# codex 0.144.1

Lightweight coding agent that runs in your terminal

Snapshot of gominimal/pkgs commit `cd4b09dd2f492c47fba70eb1b8a8c724dabdc7e9` (pushed 2026-07-10T23:16:55.000Z).

## Install

```sh
min add codex
```

## Direct advisories

None at this commit.

## Transitive advisories

21 advisories inherited through runtime dependencies:

- CVE-2026-4046 (HIGH) via glibc
- CVE-2026-4437 (HIGH) via glibc
- CVE-2026-4438 (MEDIUM) via glibc
- CVE-2026-5450 (CRITICAL) via glibc
- CVE-2026-5928 (HIGH) via glibc
- CVE-2026-45186 (LOW) via git → expat
- CVE-2026-50219 (MEDIUM) via git → expat
- CVE-2026-56131 (MEDIUM) via git → expat
- CVE-2026-56132 (MEDIUM) via git → expat
- CVE-2026-56403 (MEDIUM) via git → expat
- CVE-2026-56404 (MEDIUM) via git → expat
- CVE-2026-56405 (MEDIUM) via git → expat
- CVE-2026-56406 (MEDIUM) via git → expat
- CVE-2026-56407 (MEDIUM) via git → expat
- CVE-2026-56408 (MEDIUM) via git → expat
- CVE-2026-56409 (MEDIUM) via git → expat
- CVE-2026-56410 (MEDIUM) via git → expat
- CVE-2026-56411 (MEDIUM) via git → expat
- CVE-2026-56412 (MEDIUM) via git → expat
- GHSA-q7rw-r7qq-2hx6 (UNKNOWN) via git → pcre2
- OSV-2026-343 (HIGH) via git → pcre2

## Dependencies

- Build (7): base, rust, toolchain, pkgconf, cmake, llvm, openssl
- Runtime (4): glibc, openssl, libcap, git

## Scorecard

| Category | Score | Band |
| --- | --- | --- |
| supply-chain | 74 | mid |
| advisories | 10 | low |
| quality | 23 | low |
| maintenance | 100 | perfect |
| licence | 100 | perfect |

## Links

- Package page (HTML): https://minimal.dev/pkgs/codex
- JSON API (floats latest): https://minimal.dev/api/pkgs/codex.json
- SBOM (CycloneDX 1.5): https://minimal.dev/api/pkgs/codex/sbom.json
