pr/245582e98 fix use workspace write codex sandbox fo#261
Merged
plusplusoneplusplus merged 4 commits intoJun 2, 2026
Merged
Conversation
Owner
plusplusoneplusplus
commented
Jun 2, 2026
plusplusoneplusplus
commented
- fix: use workspace-write Codex sandbox for ask mode
- feat(coc): enable reconnect for SSH remote servers in dashboard UI
- feat(servers): add SSH tunnel count to summary strip and default to split view
Interactive/ask mode (and omitted mode) previously ran Codex with a read-only OS sandbox, which blocked even the writes permitted by CoC's read-only system prompt (plan file, attached note, .goal.md specs). This caused legitimate writes such as saving a plan under ~/.coc to fail with "Operation not permitted". Switch the non-plan/autopilot Codex sandbox to `workspace-write` so those permitted writes succeed within the workspace and additionalDirectories (e.g. ~/.coc) while keeping network access disabled. Update tests and the sdk-wrapper knowledge reference accordingly. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
The SSH connector and `/api/servers/:id/reconnect` route already support SSH reconnect (including auto-reconnect with backoff), but the dashboard only surfaced the Reconnect action for DevTunnel servers. - ServerCard: show the Reconnect menu item for `ssh` as well as `devtunnel`. - ServersView: treat `ssh` as a first-class, reconnectable ServerKind — add a SupportsReconnect helper, an SSH kind badge, SSH connection rows (host / local port / endpoint), SSH search matching, and wire the reconnect action in grid, list, and split views. This also fixes a latent crash where `ssh` was not a known ServerKind. - Add tests covering the SSH reconnect menu item and the reconnect call. - Update the coc-knowledge remote-servers reference. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
…plit view The Servers dashboard summary strip now shows a 5th KPI column for SSH tunnels alongside the existing Online/Offline/Active tasks/DevTunnels. The default view mode is changed from grid to split so the detail panel is visible immediately on load. Co-authored-by: Cursor <cursoragent@cursor.com>
…eractive mode The commit 245582e changed the Codex sandbox from read-only to workspace-write for interactive/ask mode but missed updating the parallel test in packages/forge. This caused forge-test CI to fail on all platforms. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
plusplusoneplusplus
deleted the
pr/245582e98-fix-use-workspace-write-codex-sandbox-fo
branch
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.