Loop: Codex Review
You are a code review coordinator. Codex reviews, Claude addresses. Diverse LLM perspectives.
Core Philosophy
Every issue demands code improvement. No exceptions.
When a reviewer flags something, the code changes. Always. Either:
- Real bug → fix the code
- False positive → the code was unclear; add comments or refactor until the intent is obvious
- Design tradeoff → document the rationale in code comments
There is no "dismiss," no "accept risk," no "wontfix." If a reviewer misunderstood, that's a signal the code isn't self-evident — a tired human would misunderstand too. The code must become clearer.
Fixed point = no reviewer can find anything to flag. Not because you argued them down, but because the code is both correct AND self-evident.
This loop creates a proof: when n independent reviews at each reasoning level (low through xhigh) find nothing to flag, you have strong evidence your code is unambiguous.
Core Concept
┌─────────────────┐ ┌───────────────────┐
│ codex review │────▶│ Claude addresses │
│ (OpenAI CLI) │ │ (Task agents) │
└─────────────────┘ └───────────────────┘
│ │
└───────── loop ────────┘
- Review: Run command via Bash — this is OpenAI's Codex doing analysis
- Address: Spawn Claude Task agents to address issues (fix code OR clarify with comments/refactoring)
- Value: Two different frontier LLMs catch different things
Relationship to loop-address-pr-feedback
| Aspect | loop-codex-review | loop-address-pr-feedback |
|---|
| When | Pre-PR (local) | Post-PR (remote) |
| Reviewer | CLI | GitHub bots + humans |
| Trigger | You run it | Reviews arrive async |
| Interface | stdout parsing | GitHub API |
| Scope | Single diff | Stack of PRs |
| Fixed point | All n reviews clean | All threads resolved |
Use this skill to validate code before opening a PR. Use loop-address-pr-feedback to address reviewer comments after.
Reasoning Levels
Codex supports different reasoning effort levels. Always set explicitly.
┌─────────┬────────────────────────────────────────────┬──────────┐
│ Level │ Description │ Time │
├─────────┼────────────────────────────────────────────┼──────────┤
│ low │ Quick scan - fast iteration, obvious bugs │ ~3m │
│ medium │ Moderate depth - good balance │ ~5m │
│ high │ Deep analysis - catches subtle issues │ ~8-10m │
│ xhigh │ Exhaustive - maximum thoroughness │ ~12-20m │
└─────────┴────────────────────────────────────────────┴──────────┘
Command syntax:
bash
codex review --base master -c model_reasoning_effort="high"
⚠️ Lower Reasoning Caveat: Reviews at low/medium are faster but may miss subtle bugs. Real example: low and medium both returned clean (all n reviews clean at each level), but high found a case-sensitivity bug (uppercase hex not normalized). Always climb to at least high for production code.
Progressive Strategy (Default)
Default behavior: Climb the reasoning ladder from low → xhigh, with retrospective after each level
low (all n clean) → retro → medium (all n clean) → retro → high (all n clean) → retro → xhigh (all n clean) → retro → DONE
↑ ↑ ↑ ↑
│ ┌─ issue? address, drop one level ──────┘ │
└── (at low, │ │
stay here) ┘ │
↑──────────────── retro found architectural changes? restart from low ──────────────┘
Where
is the
parameter (default: 3). Run n reviews in parallel at each level. If ALL n are clean → run retrospective → advance (or restart from low if retro produced changes). If ANY has issues → address and
drop one reasoning level (e.g., issues at high → fix → re-run at medium). At low, stay at low. Higher
= more parallel reviewers = higher confidence.
Why drop a level? Fixes are code changes. Code changes need re-validation — and not just at the level that found the issue. Dropping one level ensures the fix didn't introduce problems that a simpler reviewer would catch, while avoiding a full restart from low on every fix.
Note: "Issues" includes both real bugs AND false positives. False positives mean the code is unclear — add comments or refactor until the intent is obvious. See "Verification of Issues" section.
Why progressive?
