version: ${{ steps.resolve.outputs.version }}
       sha: ${{ steps.ctx.outputs.sha }}
     steps:
       - name: Checkout
@@ -42,42 +42,46 @@ jobs:
           echo "sha=$SHA" >> "$GITHUB_OUTPUT"
           echo "Tag=$TAG TagSHA=$SHA"
 
-      - name: Compute next version (Conventional Commits)
-        id: bump
+      - name: Resolve version (tag or next)
+        id: resolve
         shell: bash
         run: |
           set -euo pipefail
+          TAG="${{ steps.ctx.outputs.tag }}"
+          if [ "$TAG" != "next" ]; then
+            # Use the tag's version directly (strip optional leading v)
+            VER="${TAG#v}"
+            if [[ ! "$VER" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
+              echo "Release tag '$TAG' is not a valid semver (x.y.z or vX.Y.Z)." >&2
+              exit 1
+            fi
+            echo "mode=explicit" >> "$GITHUB_OUTPUT"
+            echo "version=$VER" >> "$GITHUB_OUTPUT"
+            echo "Using explicit release version: $VER"
+            exit 0
+          fi
+          # Compute next version from conventional commits when tag == 'next'
           DEFAULT_BRANCH="${{ github.event.repository.default_branch }}"
           git fetch origin "$DEFAULT_BRANCH" --depth=1000
-          # Find last semver tag
           LAST_TAG=$(git describe --tags --match 'v[0-9]*' --abbrev=0 2>/dev/null || true)
-          RANGE=""
           if [ -n "$LAST_TAG" ]; then
             RANGE="$LAST_TAG..origin/$DEFAULT_BRANCH"
           else
             RANGE="origin/$DEFAULT_BRANCH"
           fi
           log=$(git log --pretty=%B $RANGE)
           bump="patch"
-          if echo "$log" | grep -E '(^|\n)(feat|feat\(.+\))(!)?:' -q; then
-            bump="minor"
-          fi
-          if echo "$log" | grep -E 'BREAKING CHANGE|(^|\n)([^\n!]+)!:' -q; then
-            bump="major"
-          fi
-          # Derive current version
-          if [ -n "$LAST_TAG" ]; then
-            cur=${LAST_TAG#v}
-          else
-            cur="0.0.0"
-          fi
+          if echo "$log" | grep -E '(^|\n)(feat|feat\(.+\))(!)?:' -q; then bump="minor"; fi
+          if echo "$log" | grep -E 'BREAKING CHANGE|(^|\n)([^\n!]+)!:' -q; then bump="major"; fi
+          if [ -n "$LAST_TAG" ]; then cur=${LAST_TAG#v}; else cur="0.0.0"; fi
           IFS='.' read -r MA MI PA <<< "$cur"
           case "$bump" in
             major) MA=$((MA+1)); MI=0; PA=0 ;;
             minor) MI=$((MI+1)); PA=0 ;;
             patch) PA=$((PA+1)) ;;
           esac
           NEXT="$MA.$MI.$PA"
+          echo "mode=bump" >> "$GITHUB_OUTPUT"
           echo "version=$NEXT" >> "$GITHUB_OUTPUT"
           echo "Computed bump: $bump from $cur -> $NEXT"
 
@@ -90,7 +94,7 @@ jobs:
         shell: bash
         run: |
           set -euo pipefail
-          VER="${{ steps.bump.outputs.version }}"
+          VER="${{ steps.resolve.outputs.version }}"
           # Update Cargo.toml version
           sed -i.bak -E "s/^version = \"[0-9]+\.[0-9]+\.[0-9]+\"/version = \"${VER}\"/" crates/codex_native/Cargo.toml
           rm -f crates/codex_native/Cargo.toml.bak
@@ -101,7 +105,7 @@ jobs:
       - name: Commit version bump
         shell: bash
         run: |
-          VER="${{ steps.ctx.outputs.version }}"
+          VER="${{ steps.resolve.outputs.version }}"
           if git diff --quiet; then
             echo "No changes to commit (versions already ${VER})."
           else
@@ -112,10 +116,11 @@ jobs:
           fi
 
