@openai/codex-sdk - npm Package Compare versions

Comparing version 0.125.0 to 0.126.0-alpha.1

package.json

 {
   "name": "@openai/codex-sdk",
-  "version": "0.125.0",
+  "version": "0.126.0-alpha.1",
   "description": "TypeScript SDK for Codex APIs.",
@@ -65,6 +65,6 @@ "repository": {
   },
-  "packageManager": "pnpm@10.29.3+sha512.498e1fb4cca5aa06c1dcf2611e6fafc50972ffe7189998c409e90de74566444298ffe43e6cd2acdc775ba1aa7cc5e092a8b7054c811ba8c5770f84693d33d2dc",
+  "packageManager": "pnpm@10.33.0+sha512.10568bb4a6afb58c9eb3630da90cc9516417abebd3fabbe6739f0ae795728da1491e9db5a544c76ad8eb7570f5c4bb3d6c637b2cb41bfdcdb47fa823c8649319",
   "dependencies": {
-    "@openai/codex": "0.125.0"
+    "@openai/codex": "0.126.0-alpha.1"
   }
 }

New alerts

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Fixed alerts

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

70168

0.02%

Dependency changes

• + Added

  @openai/codex@0.126.0-alpha.10.126.0-alpha.1-darwin-arm640.126.0-alpha.1-darwin-x640.126.0-alpha.1-linux-arm640.126.0-alpha.1-linux-x640.126.0-alpha.1-win32-arm640.126.0-alpha.1-win32-x64
  (transitive)

• - Removed

  @openai/codex@0.125.00.125.0-darwin-arm640.125.0-darwin-x640.125.0-linux-arm640.125.0-linux-x640.125.0-win32-arm640.125.0-win32-x64
  (transitive)

• Updated

  @openai/codex@0.126.0-alpha.1