Review npm CLI auto-upgrade trust

[nisavid]

Summary

Review and tighten trust handling for automatic @openai/codex CLI upgrades.

Source

Migrated from docs/maintainers/security-backlog.md.

Maintained Docs

• Security backlog index and review workflow: docs/maintainers/security-backlog.md
• Threat model: docs/maintainers/threat-model.md
• Package and runtime maintenance: docs/maintainers/package-runtime-maintenance.md

Context

The launcher/updater preflight can query npm for the latest @openai/codex version and install that exact version globally or under ~/.local. Missing CLI installation is interactive, but upgrades still trust npm latest-state.

Review Gate

Run the @codex-security workflow before treating implementation as review-ready.

Desired State

• Upgrades require explicit user consent or an approved-version channel.
• npm package provenance or signatures are verified where available.
• The selected CLI version and verification result are logged.

[coderabbitai]

🔗 Related PRs

#8 - [codex] merge upstream warm-start, zypper, and updater lock updates [merged]
#9 - Fix updater builder ownership and launch races [merged]
#12 - docs: audit fork divergence docs [merged]
#23 - fix(launcher): address late review findings [merged]
#32 - docs(security): add vulnerability reporting policy [merged]

---

📝 Issue Planner

_{Check the box below or use the @coderabbitai plan command to generate an implementation plan and prompts that you can use with your favorite coding assistant.}

• Create Plan

---

🧪 Issue enrichment is currently in open beta.

You can configure auto-planning by selecting labels in the issue_enrichment configuration.

To disable automatic issue enrichment, add the following to your .coderabbit.yaml:

issue_enrichment:
  auto_enrich:
    enabled: false

💬 Have feedback or questions? Drop into our discord!