superpowers-cc-to-codex
Health Warn
- License — License: MIT
- Description — Repository has a description
- Active repo — Last push 0 days ago
- Low visibility — Only 5 GitHub stars
Code Pass
- Code scan — Scanned 12 files during light audit, no dangerous patterns found
Permissions Pass
- Permissions — No dangerous permissions requested
This tool is a Claude Code plugin and MCP server that acts as a bridge between Claude and OpenAI's Codex CLI. It leverages Claude for high-level planning, orchestration, and conversation management, while delegating bounded, execution-heavy coding tasks (like code generation, debugging, and review) directly to GPT models for faster processing.
Security Assessment
Overall Risk: Medium. The static code scan passed successfully with no dangerous patterns or hardcoded secrets found, and it does not request broad, explicitly dangerous system permissions. However, the core function of this tool relies on spawning and orchestrating external CLI tools. It specifically interacts with your local OpenAI Codex configuration, meaning it inherently triggers shell execution and makes external network requests to the OpenAI API. While the code itself is clean, the tool processes your local codebase and routes it externally to GPT models. You must trust both the maintainers and your own OpenAI API configuration to ensure sensitive data is handled appropriately.
Quality Assessment
The project is very new and currently has low community visibility with only 5 GitHub stars. Despite this, the repository is highly active, with its most recent code push occurring today. It is properly licensed under the standard MIT license, which is safe and permissive for open-source use. The documentation is comprehensive, clearly explaining its fork history, architecture, and setup workflow.
Verdict
Use with caution. The code is safe and well-documented, but its low community adoption and inherent requirement to route local code context through shell executions and external AI APIs warrant careful review before using on proprietary or sensitive projects.
Claude orchestrates, Codex executes. Combines Claude's judgment with GPT's speed for coding, debugging, review, and TDD.
Superpowers × Codex
Claude orchestrates. Codex executes. One plugin, two models.
A Claude Code plugin that combines Claude's orchestration and judgment with GPT's speed at bounded coding tasks. Forked from obra/superpowers, adapted for Codex CLI delegation.
Why Two Models?
Claude and GPT have complementary strengths:
| Claude | GPT (via Codex) | |
|---|---|---|
| Best at | Orchestration, planning, user dialogue, subagent coordination | Fast code generation, debugging, diff review |
| Role here | Controller — owns the conversation thread | Worker — executes bounded tasks |
| Speed | Thoughtful, context-rich | Fast mode available for supported Codex models |
The plugin keeps Claude in the driver's seat for design decisions and workflow control, while delegating execution-heavy work to Codex — getting the best of both worlds.
User ↔ Claude (controller)
│
├─ skills/ SKILL.md workflows guide Claude's decisions
│
├─ MCP Server scripts/mcp-server.mjs (primary transport)
│ ├─ codex_research read-only repo exploration
│ ├─ codex_plan first-pass implementation plans
│ ├─ codex_implement bounded coding tasks
│ ├─ codex_review structured or advisory diff review
│ ├─ codex_debug root cause investigation
│ ├─ codex_branch_analysis branch readiness check
│ └─ codex_resume resume existing thread
│
└─ Codex CLI respects ~/.codex/config.toml (model + effort) by default
Quick Start
# Add the marketplace
/plugin marketplace add mzored/superpowers-cc-to-codex
# Install the plugin
/plugin install superpowers-cc-to-codex@superpowers-cc-to-codex
Want the original Superpowers without Codex delegation? See obra/superpowers.
Configuration
.claude/codex-defaults.json is automatically created on first use. By default it defers every model/effort decision to your ~/.codex/config.toml and only opts into the ChatGPT-account fast service tier:
{
"model": "auto",
"modelMini": "auto",
"effort": "auto",
"serviceTier": "fast"
}
| Key | Description | Default |
|---|---|---|
model |
Model for implementation, review, resume. auto defers to ~/.codex/config.toml. |
auto |
modelMini |
Model for research, planning, debug, branch analysis. Falls back to model if not set. auto defers to ~/.codex/config.toml. |
auto |
effort |
Reasoning effort: auto, minimal, low, medium, high, xhigh. auto defers to ~/.codex/config.toml. |
auto |
serviceTier |
Set to "fast" for GPT Fast mode (requires ChatGPT auth). |
fast |
Resolution: explicit MCP args → project config → tool defaults. auto is a sentinel that means "do not pass -m / -c model_reasoning_effort to Codex CLI", so your global Codex configuration wins. Per-call overrides always trump these defaults.
