A Codex-native software development team framework.
This project ports the core ideas from role-based agent development
frameworks into primitives that fit Codex: AGENTS.md, reusable skills,
repo-local scripts, JSON gates, Git/worktree-friendly workflows, and
local/cloud execution profiles.
- A structured 9-stage delivery pipeline
- Codex skills for pipeline, implementation, review, and audit workflows
- Deterministic JSON gates validated by
scripts/gate-validator.js - Status dashboard for gates, key artifacts, and audit state
- Stage 5 approval derivation from review files
- Security-trigger and runbook helper checks
- Bootstrap installation into target projects
- Pluggable Stage 8 deployment adapters for Docker Compose, Kubernetes, Terraform, and custom scripts
- Role definitions for PM, Principal, Backend, Frontend, Platform, QA, and Security
- CI-ready tests with no runtime dependencies
- Version and contract drift tests from the start
npm test
npm run help
npm run lint
npm run doctor
bash bootstrap.sh /path/to/target-projectBootstrap preserves the host project's identity. If the target already has a
package.json, missing npm command shims are added without overwriting existing
scripts. If the target is not a Node project, no package.json is created; use
the installed CLI directly:
node scripts/codex-team.js help
node scripts/codex-team.js status
node scripts/codex-team.js pipeline "Add authentication"Then open the target project in Codex and use the installed skills:
pipeline: build <feature>implement <item>pre-pr-reviewaudit <scope>
- Codex-native, not Claude-compatible-by-accident.
- Deterministic state beats prose-only status.
- Every workflow is usable locally and portable to cloud delegation.
- Git history and PR review are first-class outputs.
- Tests guard the framework contracts, not just JavaScript syntax.
.codex/
config.yml
rules/
skills/
schemas/
scripts/
tests/
pipeline/
examples/
v1.0.0 shipped at feature parity with the local claude-dev-team framework
and added Codex-native CLI automation, JSON status/roadmap outputs, deployment
adapters, strict parity checks, and dogfood install coverage.
v1.1.0 deepened that parity: role prompts fleshed out, audit-phases reference
added, budget/checkpoint config blocks added to .codex/config.yml, approval
locking hardened, and parity-check coverage expanded.
v1.2.0 (unreleased, on branch codex/elevate-with-claude-depth) adds prose
depth to all rule files, scripts/budget.js and scripts/visualize.js, async
checkpoint auto-pass logic, EXAMPLE.md, CHANGELOG.md, and CONTRIBUTING.md.
The framework remains local-only by design until you decide to publish a remote.
npm run doctor
npm run gate:check
npm run gate:check:all
npm run pipeline:check
npm run validate
npm run release:check
npm run release:notes
npm run pr:pack
npm run parity:check
npm run status
npm run status -- --json
npm run next
npm run next -- --json
npm run summary
npm run roadmap
npm run roadmap -- --json
npm run audit -- "src/backend"
npm run audit:quick -- "src/frontend"
npm run health-check
npm run reset
npm run pipeline -- "Add authentication"
npm run quick -- "Fix empty state copy"
npm run nano -- "Fix README typo"
npm run config-only -- "Toggle existing checkout flag"
npm run dep-update -- "Upgrade lodash to 4.17.21"
npm run hotfix -- "Fix production checkout timeout"
npm run pipeline:scaffold -- "Add authentication"
npm run pipeline:new -- "Add authentication"
npm run pipeline:brief -- "Add authentication"
npm run design -- "Add authentication"
npm run pipeline:review
npm run pipeline:context
npm run retrospective
npm run ask-pm -- "Which tenants are in scope?"
npm run ask-pm
npm run principal-ruling -- "Should this use webhooks or polling?"
npm run adr -- "Use webhooks for external sync"
npm run resume -- 4 "design approved"
npm run role -- pm
npm run prompt -- requirements "Add authentication"
npm run stage -- requirements
npm run stage -- design
npm run stage -- clarification
npm run stage -- build
npm run stage -- pre-review
npm run stage -- peer-review
npm run stage -- qa
npm run review:derive
npm run security:check -- src/backend/auth/session.js
npm run runbook:check
npm run autofold
npm run budget -- init
npm run budget -- update <stage>
npm run budget -- check
npm run visualize
npm run lessons -- show
npm run lessons -- promote
npm run checkpoint -- requirements # async-checkpoint auto-pass evaluatorSet CODEX_TEAM_TRACK=quick (or another supported gate track) before stage or
prompt commands to stamp that track into generated gates.
Stoplist enforcement (parity item B-13, post-v1.2): the lighter tracks
(quick, nano, config-only, dep-update) refuse stoplist-matching
descriptions or diffs (auth, crypto, PII, payments, migrations, feature
flags). Bypass a verified false positive with --force:
npm run quick -- "fix login redirect" --forceStructured logs (parity item B-23): both hooks (gate-validator,
approval-derivation) emit one JSON event line per terminal exit when
LOG_FORMAT=json is set:
LOG_FORMAT=json npm run review:derivenpm run status includes gate readiness, artifact presence, audit state, and
decision-flow signals from pipeline/context.md, including open PM questions,
principal ruling requests, resume notes, and ADR/key-decision entries.
npm run next is track-aware: alternate tracks such as quick, nano,
config-only, dep-update, and hotfix advance only through the stages they use.
Stage 8 reads .codex/config.yml and .codex/adapters/<adapter>.md. The
default adapter is docker-compose; built-in alternatives are kubernetes,
terraform, and custom. Adapters are documented procedures, not hidden
executors: the Platform role follows the selected adapter, writes
pipeline/deploy-log.md, and advances pipeline/gates/stage-08.json.