codex-worker

The code fragment is a utility README that reliably documents how to spawn parallel Codex CLI agents using git worktrees and tmux. It does not contain obfuscated or overtly malicious code, nor hard-coded secrets. However, it explicitly recommends disabling safety controls (--dangerously-bypass-approvals-and-sandbox) and automates injection of repository data and arbitrary prompts into networked agents. That operational pattern presents a meaningful supply-chain and data-exfiltration risk: sensitive repo contents or credentials accessible to the worktrees can be transmitted off-host or modified without sufficient review. Treat usage as high-risk unless mitigations (sandboxing, egress restrictions, review gates) are applied.