Example — pin reasoning effort to xhigh for this project regardless of your global Codex config:
{ "effort": "xhigh", "serviceTier": "fast" }
Observability
| Environment variable | Effect |
|---|---|
SUPERPOWERS_CODEX_LOG_FILE |
Appends sanitized Codex and MCP lifecycle events as JSON Lines. Prompt text is redacted. |
SUPERPOWERS_CODEX_LOG=1 |
Mirrors sanitized lifecycle events to stderr as JSON for local debugging. |
Run npm run doctor -- --verbose with SUPERPOWERS_CODEX_LOG_FILE set to summarize the last 100 events by mode, retry count, recent errors, and p50/p95 invocation duration.
Skills
| Skill | What it does | MCP Tool |
|---|---|---|
brainstorming-codex |
Design exploration with bounded repo research | codex_research |
writing-plans-codex |
Plan creation with Codex first-pass drafting | codex_plan |
subagent-driven-development-codex |
Task execution with implementer + reviewer | codex_implement + codex_review |
requesting-code-review-codex |
Structured or advisory diff review | codex_review |
receiving-code-review-codex |
External feedback reception with verification | codex_review |
systematic-debugging-codex |
4-phase debugging with root cause investigation | codex_debug |
test-driven-development-codex |
Strict red-green-refactor TDD | codex_implement (TDD mode) |
finishing-a-development-branch-codex |
Branch completion with readiness analysis | codex_branch_analysis |
dispatching-parallel-agents-codex |
Parallel independent-domain dispatch | codex_implement (parallel) |
verification-before-completion-codex |
Evidence-before-claims safety gate | Claude-side only |
using-git-worktrees-codex |
Isolated worktree setup with safety checks | Claude-side only |
Requirements
- Claude Code with plugin marketplace support
- Codex CLI installed and authenticated (
codex≥ 0.111.0) - Node.js 22+
- git
Development
npm test # Run all tests (node --test)
npm run doctor # Validate plugin + CLI setup
npm run check:upstream # Check upstream fork drift
npm run validate:plugin # Validate plugin structure
npm run validate:schemas # Validate schema metadata and prompt/schema references
Transport Behavior
- The MCP server is the primary transport and emits lifecycle-aware
notifications/progressplus structurednotifications/message. - Experimental task mode for
codex_implementandcodex_resumeis off by default. Enable it withSUPERPOWERS_CODEX_EXPERIMENTAL_TASKS=implement-resume. - Workspace resume state stays under
.claude/state/codex/. Experimental task-mode records live under${CLAUDE_PLUGIN_DATA}/mcp-tasks/.
Troubleshooting
ETIMEDOUT / connection reset
Transient network failures are retried once. If the response includes taskId and sessionId, run codex_resume with that taskId to continue the saved Codex thread.
Authentication failure
Run codex login, then rerun npm run doctor. In CI, follow the auth flow documented for your installed codex CLI version and verify with npm run doctor.
Model not available
Pin a supported model in ~/.codex/config.toml or set "model": "auto" in .claude/codex-defaults.json so Codex CLI chooses from the authenticated account.
Status: ok, partial, error
ok means Codex completed and returned parseable output. partial means the MCP runtime salvaged a session, assistant text, or result from a failed run. error means no parseable output was available, or the failure happened before Codex produced recoverable JSONL.
Where logs live
Set SUPERPOWERS_CODEX_LOG_FILE=/absolute/path/codex-events.jsonl to append sanitized lifecycle events. Run npm run doctor -- --verbose to summarize recent events.
The plugin only appends to this file — there is no built-in rotation, truncation, or size cap. Operators running long-lived processes should rotate or truncate the file externally (for example via logrotate or a CI cleanup step).
Schema validation error
Run npm run validate:schemas. Update the matching schemas/*.schema.json file, schemas/INDEX.json, and any prompt ## Output Requirements section that lists required schema keys.
Links
- obra/superpowers — upstream skills framework
- openai/codex — Codex CLI (the bounded worker)
- MCP TypeScript SDK — transport layer
- Model Context Protocol — MCP specification
License
MIT — see LICENSE.
Reviews (0)
Sign in to leave a review.
Leave a reviewNo results found