       - name: Create new semver tag and repoint release
+        if: ${{ steps.resolve.outputs.mode == 'bump' }}
         shell: bash
         env:
           PLACEHOLDER_TAG: ${{ steps.ctx.outputs.tag }}
-          VERSION: ${{ steps.bump.outputs.version }}
+          VERSION: ${{ steps.resolve.outputs.version }}
         run: |
           DEFAULT_BRANCH="${{ github.event.repository.default_branch }}"
           git fetch origin "$DEFAULT_BRANCH" --depth=1
@@ -130,6 +135,7 @@ jobs:
           echo "real_tag=$REAL_TAG" >> "$GITHUB_ENV"
 
       - name: Update GitHub Release to new tag
+        if: ${{ steps.resolve.outputs.mode == 'bump' }}
         uses: actions/github-script@v7
         with:
           script: |

.pre-commit-config.yaml

@@ -6,13 +6,13 @@ repos:
       - id: end-of-file-fixer
       - id: check-yaml
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: v0.5.6
+    rev: v0.13.1
     hooks:
       - id: ruff
         args: ["--fix"]
       - id: ruff-format
   - repo: https://github.com/pre-commit/mirrors-mypy
-    rev: v1.10.0
+    rev: v1.18.2
     hooks:
       - id: mypy
         additional_dependencies: []

README.md

@@ -39,6 +39,7 @@ cfg = CodexConfig(
     model_provider="openai",
     approval_policy=ApprovalPolicy.ON_REQUEST,
     sandbox_mode=SandboxMode.WORKSPACE_WRITE,
+    include_apply_patch_tool=False,  # disable apply patch tool by default
 )
 
 # One‑shot
@@ -60,6 +61,19 @@ for ev in conv:
 Notes
 - `Event.msg` is a typed union (`EventMsg`). For raw dicts from the native layer, use `codex.native.start_exec_stream`.
 
+### Example: basic_conversation.py
+
+Run the interactive example that streams events and prompts for approvals:
+
+```
+python examples/basic_conversation.py "ask me a question"
+```
+
+Flags you may find useful:
+- `--approval on-request` (default) to be asked before running tools
+- `--sandbox workspace-write` to allow writes within the repo
+- `--allow-apply-patch` to include the apply‑patch tool in the session
+
 ## 3) API Overview
 
 - `codex.run_exec(prompt, *, config=None, load_default_config=True, output_schema=None) -> list[Event]`

