I don't think we should merge this in its current form.

The isolation goal is understandable, but forcing codex exec --ignore-user-config crosses a real contract boundary for this repo. We explicitly treat ~/.codex/config.toml as the setup-managed Codex MCP/env hookup point. If we unconditionally ignore user config here, we are not just filtering unrelated local customization — we are also potentially disabling Ouroboros's own Codex-side integration path.

That makes this too broad.

If there is a specific inheritance problem we want to solve here, please narrow it first:

• parent session/thread inheritance,
• wrapper resolution drift,
• or a particular user-config side effect.

Then solve that targeted problem directly instead of globally opting out of the configured Codex environment.

At minimum, any version of this change needs coverage showing that a setup-managed Codex MCP/env hookup still works end-to-end after the change. Right now the regression risk is larger than the isolation benefit.

I agree that this is a bit of a blunt instrument. The intent was to be able to have different settings for codex invocations that are run by ouroboros vs those I've initiated interactively from the desktop or cli. For instance, when I'm working on small tasks interactively without ouroboros, I want the best model, fast mode, and I want particular notify actions (sounds), that I don't want when ouroboros is using codex. I also don't necessarily want certain mcp configs enabled for ouroboros workers.

Digging deeper, I think the best way to do this might be to use codex profiles, which are still in the config.toml file, and then modify ouroboros to take a codex_profile config setting that gets passed to codex exec --profile through the runtime command builder. Does that sound sane, and if so, do you want it as a new PR?

The profile selection approach might also be a good way to implement the reasoning tier levels needed for #184

I think the Codex profile idea is the right direction, but I would probably frame it as the Codex mapping of a more general Agent OS runtime_profile concept rather than landing a top-level codex_profile knob directly.

The contract I have in mind is:

Agent OS asks for `runtime_profile = worker`
→ Codex maps that to `codex exec --profile ouroboros-worker`
→ OpenCode maps it to its config/profile/env overlay equivalent
→ Hermes maps it to its runtime config/env
→ Claude Code maps it to model / permission / env settings
→ LiteLLM/OpenAI maps it to `CompletionConfig` fields such as `reasoning_effort`

That keeps the default Codex config path intact, avoids the broad behavior of --ignore-user-config, and gives us a clean path toward #184 without making the first implementation solve every backend at once.

A good first slice could be:

• add orchestrator.runtime_profile
• add a small runtime_profiles.<name>.backend_profiles.codex mapping
• have the Codex runtime/adapter pass --profile <mapped-name> only when that mapping exists
• leave the default behavior unchanged when no runtime profile is configured

So yes, I like the profile direction. I would just prefer to land it under the Agent OS runtime-profile abstraction, with Codex profile as the first backend mapping, instead of making codex_profile the main public concept.

@andrew-adamson — thanks for sticking with this through the redesign discussion. The Agent OS `runtime_profile` slice you and @Q00 sketched is now up at #505, following the four-step scope from his comment above:

1. `orchestrator.runtime_profile` config field (default `None` → no behavior change)
2. Module-local `_RUNTIME_PROFILE_TO_CODEX_PROFILE` mapping
3. Codex runtime + adapter pass `--profile ouroboros-worker` only when the mapping fires
4. `ouroboros setup --runtime codex` writes `[profiles.ouroboros-worker]` next to the existing `[mcp_servers.ouroboros]` block, so the MCP/env hookup keeps working

Your interactive vs worker use case is exactly what the worker profile is for — drop your per-worker overrides (model, notify, sandbox) into that section and they apply to every Ouroboros-spawned `codex exec` without touching your interactive defaults. The profile abstraction also gives us a clean home for #184 and the next backends (OpenCode/Hermes/Claude/LiteLLM) as separate slices.

@Q00 — happy to leave the close on this PR to you once #505 lands; or if you'd rather close now, fine by me.

Yep, #505 sounds like the way to go, so I'm happy to close this.