Close Open Privacy Scan

bolt Snapshot: commit 2f7d89b
science engine v3
schedule 2026-07-13T05:06:02.411599+00:00

verified_user No application data leak found

No high-confidence exfiltration was found in application code.

App Privacy Score

97 /100
Low privacy risk

Low risk · 24 finding(s)

Dependency score: 100 (Low risk)

bar_chart Score Breakdown

env_fs −3

list Scan Summary

0 high 0 medium 24 low
First-party packages: 3
Dependency packages: 0
Ecosystem: npm

swap_horiz Application data flows

No high- or medium-confidence application data-flow findings in this scan.

</> First-Party Code

first-party (npm)

npm first-party
expand_more 19 low-confidence finding(s)
low env_fs production #dfb7594513badbbd Filesystem access.
repo/codex-cli/bin/codex.js:5
import { existsSync, realpathSync } from "fs";

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #ba403cf88767d1be Environment-variable access.
repo/codex-cli/bin/codex.js:159
  const userAgent = process.env.npm_config_user_agent || "";

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #602447644c738f9e Environment-variable access.
repo/codex-cli/bin/codex.js:164
  const execPath = process.env.npm_execpath || "";

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #37ecab44777ebe3c Environment-variable access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:47
  process.env.HTTP_PROXY ||

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b978511c1f2b2646 Environment-variable access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:48
  process.env.HTTPS_PROXY ||

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #94b247af3e73cf1a Environment-variable access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:49
  process.env.http_proxy ||

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #95503517a8ade856 Environment-variable access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:50
  process.env.https_proxy;

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #6b35eddef1a461ee Filesystem access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:140
        readFile(headerPath, "utf8"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #ef6ec42d4b29ab8e Filesystem access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:141
        readFile(bodyPath, "utf8"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5bbd563db22a3ae9 Environment-variable access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:272
  [process.env.TMPDIR, process.env.TEMP, process.env.TMP].forEach((baseDir) => {

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2bfc43afaf1e820a Filesystem access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:387
    const manual = await readFile(cacheFilePath(cacheDir), "utf8");

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #22c6c4bc57b39f16 Filesystem access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:397
  await writeFile(tmpPath, manual, "utf8");

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #a8e2ff7481e17224 Filesystem access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/fetch-codex-manual.mjs:404
  await writeFile(tmpPath, outlineText, "utf8");

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #4767cac27dc8667f Environment-variable access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/resolve-latest-model-info.cjs:14
    source: process.env.LATEST_MODEL_URL || DEFAULT_URL,

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b5ab6b72fe6237ed Environment-variable access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/resolve-latest-model-info.cjs:15
    baseUrl: process.env.LATEST_MODEL_BASE_URL || DEFAULT_BASE_URL,

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #d93078c1c88c9008 Filesystem access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/resolve-latest-model-info.cjs:34
    return fs.readFile(new URL(source), "utf8");

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #6b74bb89e2825d5a Filesystem access.
repo/codex-rs/skills/src/assets/samples/openai-docs/scripts/resolve-latest-model-info.cjs:38
    return fs.readFile(path.resolve(source), "utf8");

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #d1f41ecf5e55db6d Environment-variable access.
repo/sdk/typescript/samples/helpers.ts:5
    process.env.CODEX_EXECUTABLE ??

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #d668f655d9eff309 Filesystem access.
repo/sdk/typescript/src/outputSchemaFile.ts:30
    await fs.writeFile(schemaPath, JSON.stringify(schema), "utf8");

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

first-party (npm): codex-cli

npm first-party
expand_more 3 low-confidence finding(s)
low env_fs production #dfb7594513badbbd Filesystem access.
repo/codex-cli/bin/codex.js:5
import { existsSync, realpathSync } from "fs";

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #ba403cf88767d1be Environment-variable access.
repo/codex-cli/bin/codex.js:159
  const userAgent = process.env.npm_config_user_agent || "";

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #602447644c738f9e Environment-variable access.
repo/codex-cli/bin/codex.js:164
  const execPath = process.env.npm_execpath || "";

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

first-party (npm): sdk/typescript

npm first-party
expand_more 2 low-confidence finding(s)
low env_fs production #d1f41ecf5e55db6d Environment-variable access.
repo/sdk/typescript/samples/helpers.ts:5
    process.env.CODEX_EXECUTABLE ??

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #d668f655d9eff309 Filesystem access.
repo/sdk/typescript/src/outputSchemaFile.ts:30
    await fs.writeFile(schemaPath, JSON.stringify(schema), "utf8");

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.