RubyLLM Codex provider
This adapter lets RubyLLM invoke the official local Codex CLI as a provider. It supports text completions and structured output through RubyLLM's familiar chat interface.
Authentication is handled by the Codex CLI using the account configured by
codex login; the gem does not accept or store an OpenAI API key.
Responses come from the Codex agent harness, not directly from a raw model API. Codex applies its own base instructions and runtime behavior. RubyLLM system messages are passed as Codex developer instructions, which is the closest supported mapping but not an identical wire-level request.
Requirements
- Ruby 3.3 or newer
- RubyLLM 1.16.0 or newer, below 2.0
- Codex CLI 0.144.5 or newer, available as
codex - Linux or macOS (timeout cleanup relies on POSIX process groups)
- A completed ChatGPT login:
codex login
Install Codex if necessary:
npm install -g @openai/codex
codex login
Check the model list in your installed Codex version before a large run. Model availability depends on the account and currently installed CLI.
Installation
Add the gem to your application's Gemfile:
gem "ruby_llm-codex", "~> 0.1"
Then run bundle install. You can also install it directly:
gem install ruby_llm-codex
Usage
Require the gem and use Codex as an explicit RubyLLM provider:
require "ruby_llm-codex"
class SummarySchema < RubyLLM::Schema
string :summary
end
response = RubyLLM.chat(model: ENV.fetch("CODEX_MODEL"), provider: :codex)
.with_instructions("Return a concise summary.")
.with_schema(SummarySchema)
.with_thinking(effort: :medium)
.ask("The text to summarize")
pp response.content
response.content is normalized by RubyLLM into the same Hash shape returned
for structured outputs from its other providers.
Isolation and reproducibility
By default every request:
- runs in a fresh empty temporary directory;
- uses a read-only sandbox;
- disables interactive approvals;
- ignores user Codex configuration while retaining authentication;
- creates an ephemeral Codex session;
- disables Codex shell snapshots, which are unnecessary because this provider does not support tools;
- prevents model-generated shell commands from inheriting the parent process environment;
- passes RubyLLM's system instruction as Codex developer instructions;
- passes RubyLLM's JSON schema through
--output-schema.
This prevents local AGENTS.md, plugins, MCP servers, repository contents, and
saved session history from quietly affecting a request.
Configuration
Per request
To deliberately let Codex inspect a repository or use selected configuration:
chat.with_params(
codex: {
working_directory: "/path/to/project",
sandbox: "read-only",
ignore_user_config: false,
ephemeral: true,
timeout: 300,
shell_environment_inherit: "none"
}
)
Global
Global configuration is also available:
RubyLLM.configure do |config|
config.codex_cli_path = "/usr/local/bin/codex"
config.codex_working_directory = nil
config.codex_profile = nil
config.codex_home = nil
config.codex_ignore_user_config = true
config.codex_ephemeral = true
config.codex_timeout = 300
config.codex_shell_environment_inherit = "none"
end
Only the nested codex namespace is accepted by with_params; unsupported
generic params raise an error instead of being silently ignored. Use
with_thinking for reasoning effort and with_instructions for developer
instructions. Those settings, plus features.shell_snapshot and
shell_environment_policy.inherit, are reserved from the arbitrary
codex.config map so their precedence remains unambiguous.
Deliberate limitations
- Non-streaming chat only.
- Text prompts only; attachments are rejected.
- RubyLLM tools are rejected. Codex remains the generation harness, not a tool execution backend for your application.
- Temperature is rejected because this Codex path does not expose it.
- Fresh
codex execprocess per RubyLLM completion. This prioritizes isolation and predictable behavior over throughput. - Multi-turn RubyLLM histories are serialized into a role-labelled transcript.
One-shot
with_instructions(...).ask(...)requests have the most direct semantic mapping.
If you later need streaming, persistent threads, or high throughput, replace
the process-per-request implementation with a long-running codex app-server
client while keeping the same RubyLLM provider surface.
Troubleshooting
codexis not found: install the Codex CLI, runcodex login, or setRubyLLM.config.codex_cli_pathto its absolute path.- A request times out: increase
codex.timeoutorCODEX_TIMEOUTfor the smoke task. Timed-out process groups are terminated automatically. - Codex consumes excessive memory: use the current gem version. The provider explicitly disables Codex shell snapshots, which are unnecessary for its completion-only execution and previously caused runaway Bash processes.
- Local instructions affect output: keep
ignore_user_config: trueand do not set a working directory when you need isolated requests.
Development
git clone https://github.com/ethos-link/ruby_llm-codex.git
cd ruby_llm-codex
bundle install
bundle exec rake
To test an unreleased checkout from another application, use a local path in
that application's Gemfile:
gem "ruby_llm-codex", path: "/path/to/ruby_llm-codex"
The default Rake task runs the unit suite and Standard Ruby. CI runs the same gate on Ruby 3.3, 3.4, and 4.0.3, then validates commit messages and git-cliff changelog generation.
The authenticated smoke task is intentionally separate because it sends real requests through the configured Codex account. Choose a model available to that account:
CODEX_MODEL=your-model bundle exec rake codex:smoke
When changing process lifecycle or shell execution, run that task inside a bounded process and memory scope.
Git hooks
This repository uses lefthook and the Ruby
commitlint gem. Hooks reject direct
commits to main or master, validate Conventional Commit messages, and run
Standard Ruby.
Install them once per clone:
bundle exec lefthook install
Release
Releases are tag-driven. GitHub Actions runs the full test matrix, publishes
through RubyGems trusted publishing, and creates the GitHub release from
CHANGELOG.md. See docs/releasing.md for repository setup,
the first-release procedure, verification, and recovery guidance.
Install git-cliff locally, check out a clean main,
and run one of:
bundle exec rake 'release:prepare[patch]'
bundle exec rake 'release:prepare[minor]'
bundle exec rake 'release:prepare[major]'
bundle exec rake 'release:prepare[0.2.0]'
For releases after 0.1.0, the task:
- Prepends the next changelog section from Conventional Commits.
- Updates
lib/ruby_llm/codex/version.rb. - Commits the release files and creates
vX.Y.Z. - Pushes
mainand the tag toorigin.
The initial 0.1.0 release only needs its existing version commit tagged after
the GitHub environment and pending RubyGems trusted publisher are configured.
Contributing
See CONTRIBUTING.md. By participating, you agree to follow the Code of Conduct. Security reports should follow SECURITY.md, not a public issue.
License
MIT License. See LICENSE.
About
Made by the team at Ethos Link — practical software for growing businesses. We build tools for hospitality operators who need clear workflows, fast onboarding, and real human support.
We also build Reviato, “Capture. Interpret. Act.”. Turn guest feedback into clear next steps for your team. Collect private appraisals, spot patterns across reviews, and act before small issues turn into public ones.