examples/basic_conversation.py

@@ -0,0 +1,236 @@
+#!/usr/bin/env python3
+"""Minimal example app using CodexClient.
+
+Usage:
+  python examples/basic_conversation.py "Add a smoke test"
+
+Flags:
+  --model MODEL                  Model slug (default: gpt-5)
+  --sandbox {read-only,workspace-write,danger-full-access}
+  --approval {untrusted,on-failure,on-request,never}
+  --auto-approve                 Auto‑approve exec/patch requests
+  --exit-on-complete             Exit after the first completed turn (default: prompt for another turn)
+  --allow-apply-patch            Enable the apply patch tool (disabled by default)
+
+This script starts a stateful conversation, submits one user turn, then streams
+events to stdout. For approval requests, it either auto‑approves (when the flag
+is set) or prompts interactively.
+"""
+
+from __future__ import annotations
+
+import argparse
+import sys
+from typing import Any, cast
+
+from codex import CodexClient, CodexConfig
+from codex.config import ApprovalPolicy, SandboxMode
+from codex.protocol.types import ReviewDecision
+
+
+def _etype(ev: Any) -> str:
+    msg = getattr(ev, "msg", None)
+    root = getattr(msg, "root", None)
+    if root is not None and hasattr(root, "type"):
+        val = root.type
+        return cast(str, val) if isinstance(val, str) else "unknown"
+    if isinstance(msg, dict):
+        return cast("str", msg.get("type", "unknown"))
+    return getattr(msg, "type", "unknown") or "unknown"
+
+
+def parse_args(argv: list[str]) -> argparse.Namespace:
+    p = argparse.ArgumentParser(description="CodexClient example")
+    p.add_argument("prompt", help="User prompt to send as a turn")
+    p.add_argument("--model", default="gpt-5")
+    p.add_argument(
+        "--sandbox",
+        choices=["read-only", "workspace-write", "danger-full-access"],
+        default="workspace-write",
+    )
+    p.add_argument(
+        "--approval",
+        choices=["untrusted", "on-failure", "on-request", "never"],
+        default="on-request",
+    )
+    p.add_argument("--auto-approve", action="store_true")
+    p.add_argument("--exit-on-complete", action="store_true")
+    p.add_argument("--allow-apply-patch", action="store_true")
+    return p.parse_args(argv)
+
+
+def main(argv: list[str]) -> int:
+    args = parse_args(argv)
+
+    # Map to enums for clarity (strings would also work)
+    sandbox_map = {
+        "read-only": SandboxMode.READ_ONLY,
+        "workspace-write": SandboxMode.WORKSPACE_WRITE,
+        "danger-full-access": SandboxMode.DANGER_FULL_ACCESS,
+    }
+    approval_map = {
+        "untrusted": ApprovalPolicy.UNTRUSTED,
+        "on-failure": ApprovalPolicy.ON_FAILURE,
+        "on-request": ApprovalPolicy.ON_REQUEST,
+        "never": ApprovalPolicy.NEVER,
+    }
+
+    cfg = CodexConfig(
+        model=args.model,
+        include_apply_patch_tool=bool(args.allow_apply_patch),  # default: disabled
+    )
+    client = CodexClient(config=cfg)
+    conv = client.start_conversation()
+
+    # Send the initial turn with per‑turn overrides.
+    conv.submit_user_turn(
+        args.prompt,
+        sandbox_mode=sandbox_map[args.sandbox],
+        approval_policy=approval_map[args.approval],
+    )
+
+    print("[codex] streaming events...", flush=True)
+    for ev in conv:
+        et = _etype(ev)
+
+        if et == "session_configured":
+            model = getattr(getattr(ev.msg, "root", ev.msg), "model", "?")
+            print(f"session configured (model={model})")
+
+        elif et == "agent_message":
+            msg = getattr(getattr(ev.msg, "root", ev.msg), "message", "")
+            print(f"assistant: {msg}")
+
+        elif et == "agent_message_delta":
+            delta = getattr(getattr(ev.msg, "root", ev.msg), "delta", "")
+            print(delta, end="", flush=True)
+
+        # Tool-call logging: MCP tools, exec, web search, and patch apply
+        elif et == "mcp_tool_call_begin":
+            root = getattr(ev.msg, "root", ev.msg)
+            inv = getattr(root, "invocation", None)
+            server = getattr(inv, "server", "?")
+            tool = getattr(inv, "tool", "?")
+            mcp_args = getattr(inv, "arguments", None)
+            call_id = getattr(root, "call_id", "?")
+            print(f"[tool] mcp begin id={call_id} {server}:{tool} args={mcp_args}")
+
+        elif et == "mcp_tool_call_end":
+            root = getattr(ev.msg, "root", ev.msg)
+            inv = getattr(root, "invocation", None)
+            server = getattr(inv, "server", "?")
+            tool = getattr(inv, "tool", "?")
+            call_id = getattr(root, "call_id", "?")
+            duration = getattr(root, "duration", None)
+            res = getattr(root, "result", None)
