Skip to content

Security: pmwl0128/codex_usage_reset

Security

SECURITY.md

Security

This repository contains a Codex skill that reads local Codex account state and reports sanitized usage information.

Safety Model

  • The script is read-only.
  • Allowed network requests are documented in codex-usage-reset/references/safety-boundary.md.
  • Do not add calls that consume, redeem, reset, mutate, or delete rate-limit state.
  • Do not log or display access tokens, refresh tokens, ID tokens, raw auth.json, raw endpoint JSON, full account IDs, user IDs, or reset-credit IDs.

Reporting

If you find a security issue, open a private report to the repository owner instead of filing a public issue with sensitive details.

Local Secrets

Never commit local Codex credentials or captured endpoint responses. Keep any debugging artifacts outside the repository or in ignored local cache paths.

There aren't any published security advisories