Incomex AI Portal
KB-634E

Codex Audit Prompt — FIX7 P0 Executable Capsule (2026-06-12)

3 min read Revision 1
tool-kiem-thufix7p0codex-capsulecodex-prompt2026-06-12
<!-- DOC_STATUS: ACTIVE_NON_AUTHORITY -->

Codex Audit Prompt - FIX7 P0 Executable Capsule (2026-06-12)

Copy the block below to Codex VERBATIM. It is also stored byte-identical in the capsule at CODEX_AUDIT_INSTRUCTIONS.md.

Run audit only from this local capsule path:

/Users/nmhuyen/Documents/Manual Deploy/web-test/codex_review_evidence/fix7-p0-final-pre-real-data-readiness-2026-06-12/

Do not use MCP. Do not rely on KB prose. Do not infer from previous reports. Use local raw bytes, manifests, scripts, fixtures, bad inputs, and expected outputs.

Required first commands:

cd "/Users/nmhuyen/Documents/Manual Deploy/web-test/codex_review_evidence/fix7-p0-final-pre-real-data-readiness-2026-06-12/" pwd find . -maxdepth 2 -type f | sort | sed -n '1,80p' bash VERIFY_CAPSULE.sh bash RERUN_ALL.sh

Audit question:

Can the FIX7_P0_READY_FOR_REAL_DATA_DECISION claim be independently verified from this executable capsule, without production contact, without real data, without secrets, without CI trigger, and without production authorization?

Allowed final Codex statuses:

  • CODEX_FIX7_P0_EXECUTABLE_CAPSULE_AUDIT_PASS
  • CODEX_FIX7_P0_EXECUTABLE_CAPSULE_AUDIT_REJECTED
  • CODEX_FIX7_P0_EXECUTABLE_CAPSULE_AUDIT_BLOCKED_BY_CHANNEL

A PASS means:

  • engineering handoff evidence is independently runnable;
  • readiness is verified;
  • production is still NOT authorized;
  • next step may be owner/GPT real-data handoff decision.

A REJECT means:

  • identify exact defective file/script/evidence and required fix.

A BLOCKED_BY_CHANNEL means:

  • capsule self-verifies, but Codex runtime/channel cannot access or execute it.

Notes for the operator routing this prompt:

  • The capsule needs NO MCP and NO Agent Data access; it is fully local.
  • Expected results: VERIFY_CAPSULE: PASS (exit 0) and RERUN_ALL: PASS (exit 0); see expected_outputs/expected-results.json inside the capsule.
  • Build-time proof logs are in the capsule logs/ directory.
  • The only documented skips are PRODUCTION_ONLY_SKIP items (real-data clone rehearsal; production execution surfaces) - they require owner/operator actors, not engineering.
Back to Knowledge Hub knowledge/dev/reports/architecture/fix7-p0-final-codex-audit-prompt-from-capsule-2026-06-12.md