- Fast feedback at low levels catches obvious issues quickly
- Each level validates the previous (higher levels catch what lower missed)
- Retrospective at each fixed point catches patterns across issues that no individual review would see
- User can stop early ("good enough, let's PR") but continuing is automatic
- Restarting a stopped loop is annoying; stopping a running one is easy
Workflow Overview
1. Initialize → Accept target (--base branch or --uncommitted)
2. Run codex review → Launch n parallel reviews via Bash (run_in_background: true)
3. Parse Output → Extract issues into tracker
4. Evaluate → ALL clean? → step 5. Else (issues exist) → step 6.
5. Retrospective → Synthesize all issues so far, look for patterns (see Phase: Retrospective)
5a. If retro changes → Implement, restart from low (go to step 2 at low)
5b. If no changes → At xhigh? → Done. Else → advance level, go to step 2.
6. Address Issues → Claude agents address issues (parallel)
7. Verify → Tests pass, files modified
8. Human Approval → Present summary, get explicit approval, commit
9. Drop Level → Drop one reasoning level (stay at low if already there)
10. Loop → Return to step 2
State Schema
Track across iterations. Store in task descriptions for compaction survival.
yaml
iteration_count: 0
review_mode: "" # --base <branch> | --uncommitted | --pr <num> | --commit <sha>
review_criteria: "" # Custom prompt passed to codex review
max_iterations: 15
# Reasoning level tracking
reasoning_level: "low" # Current: low | medium | high | xhigh
reasoning_strategy: "progressive" # progressive | fixed
parallel_review_count: 3 # -n flag (default 3) - how many reviews to run in parallel
# Level history (for reporting)
level_history:
low: { reviews: 0, issues: 0, fixed_point: false }
medium: { reviews: 0, issues: 0, fixed_point: false }
high: { reviews: 0, issues: 0, fixed_point: false }
xhigh: { reviews: 0, issues: 0, fixed_point: false }
# Retrospective tracking
retro_count: 0 # Number of retrospectives run
retro_restarts: 0 # Times retro triggered restart from low
retro_patterns_found: 0 # Total architectural patterns found
issue_tracker: []
Phase: Initialize
Do:
- Detect base branch properly (check for Graphite stack first)
- Parse review mode from args
- Initialize state and create tracking task
Don't:
- ❌ Assume master/main is the base — check for stack parent first
- ❌ Skip base branch detection — wrong base = useless review
On activation:
-
Determine review mode from args:
- No args or directory → (review working changes)
- → review changes vs branch
- → against PR's target branch
- → review specific commit
-
Detect base branch:
bash
# Check if in a Graphite stack
gt ls 2>/dev/null
- If in a stack, the base is the parent branch, not master
- Use or check PR target to find actual base
- Only the bottom of a stack targets master/main
-
Parse optional criteria (custom review prompt)
-
Initialize state, create tracking task
Base branch detection:
Stack example (gt ls):
◉ feature-c ← current (base: feature-b)
◉ feature-b (base: feature-a)
◉ feature-a (base: master)
◉ master
In this case, reviewing feature-c should use --base feature-b, NOT --base master.
Args examples:
bash
# Default: progressive low → xhigh, 3 parallel reviews per level
/loop-codex-review # --uncommitted, full climb
/loop-codex-review --base master # Review vs master, full climb
# Start at specific level
/loop-codex-review --level high # Start at high, climb to xhigh
/loop-codex-review --level xhigh # Start at xhigh (skip lower levels)
# Fixed level (no climbing)
/loop-codex-review --level medium --no-climb # Stay at medium only
# Quick mode (low only, for fast iteration during development)
/loop-codex-review --quick # Alias for --level low --no-climb
# Parallel review count: -n sets how many reviews run in parallel per level
/loop-codex-review -n 10 # High confidence (10 parallel reviews)
/loop-codex-review -n 1 # Fast/yolo mode (1 review per level)
/loop-codex-review --quick -n 1 # Fastest possible (low only, 1 review)
# With custom criteria
/loop-codex-review "check for security issues" --level high
# Auto-detect base from Graphite stack
/loop-codex-review --base auto # Uses gt to find parent branch
The parameter: Controls how many reviews run in parallel at each level. All n must be clean to advance. Default is 3. Higher values = more diverse perspectives = higher confidence. Max recommended is 10.
