Use workspace requirements for guardian prompt override (#14727)

## Summary - move `guardian_developer_instructions` from managed config into workspace-managed `requirements.toml` - have guardian continue using the override when present and otherwise fall back to the bundled local guardian prompt - keep the generalized prompt-quality improvements in the shared guardian default prompt - update requirements parsing, layering, schema, and tests for the new source of truth ## Context This replaces the earlier managed-config / MDM rollout plan. The intended rollout path is workspace-managed requirements, including cloud enterprise policies, rather than backend model metadata, Statsig, or Jamf-managed config. That keeps the default/fallback behavior local to `codex-rs` while allowing faster policy updates through the enterprise requirements plane. This is intentionally an admin-managed policy input, not a user preference: the guardian prompt should come either from the bundled `codex-rs` default or from enterprise-managed `requirements.toml`, and normal user/project/session config should not override it. ## Updating The OpenAI Prompt After this lands, the OpenAI-specific guardian prompt should be updated through the workspace Policies UI at `/codex/settings/policies` rather than through Jamf or codex-backend model metadata. Operationally: - open the workspace Policies editor as a Codex admin - edit the default `requirements.toml` policy, or a higher-precedence group-scoped override if we ever want different behavior for a subset of users - set `guardian_developer_instructions = """..."""` to the full OpenAI-specific guardian prompt text - save the policy; codex-backend stores the raw TOML and `codex-rs` fetches the effective requirements file from `/wham/config/requirements` When updating the OpenAI-specific prompt, keep it aligned with the shared default guardian policy in `codex-rs` except for intentional OpenAI-only additions. ## Testing - `cargo check --tests -p codex-core -p codex-config -p codex-cloud-requirements --message-format short` - `cargo run -p codex-core --bin codex-write-config-schema` - `cargo fmt` - `git diff --check` Co-authored-by: Codex <noreply@openai.com>
2026-04-30 11:21:34 +03:00 · 2026-03-17 22:05:41 -07:00
parent 3ce879c646
commit 226241f035
14 changed files with 297 additions and 13 deletions
--- a/codex-rs/cloud-requirements/src/lib.rs
+++ b/codex-rs/cloud-requirements/src/lib.rs
@@ -1122,6 +1122,7 @@ mod tests {
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1166,6 +1167,7 @@ mod tests {
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1246,6 +1248,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1297,6 +1300,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1348,6 +1352,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1509,6 +1514,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1538,6 +1544,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1587,6 +1594,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::OnRequest]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1635,6 +1643,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::OnRequest]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1687,6 +1696,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1740,6 +1750,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1793,6 +1804,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1879,6 +1891,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::Never]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,
@@ -1904,6 +1917,7 @@ enabled = false
                allowed_approval_policies: Some(vec![AskForApproval::OnRequest]),
                allowed_sandbox_modes: None,
                allowed_web_search_modes: None,
+                guardian_developer_instructions: None,
                feature_requirements: None,
                mcp_servers: None,
                apps: None,