Skip to main content

codex-auth

Manages OpenAI Codex CLI authentication, enabling seamless access and multi-account management for developers.

Install this skill

or
28/100

Security score

The codex-auth skill was audited on Feb 9, 2026 and we found 26 security issues across 5 threat categories, including 1 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

medium line 260

Template literal with variable interpolation in command context

SourceSKILL.md
260```yaml
medium line 444

Template literal with variable interpolation in command context

SourceSKILL.md
444```bash
medium line 381

Curl to non-GitHub URL

SourceSKILL.md
381curl https://api.openai.com/v1/models \
medium line 390

Curl to non-GitHub URL

SourceSKILL.md
390curl -I https://api.openai.com/v1/models \
low line 52

Access to hidden dotfiles in home directory

SourceSKILL.md
52mkdir -p ~/.codex
low line 53

Access to hidden dotfiles in home directory

SourceSKILL.md
53cat > ~/.codex/config.toml << 'EOF'
low line 56

Access to hidden dotfiles in home directory

SourceSKILL.md
56chmod 600 ~/.codex/config.toml
medium line 72

Access to hidden dotfiles in home directory

SourceSKILL.md
724. User config `~/.codex/config.toml`
low line 78

Access to hidden dotfiles in home directory

SourceSKILL.md
78# ~/.codex/config.toml
low line 310

Access to hidden dotfiles in home directory

SourceSKILL.md
310# docker run -v ~/.codex:/root/.codex ...
low line 354

Access to hidden dotfiles in home directory

SourceSKILL.md
354cat ~/.codex/config.toml
low line 366

Access to hidden dotfiles in home directory

SourceSKILL.md
366rm -rf ~/.codex/credentials
low line 394

Access to hidden dotfiles in home directory

SourceSKILL.md
394# Set in ~/.codex/config.toml:
low line 419

Access to hidden dotfiles in home directory

SourceSKILL.md
419chmod 600 ~/.codex/config.toml
low line 449

Access to hidden dotfiles in home directory

SourceSKILL.md
449local log_dir="~/.codex/audit"
low line 460

Access to hidden dotfiles in home directory

SourceSKILL.md
460elif [ -f ~/.codex/credentials ]; then
low line 496

Access to hidden dotfiles in home directory

SourceSKILL.md
496# ~/.codex/config.toml with multiple profiles (December 2025)
medium line 310

Access to root home directory

SourceSKILL.md
310# docker run -v ~/.codex:/root/.codex ...
low line 415

Access to .env file

SourceSKILL.md
415echo '.env' >> .gitignore
high line 216

Access to system keychain/keyring

SourceSKILL.md
216### Using macOS Keychain
medium line 220

Access to system keychain/keyring

SourceSKILL.md
220# Store in macOS Keychain
medium line 228

Access to system keychain/keyring

SourceSKILL.md
228# Retrieve from keychain
low line 381

External URL reference

SourceSKILL.md
381curl https://api.openai.com/v1/models \
low line 384

External URL reference

SourceSKILL.md
384# Regenerate key at https://platform.openai.com/api-keys
low line 390

External URL reference

SourceSKILL.md
390curl -I https://api.openai.com/v1/models \
low line 428

External URL reference

SourceSKILL.md
428echo "Visit https://platform.openai.com/api-keys to generate new key"
Scanned on Feb 9, 2026
View Security Dashboard
Installation guide →
GitHub Stars 106
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawapiml-ai-engineerbackend-developerdevops-sreopenaidevelopment
majiayu000/claude-skill-registry