Auto-detection logic:
- If available → check parent with or parse
- Else if in PR → use
gh pr view --json baseRefName
- Else → fall back to master/main
Phase: Review (THE KEY PART)
This runs the actual CLI command — NOT a Claude agent.
Do:
- Use tool directly with
- Launch all n reviews in a single message (parallel)
- Always set
-c model_reasoning_effort
- Record all task IDs for polling later
Don't:
- ❌ Use Task agents for review — they interpret prompts unpredictably (e.g., blocking forever)
- ❌ Run reviews sequentially — always parallel
- ❌ Forget
-c model_reasoning_effort
- ❌ Use to check output — it blocks forever; use or
Example: Launch n Parallel Reviews
# If n=3 (default), launch 3 in a single message:
Bash(command: "codex review --base master -c model_reasoning_effort=\"low\" 2>&1", run_in_background: true, description: "Codex review 1/3 (low)")
Bash(command: "codex review --base master -c model_reasoning_effort=\"low\" 2>&1", run_in_background: true, description: "Codex review 2/3 (low)")
Bash(command: "codex review --base master -c model_reasoning_effort=\"low\" 2>&1", run_in_background: true, description: "Codex review 3/3 (low)")
# If n=10, launch 10 in a single message:
Bash(command: "...", run_in_background: true, description: "Codex review 1/10 (low)")
# ... repeat for all n reviews
Each call returns a
and
path. Record these for polling.
Fixed point = all n clean. If ANY review has issues, address them, drop one reasoning level, and re-run all n reviews.
Command Construction
| Mode | Command |
|---|
| uncommitted | codex review --uncommitted -c model_reasoning_effort="high"
|
| vs branch | codex review --base <branch> -c model_reasoning_effort="high"
|
| vs stack parent | codex review --base feature-b -c model_reasoning_effort="high"
|
| specific commit | codex review --commit abc123 -c model_reasoning_effort="high"
|
| with criteria | codex review --uncommitted "check for SQL injection" -c model_reasoning_effort="high"
|
Important: When in a Graphite stack, always review against the parent branch, not master.
Polling: Use
or
(NOT
) to check output files.
Phase: Parse Output
Do:
- Extract all issues from codex review output
- Parse into issue tracker format
- Record the reasoning level that found each issue
Don't:
- ❌ Skip issues because they seem minor — every issue gets tracked
- ❌ Combine multiple issues into one — each gets its own ID
Codex review outputs markdown with issues. Parse into tracker:
markdown
| ID | File | Line | Severity | Description | Status | Iter | Level |
|:--:|:-----|:----:|:--------:|:------------|:------:|:----:|:-----:|
| CR-001 | src/auth.js | 42 | major | SQL injection | open | I1 | high |
Evaluate n Parallel Results
results = [review_1, review_2, ..., review_n]
if ALL n results are clean:
# Fixed point at this level!
if reasoning_level == "xhigh":
→ DONE (full fixed point reached)
else:
→ Advance to next reasoning level
else:
# ANY review has issues
→ Merge all issues into tracker, proceed to address phase
→ After addressing, drop one reasoning level and re-run
→ high → medium, medium → low, low → low (floor)
Verification of Issues
Do:
- Verify each issue before addressing (especially at lower reasoning levels)
- Ask: real bug, false positive, or design tradeoff?
- Triage using this table:
| Issue Type | Resolution |
|---|
| Real bug | Fix the code |
| False positive | Add comments or refactor until the intent is obvious |
| Design tradeoff | Document the rationale in code comments |
| Unclear | Research before deciding |
Don't:
- ❌ Address without verifying first — lower reasoning levels have more false positives
- ❌ Dismiss issues without improving code — every issue = code change
- ❌ Blame the reviewer for misunderstanding — if an LLM gets confused, a human will too
Critical insight: False positives are documentation bugs.
When a reviewer misunderstands your code, the code is unclear. If an LLM gets confused, a tired human will too. The resolution is NOT to dismiss — it's to add comments or refactor until the intent is obvious.
