Back to Research

Codex CLI 0.132.0: workflows and integrations

Codex CLI 0.132.0 tightens AGENTS.md, MCP, and verification loops for reviewable diffs.

Harbor of Boston, with the City in the Distance, landscape painting by Fitz Henry Lane (1846).
Rogier MullerMay 20, 20266 min read

The thing that makes Codex CLI 0.132.0 useful is not that it writes code faster. It is that the release lines up three habits that decide whether a change ships: repo rules in AGENTS.md, connector limits for MCP, and a verification loop that produces a diff your reviewer can trust. Codex CLI is OpenAI's coding agent that runs in your terminal and reads your repo's instruction files before it touches anything.

Most teams do not stall because the agent can't write the code. They stall when the change is hard to review, hard to verify, or hard to fit into the rules everyone else already follows. This piece is about closing that gap with the tools the release gives you.

Set up an AGENTS.md the agent will actually follow

AGENTS.md is a plain markdown file at the repo root that tells the agent the durable rules of your codebase. Put the one rule that matters most right at the top, in a sentence a new teammate would also understand.

When a nested folder behaves differently, give it its own AGENTS.md. Codex reads the nearest one, so scoped rules live next to the code they govern instead of crowding the root file. That is the whole trick: the rule travels with the directory.

Keep AGENTS.override.md for temporary exceptions only, and put a date on each one. An override that has no expiry quietly becomes the new default, which is how repos drift. If you find yourself reaching for an override twice, the rule probably belongs in AGENTS.md instead.

Run a verify-before-merge loop with codex exec

A patch generated in one pass is a claim. A patch that survived your test command is a candidate. The difference is the loop, and Codex CLI gives you a headless surface for it: codex exec.

The pattern is small. Make the change, run the repo's tests, read the diff, repeat until it holds. When you attach that command output to the review, the diff stops being something a reviewer has to take on faith.

# Make a scoped change, then prove it before asking for review
codex exec "apply the fix in src/, then run pnpm test and stop if anything fails"

# Reviewer can read the diff and the test output without replaying the session
git diff --stat

The point is not the exact command. It is that the verification step is named and visible, so nobody has to wonder whether it happened.

Give every MCP connector a boundary

MCP is the integration layer that lets Codex reach systems outside the repo: GitHub, Slack, Jira, your docs. That reach is the value, and it is also the risk, because a connector with vague permissions widens what a single task can touch.

So write one boundary sentence per connector before you wire it in: what it may read, what it may write, and what it must never touch. The MCP specification at modelcontextprotocol.io defines how connectors expose their capabilities, but the policy of what yours is allowed to do is yours to set.

Connector May read May write Never
GitHub issues, PR diffs PR comments force-push, branch deletes
Slack a single channel nothing DMs, other channels
Docs the team wiki nothing anything outside the wiki

This turns connector setup into a decision someone made on purpose, which is exactly what you want when something later goes wrong and you need to explain the blast radius.

Compare the loop, not the logo

"Codex vs Claude Code" is the search people type, but the comparison that helps is operational, not brand-deep. Ask which tool gives your repo better instruction discovery, cleaner reviewable diffs, and a shorter path to verified production changes.

Codex CLI is open source, so you can inspect its behavior directly in the openai/codex repository rather than reasoning from a feature list. Run both on a real task in your codebase and compare the outputs and the review experience, not the marketing.

Here is a checklist you can paste straight into a review template for Codex-authored changes:

# Codex CLI review checklist

- [ ] AGENTS.md states the rule that mattered most for this change
- [ ] Any special folder has its own scoped instruction file
- [ ] Temporary exceptions live in AGENTS.override.md and are dated
- [ ] The change went through a verify loop, not a single pass
- [ ] Test or command output is attached to the review
- [ ] Every MCP connector used has a written boundary note
- [ ] The diff is reviewable without re-running the agent
- [ ] A human can explain the change in one paragraph

Common questions

  • What does Codex CLI 0.132.0 change for engineering teams?

    It tightens the connection between three things that already decide whether a change ships: AGENTS.md repo rules, MCP connector boundaries, and a verification loop that leaves a diff you can trust. The practical habit it rewards is small scope, visible checks, and changes a reviewer can read without replaying the session.

  • Where do the Codex CLI release notes live?

    The changelog and the CLI source sit in the open source openai/codex repository on GitHub. OpenAI's developer docs cover the CLI surface, including the quickstart, the CLI reference, and the headless codex exec command used in verification loops.

  • How should a team decide between Codex and Claude Code?

    Compare the loop, not the logo. Pick the tool that gives your repo better instruction discovery, cleaner reviewable diffs, and a shorter path to verified changes. Because Codex CLI is open source, you can inspect how it behaves directly and run the comparison on real outputs rather than feature claims.

  • What belongs in AGENTS.md versus AGENTS.override.md?

    AGENTS.md holds durable repo rules, with nested copies added where a folder behaves differently. AGENTS.override.md is only for temporary, dated exceptions. Used this way, reviewers stop asking why the agent did something and start checking whether the right instruction file was in scope.

  • Can Codex CLI run without a chat window?

    Yes. The codex exec command runs Codex headless, which is what makes it fit a verify-before-merge loop in CI or a local script. You can see the available commands and flags in OpenAI's CLI features and slash commands docs.

Try it on one real change

Pick a small, scoped task this week and run it through the full loop: a clear AGENTS.md rule, a bounded connector, and codex exec with your test command attached to the review. Then take it into the related training topic and check whether a new reviewer can defend the merge without replaying the chat.

Related training topics

Related research

Continue through the research archive

Ready to start?

Transform how your team builds software.

Get in touch