chore: migrate additional permissions to PermissionProfile (#12731)

This PR replaces the old `additional_permissions.fs_read/fs_write` shape with a shared `PermissionProfile` model and wires it through the command approval, sandboxing, protocol, and TUI layers. The schema is adopted from the `SkillManifestPermissions`, which is also refactored to use this unified struct. This helps us easily expose permission profiles in app server/core as a follow-up.
2026-05-02 04:11:39 +03:00 · 2026-02-24 19:35:28 -08:00
parent e6bb5d8553
commit 16ca527c80
26 changed files with 572 additions and 263 deletions
--- a/codex-rs/protocol/src/prompts/permissions/approval_policy/on_request_rule_request_permission.md
+++ b/codex-rs/protocol/src/prompts/permissions/approval_policy/on_request_rule_request_permission.md
@@ -8,8 +8,8 @@ When you need extra filesystem access for one command, use:

 - `sandbox_permissions: "with_additional_permissions"`
 - `additional_permissions` with one or both fields:
-  - `fs_read`: list of paths that need read access
-  - `fs_write`: list of paths that need write access
+  - `file_system.read`: list of paths that need read access
+  - `file_system.write`: list of paths that need write access

 This keeps execution inside the current sandbox policy, while adding only the requested permissions for that command, unless an exec-policy allow rule applies and authorizes running the command outside the sandbox.