Codex CLI 0.132.0: workflows and integrations
Codex CLI 0.132.0 tightens AGENTS.md, MCP, and verification loops for reviewable diffs.

The thing that makes Codex CLI 0.132.0 useful is not that it writes code faster. It is that the release lines up three habits that decide whether a change ships: repo rules in AGENTS.md, connector limits for MCP, and a verification loop that produces a diff your reviewer can trust. Codex CLI is OpenAI's coding agent that runs in your terminal and reads your repo's instruction files before it touches anything.
Most teams do not stall because the agent can't write the code. They stall when the change is hard to review, hard to verify, or hard to fit into the rules everyone else already follows. This piece is about closing that gap with the tools the release gives you.
Set up an AGENTS.md the agent will actually follow
AGENTS.md is a plain markdown file at the repo root that tells the agent the durable rules of your codebase. Put the one rule that matters most right at the top, in a sentence a new teammate would also understand.
When a nested folder behaves differently, give it its own AGENTS.md. Codex reads the nearest one, so scoped rules live next to the code they govern instead of crowding the root file. That is the whole trick: the rule travels with the directory.
Keep AGENTS.override.md for temporary exceptions only, and put a date on each one. An override that has no expiry quietly becomes the new default, which is how repos drift. If you find yourself reaching for an override twice, the rule probably belongs in AGENTS.md instead.
Run a verify-before-merge loop with codex exec
A patch generated in one pass is a claim. A patch that survived your test command is a candidate. The difference is the loop, and Codex CLI gives you a headless surface for it: codex exec.
The pattern is small. Make the change, run the repo's tests, read the diff, repeat until it holds. When you attach that command output to the review, the diff stops being something a reviewer has to take on faith.
# Make a scoped change, then prove it before asking for review
codex exec "apply the fix in src/, then run pnpm test and stop if anything fails"
# Reviewer can read the diff and the test output without replaying the session
git diff --stat
The point is not the exact command. It is that the verification step is named and visible, so nobody has to wonder whether it happened.
Give every MCP connector a boundary
MCP is the integration layer that lets Codex reach systems outside the repo: GitHub, Slack, Jira, your docs. That reach is the value, and it is also the risk, because a connector with vague permissions widens what a single task can touch.
So write one boundary sentence per connector before you wire it in: what it may read, what it may write, and what it must never touch. The MCP specification at modelcontextprotocol.io defines how connectors expose their capabilities, but the policy of what yours is allowed to do is yours to set.
| Connector | May read | May write | Never |
|---|---|---|---|
| GitHub | issues, PR diffs | PR comments | force-push, branch deletes |
| Slack | a single channel | nothing | DMs, other channels |
| Docs | the team wiki | nothing | anything outside the wiki |
This turns connector setup into a decision someone made on purpose, which is exactly what you want when something later goes wrong and you need to explain the blast radius.
Compare the loop, not the logo
"Codex vs Claude Code" is the search people type, but the comparison that helps is operational, not brand-deep. Ask which tool gives your repo better instruction discovery, cleaner reviewable diffs, and a shorter path to verified production changes.
Codex CLI is open source, so you can inspect its behavior directly in the openai/codex repository rather than reasoning from a feature list. Run both on a real task in your codebase and compare the outputs and the review experience, not the marketing.
Here is a checklist you can paste straight into a review template for Codex-authored changes:
# Codex CLI review checklist
- [ ] AGENTS.md states the rule that mattered most for this change
- [ ] Any special folder has its own scoped instruction file
- [ ] Temporary exceptions live in AGENTS.override.md and are dated
- [ ] The change went through a verify loop, not a single pass
- [ ] Test or command output is attached to the review
- [ ] Every MCP connector used has a written boundary note
- [ ] The diff is reviewable without re-running the agent
- [ ] A human can explain the change in one paragraph
Common questions
-
What does Codex CLI 0.132.0 change for engineering teams?
It tightens the connection between three things that already decide whether a change ships:
AGENTS.mdrepo rules, MCP connector boundaries, and a verification loop that leaves a diff you can trust. The practical habit it rewards is small scope, visible checks, and changes a reviewer can read without replaying the session. -
Where do the Codex CLI release notes live?
The changelog and the CLI source sit in the open source openai/codex repository on GitHub. OpenAI's developer docs cover the CLI surface, including the quickstart, the CLI reference, and the headless
codex execcommand used in verification loops. -
How should a team decide between Codex and Claude Code?
Compare the loop, not the logo. Pick the tool that gives your repo better instruction discovery, cleaner reviewable diffs, and a shorter path to verified changes. Because Codex CLI is open source, you can inspect how it behaves directly and run the comparison on real outputs rather than feature claims.
-
What belongs in AGENTS.md versus AGENTS.override.md?
AGENTS.mdholds durable repo rules, with nested copies added where a folder behaves differently.AGENTS.override.mdis only for temporary, dated exceptions. Used this way, reviewers stop asking why the agent did something and start checking whether the right instruction file was in scope. -
Can Codex CLI run without a chat window?
Yes. The
codex execcommand runs Codex headless, which is what makes it fit a verify-before-merge loop in CI or a local script. You can see the available commands and flags in OpenAI's CLI features and slash commands docs.
Try it on one real change
Pick a small, scoped task this week and run it through the full loop: a clear AGENTS.md rule, a bounded connector, and codex exec with your test command attached to the review. Then take it into the related training topic and check whether a new reviewer can defend the merge without replaying the chat.
Related training topics
Related research

Codex workflows for Chrome and the CLI
Codex workflows that cross into Chrome: the browser bridge note, model pin, connector roster, and done checklist that keep two surfaces telling one story.

Codex governance: four contracts that hold in review
A codex governance note for engineering teams: the slash catalog, verification latch, browser bridge note, and model pin that keep Codex CLI work reviewable.

Codex CLI, Appshots, and Goal Mode
A practical Codex CLI comparison for codex cli vs claude code, with AGENTS.md, MCP, and verification loops.
Continue through the research archive
Newer research
MCP training for engineering teams
Practical mcp training for engineering teams using agentic coding, review guardrails, and connector boundaries.
Earlier research
Codex governance: four contracts that hold in review
A codex governance note for engineering teams: the slash catalog, verification latch, browser bridge note, and model pin that keep Codex CLI work reviewable.