codex-exec

SUSPICIOUS. Core functionality is mostly aligned with the stated purpose: it wraps the official local Codex CLI and uses benign load-time checks. The main concerns are the silent remote update check to a mutable personal GitHub raw URL and the optional `npx skills update` transitive install path, which introduce extra supply-chain trust not required to run Codex. No confirmed malware, secret theft, or malicious pre-execution behavior is present.