Codex `rust-v0.122.0` ships TUI side chats, Plan Mode upgrades, and plugin overhaul
OpenAI's Codex `rust-v0.122.0` release adds `/side` conversations in the TUI, Plan Mode context controls, expanded plugin workflows with tabbed browsing and marketplace management, and tightened filesystem and security policies.
Score breakdown
Developers using Codex can now run parallel side conversations, enforce stricter filesystem sandbox policies, and manage plugins from multiple marketplace sources — making the tool more capable and secure for agentic coding workflows.
- 01Release version is `rust-v0.122.0`, compared against `rust-v0.121.0`
- 02TUI gains `/side` conversations and slash-command/`!` shell prompt support in queued input while work is running
- 03Plan Mode can now start implementation in a fresh context with context-usage shown before carrying the planning thread forward
Codex `rust-v0.122.0` introduces several user-facing improvements across the TUI, Plan Mode, and plugin system. Standalone installs are now more self-contained, and `codex app` correctly opens or installs Desktop on Windows and Intel Macs. The TUI can open `/side` conversations for quick side questions, and queued input now supports slash commands and `!` shell prompts while work is running. Plan Mode can start implementation in a fresh context, with context-usage shown before the user decides whether to carry the planning thread forward.
Filesystem permissions were hardened with deny-read glob policies, managed deny-read requirements, platform sandbox enforcement, and isolated `codex exec` runs that ignore user config or rules.
Plugin workflows received a major expansion, now including tabbed browsing, inline enable/disable toggles, marketplace removal, and support for remote, cross-repo, or local marketplace sources. Filesystem permissions were hardened with deny-read glob policies, managed deny-read requirements, platform sandbox enforcement, and isolated `codex exec` runs that ignore user config or rules. Tool discovery and image generation are now enabled by default, with higher-detail image handling and original-detail metadata support for MCP and `js_repl` image outputs.
On the bug fix side, stale app-server approval prompts and MCP elicitations now correctly disappear from the TUI when resolved by another client. Security-sensitive flows were tightened: logout revokes managed ChatGPT tokens, project hooks and exec policies require trusted workspaces, and Windows sandbox setup avoids broad user-profile and SSH-root grants. Internally, plugin and marketplace code was split into a `codex-core-plugins` crate, config loading and `AGENTS.md` discovery were refactored behind narrower abstractions, and CI was stabilized with native Rust test sharding and updated `rules_rs`/LLVM pins.
Key facts
- 01Release version is `rust-v0.122.0`, compared against `rust-v0.121.0`
- 02TUI gains `/side` conversations and slash-command/`!` shell prompt support in queued input while work is running
- 03Plan Mode can now start implementation in a fresh context with context-usage shown before carrying the planning thread forward
- 04Plugin workflows expanded with tabbed browsing, inline enable/disable toggles, marketplace removal, and remote/cross-repo/local marketplace sources
- 05Filesystem permissions now support deny-read glob policies and isolated `codex exec` runs that ignore user config or rules