CDX-AG-002: Secrets in AGENTS.md for Codex - Codex CLI
Summary
- Rule ID:
CDX-AG-002 - Severity:
HIGH - Category:
Codex CLI - Normative Level:
MUST - Auto-Fix:
No - Verified On:
2026-03-03
Applicability
- Tool:
codex - Version Range:
unspecified - Spec Revision:
unspecified
Evidence Sources
Test Coverage Metadata
- Unit tests:
true - Fixture tests:
true - E2E tests:
false
Examples
The following examples demonstrate what triggers this rule and how to fix it.
Invalid
OPENAI_API_KEY=sk-live-super-secret-value
Valid
Use `${OPENAI_API_KEY}` from the environment.