Skills
skills/crazymsn/codex-plugin/patch-codex-fast/Gen Agent Trust Hub

patch-codex-fast

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [DYNAMIC_EXECUTION]: The skill performs automated modifications to the Codex application bundle by extracting the app.asar archive, applying regex-based patches to internal JavaScript files, and disabling Electron integrity fuses such as OnlyLoadAppFromAsar and EnableEmbeddedAsarIntegrityValidation. These actions are the primary, documented functions of the skill and are performed locally to enable features restricted in standard API key mode.
  • [REMOTE_CODE_EXECUTION]: The skill invokes npx to run the @electron/asar and @electron/fuses utility packages. These are official tools maintained by the well-known Electron organization and are used here for standard application bundle management.
  • [PRIVILEGE_ESCALATION]: The skill modifies files within standard application installation paths (such as /Applications on macOS or %LOCALAPPDATA% on Windows) and utilizes the codesign system utility on macOS to re-sign the modified bundle. These operations are transparently documented as necessary steps for patching the local application.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 03:11 AM
Security Audit — agent-trust-hub — patch-codex-fast