Codex reads configuration details from more than one location. Your personal defaults live in ~/.codex/config.toml, and you can add project overrides with .codex/config.toml files. For security, Codex loads project config files only when you trust the project.
Codex configuration file
Codex stores user-level configuration at ~/.codex/config.toml. To scope settings to a specific project or subfolder, add a .codex/config.toml file in your repo.
To open the configuration file from the Codex IDE extension, select the gear icon in the top-right corner, then select Codex Settings > Open config.toml.
The CLI and IDE extension share the same configuration layers. You can use them to:
- Set the default model and provider.
- Configure approval policies and sandbox settings.
- Configure MCP servers.
Configuration precedence
Codex resolves values in this order (highest precedence first):
- CLI flags and
--configoverrides - Profile values (from
--profile <name>) - Project config files:
.codex/config.toml, ordered from the project root down to your current working directory (closest wins; trusted projects only) - User config:
~/.codex/config.toml - System config (if present):
/etc/codex/config.tomlon Unix - Built-in defaults
Use that precedence to set shared defaults at the top level and keep profiles focused on the values that differ.
If you mark a project as untrusted, Codex skips project-scoped .codex/ layers (including .codex/config.toml) and falls back to user, system, and built-in defaults.
For one-off overrides via -c/--config (including TOML quoting rules), see Advanced Config.
On managed machines, your organization may also enforce constraints via
requirements.toml (for example, disallowing approval_policy = "never" or
sandbox_mode = "danger-full-access"). See Managed
configuration and Admin-enforced
requirements.
Common configuration options
Here are a few options people change most often:
Default model
Choose the model Codex uses by default in the CLI and IDE.
model = "gpt-5.2"Approval prompts
Control when Codex pauses to ask before running generated commands.
approval_policy = "on-request"For behavior differences between untrusted, on-request, and never, see Run without approval prompts and Common sandbox and approval combinations.
Sandbox level
Adjust how much filesystem and network access Codex has while executing commands.
sandbox_mode = "workspace-write"For mode-by-mode behavior (including protected .git/.codex paths and network defaults), see Sandbox and approvals, Protected paths in writable roots, and Network access.
Windows sandbox mode
When running Codex natively on Windows, set the native sandbox mode to elevated in the windows table. Use unelevated only if you do not have administrator permissions or if elevated setup fails.
[windows]
sandbox = "elevated" # Recommended
# sandbox = "unelevated" # Fallback if admin permissions/setup are unavailableWeb search mode
Codex enables web search by default for local tasks and serves results from a web search cache. The cache is an OpenAI-maintained index of web results, so cached mode returns pre-indexed results instead of fetching live pages. This reduces exposure to prompt injection from arbitrary live content, but you should still treat web results as untrusted. If you are using --yolo or another full access sandbox setting, web search defaults to live results. Choose a mode with web_search:
"cached"(default) serves results from the web search cache."live"fetches the most recent data from the web (same as--search)."disabled"turns off the web search tool.
web_search = "cached" # default; serves results from the web search cache
# web_search = "live" # fetch the most recent data from the web (same as --search)
# web_search = "disabled"Reasoning effort
Tune how much reasoning effort the model applies when supported.
model_reasoning_effort = "high"Communication style
Set a default communication style for supported models.
personality = "friendly" # or "pragmatic" or "none"You can override this later in an active session with /personality or per thread/turn when using the app-server APIs.
Command environment
Control which environment variables Codex forwards to spawned commands.
[shell_environment_policy]
include_only = ["PATH", "HOME"]Log directory
Override where Codex writes local log files such as codex-tui.log.
log_dir = "/absolute/path/to/codex-logs"For one-off runs, you can also set it from the CLI:
codex -c log_dir=./.codex-logFeature flags
Use the [features] table in config.toml to toggle optional and experimental capabilities.
[features]
shell_snapshot = true # Speed up repeated commandsSupported features
| Key | Default | Maturity | Description |
|---|---|---|---|
apply_patch_freeform | false | Experimental | Include the freeform apply_patch tool |
apps | false | Experimental | Enable ChatGPT Apps/connectors support |
apps_mcp_gateway | false | Experimental | Route Apps MCP calls through https://api.openai.com/v1/connectors/mcp/ instead of legacy routing |
collaboration_modes | true | Stable | Enable collaboration modes such as plan mode |
multi_agent | false | Experimental | Enable multi-agent collaboration tools |
personality | true | Stable | Enable personality selection controls |
remote_models | false | Experimental | Refresh remote model list before showing readiness |
runtime_metrics | false | Experimental | Show runtime metrics summaries in TUI turn separators |
request_rule | true | Stable | Enable Smart approvals (prefix_rule suggestions) |
search_tool | false | Experimental | Enable search_tool_bm25 so Codex discovers Apps MCP tools via search before tool calls |
shell_snapshot | false | Beta | Snapshot your shell environment to speed up repeated commands |
shell_tool | true | Stable | Enable the default shell tool |
use_linux_sandbox_bwrap | false | Experimental | Use the bubblewrap-based Linux sandbox pipeline |
unified_exec | false | Beta | Use the unified PTY-backed exec tool |
undo | true | Stable | Enable undo via per-turn git ghost snapshots |
web_search | true | Deprecated | Legacy toggle; prefer the top-level web_search setting |
web_search_cached | true | Deprecated | Legacy toggle that maps to web_search = "cached" when unset |
web_search_request | true | Deprecated | Legacy toggle that maps to web_search = "live" when unset |
The Maturity column uses feature maturity labels such as Experimental, Beta, and Stable. See Feature Maturity for how to interpret these labels.
Enabling features
- In
config.toml, addfeature_name = trueunder[features]. - From the CLI, run
codex --enable feature_name. - To enable more than one feature, run
codex --enable feature_a --enable feature_b. - To disable a feature, set the key to
falseinconfig.toml.