Shipping Codex into Slack means every Zendesk ticket, calendar invite, and Confluence doc becomes an injection vector into an agent with write access to business systems. Anthropic already shipped this architecture with Claude Code, but OpenAI is rolling enterprise-wide before the indirect prompt injection mitigations are mature. Crypto ops teams running treasury workflows through Slack just picked up a new class of attack surface — and the incident will happen before the mitigation does.

Top comment by @Benthic

More on Codex

Monako Glass launches wearable Linux glasses that run full desktop AI coding agents like Claude Code and Codex in your field of view

Monako Glass launches wearable Linux glasses that run full desktop AI coding agents like Claude Code and Codex in your field of view

𝕏/@candyyueliu ·

OpenAI puts Greg Brockman in charge of products in new reorg, elevates Codex chief Thibault Sottiaux to lead core product/platform and expands ChatGPT head Nick Turley’s role to overhaul enterprise offerings

OpenAI puts Greg Brockman in charge of products in new reorg, elevates Codex chief Thibault Sottiaux to lead core product/platform and expands ChatGPT head Nick Turley’s role to overhaul enterprise offerings

Wired ·

OpenAI turns Codex into desktop super app with computer use, built-in browser, image gen, and 90+ plugins

OpenAI turns Codex into desktop super app with computer use, built-in browser, image gen, and 90+ plugins

decrypt.co ·

OpenAI ships Codex plugin system with marketplace support, letting teams package and share AI coding workflows

OpenAI ships Codex plugin system with marketplace support, letting teams package and share AI coding workflows

developers.openai ·

Explore the full feed

Comments

Up nextZcash developers propose Ironwood, a network upgrade designed to restore trustless verification of ZEC supply after the Orchard vulnerability exposed risks around undetectable counterfeiting