+            ok = getattr(res, "Ok", None)
+            err = getattr(res, "Err", None)
+            if err is not None:
+                print(
+                    f"[tool] mcp end   id={call_id} {server}:{tool} ERROR: {err} (duration={duration})"
+                )
+            else:
+                # Avoid printing large payloads; just show a short summary if present
+                out_type = getattr(ok, "type", None) if ok is not None else None
+                print(
+                    f"[tool] mcp end   id={call_id} {server}:{tool} ok type={out_type} (duration={duration})"
+                )
+
+        elif et == "exec_command_begin":
+            root = getattr(ev.msg, "root", ev.msg)
+            cmd = getattr(root, "command", [])
+            cwd = getattr(root, "cwd", "")
+            call_id = getattr(root, "call_id", "?")
+            print(f"[tool] exec begin id={call_id} cwd={cwd} cmd={' '.join(cmd)}")
+
+        elif et == "exec_command_end":
+            root = getattr(ev.msg, "root", ev.msg)
+            call_id = getattr(root, "call_id", "?")
+            exit_code = getattr(root, "exit_code", "?")
+            duration = getattr(root, "duration", None)
+            stdout = getattr(root, "stdout", "") or ""
+            stderr = getattr(root, "stderr", "") or ""
+            print(
+                f"[tool] exec end   id={call_id} exit={exit_code} duration={duration} stdout={len(stdout)}B stderr={len(stderr)}B"
+            )
+
+        elif et == "web_search_begin":
+            call_id = getattr(getattr(ev.msg, "root", ev.msg), "call_id", "?")
+            print(f"[tool] web_search begin id={call_id}")
+
+        elif et == "web_search_end":
+            root = getattr(ev.msg, "root", ev.msg)
+            call_id = getattr(root, "call_id", "?")
+            query = getattr(root, "query", "?")
+            print(f"[tool] web_search end   id={call_id} query={query}")
+
+        elif et == "patch_apply_begin":
+            root = getattr(ev.msg, "root", ev.msg)
+            call_id = getattr(root, "call_id", "?")
+            auto = getattr(root, "auto_approved", False)
+            changes = getattr(root, "changes", {}) or {}
+            print(
+                f"[tool] patch begin id={call_id} files={len(changes)} auto_approved={bool(auto)}"
+            )
+
+        elif et == "patch_apply_end":
+            root = getattr(ev.msg, "root", ev.msg)
+            call_id = getattr(root, "call_id", "?")
+            success = getattr(root, "success", False)
+            print(f"[tool] patch end   id={call_id} success={bool(success)}")
+
+        elif et == "exec_approval_request":
+            root = getattr(ev.msg, "root", ev.msg)
+            cmd = getattr(root, "command", [])
+            cwd = getattr(root, "cwd", "")
+            print("\n[approval request] exec:", cmd, "in", cwd)
+            if args.auto_approve or _prompt_yes_no("Approve exec? [y/N] "):
+                conv.approve_exec(ev.id, ReviewDecision.approved)
+            else:
+                conv.approve_exec(ev.id, ReviewDecision.denied)
+
+        elif et == "apply_patch_approval_request":
+            print("\n[approval request] apply_patch")
+            if args.auto_approve or _prompt_yes_no("Approve patch? [y/N] "):
+                conv.approve_patch(ev.id, ReviewDecision.approved)
+            else:
+                conv.approve_patch(ev.id, ReviewDecision.denied)
+
+        elif et == "task_complete":
+            last = getattr(getattr(ev.msg, "root", ev.msg), "last_agent_message", None)
+            if last:
+                print("\n[task complete]", last)
+            # Either exit immediately or allow the user to continue the conversation
+            if args.exit_on_complete:
+                conv.shutdown()
+            else:
+                try:
+                    nxt = input("\nAnother prompt (blank to quit): ").strip()
+                except (EOFError, KeyboardInterrupt):
+                    nxt = ""
+                if nxt:
+                    conv.submit_user_turn(nxt)
+                else:
+                    conv.shutdown()
+
+        elif et == "shutdown_complete":
+            print("[codex] shutdown complete")
+            break
+
+        elif et == "stream_error":
+            root = getattr(ev.msg, "root", ev.msg)
+            print("[stream error]", getattr(root, "message", "?"))
+
+    return 0
+
+
+def _prompt_yes_no(prompt: str) -> bool:
+    try:
+        ans = input(prompt).strip().lower()
+        return ans in {"y", "yes"}
+    except (EOFError, KeyboardInterrupt):
+        return False
+
+
+if __name__ == "__main__":  # pragma: no cover
+    raise SystemExit(main(sys.argv[1:]))