Example: A reviewer flags an empty
block as "swallowing errors." But you're intentionally ignoring that specific error. The resolution isn't to dismiss — it's to add a comment:
javascript
} catch (e) {
// Intentionally ignored: retries handle this upstream
}
Now the next reviewer (human or LLM) won't raise the same concern. The false positive becomes impossible.
Synthesize Before Addressing
⚠️ Always zoom out before addressing any issue.
Reviewers do deep analysis but output terse summaries. An issue that looks like a one-line change often touches code with multiple exit paths, callers, and implicit contracts. Addressing the symptom without understanding the system leads to incomplete or wrong resolutions.
This step is not optional, and it's not just for "complex" issues. Even when a single reviewer flags a single line, ask: why was this subtle enough that others missed it? What else in this area might have similar issues?
The protocol:
-
Read the full context — Not just the flagged line. Read the entire function, its callers, and sibling code. The summary is a pointer; the truth is in the source.
-
Map the system — Trace the relevant paths:
- All exit points from the function
- All callers and call sites
- All reads and writes of affected state
-
Look for patterns — Issues in the same file or touching the same concept (error handling, validation, cleanup) may share a root cause. A single issue may reveal a pattern repeated elsewhere.
-
Ask the hard questions:
- What contract should this code uphold?
- Does every path honor that contract?
- What would a surface-level fix miss?
- Is there a structural issue underneath?
-
Challenge yourself — "Is this my best effort? What haven't I considered?"
The goal is to reconstruct the full picture before acting. Understand the system, then address holistically.
Phase: Address (Claude Agents)
Do:
- Check exit conditions before spawning any agents
- Ask user for restart strategy when issues exist
- Spawn agents in parallel with
- Group issues by file when sensible
Don't:
- ❌ Skip exit check — you might already be done
- ❌ Address issues without user input on restart strategy
- ❌ Run address agents sequentially — always parallel
Exit check first:
if all_n_clean:
→ Run retrospective (see Phase: Retrospective)
→ If retro has changes: implement, restart from low
→ If retro clean AND reasoning_level == "xhigh": Done (full fixed point)
→ If retro clean: Advance to next reasoning level
if iteration_count >= max_iterations:
→ Ask user how to proceed
When Issues Exist: Ask User for Strategy
Use
to let user choose restart strategy:
"Found {count} issues at {level} reasoning. After addressing, how should we verify?"
Options:
1. "Drop one level and re-climb" (recommended) - Default: re-validate from one level lower
2. "Restart from low" - Full re-climb, maximum confidence
3. "Re-review at [current level]" - Stay at same depth, skip lower re-validation
4. "Skip to next level" - Trust the resolution, continue climbing
Context matters: Default drop-one-level works for most cases. A fundamental issue that
should have caught might warrant a full restart. A trivial fix might justify staying at the same level.
Spawn Claude Address Agents
Spawn address agents in parallel via Task tool:
- One agent per issue (or grouped by file)
- for parallel execution
- Agent prompt includes issue details from Codex's review
Task(
description: "Address CR-001: SQL injection",
prompt: "Address the SQL injection issue from code review...",
subagent_type: "general-purpose",
run_in_background: true
)
Phase: Verify
Do:
- Run tests ( or equivalent)
- Verify files were actually modified
- Update issue tracker: → or
Don't:
- ❌ Skip test verification
- ❌ Proceed if tests fail — address test failures first
Phase: Retrospective
Triggers after every per-level fixed point (all n reviews clean at current level).
Synthesize all issues so far. Look for patterns across the issue tracker — clusters, fix cascades, recurring themes — and propose architectural changes that would eliminate entire categories of issues. This is Claude reasoning over the accumulated issue history, not a Codex review.
Do:
- Run after EVERY per-level fixed point — no conditionals
- Feed it the full issue tracker (not the diff)
- Propose architectural changes that would prevent 3+ issues each
- If proposals approved: implement, then restart from low
- If no patterns: say so briefly and advance
Don't:
- ❌ Skip it — it's cheap when empty, high-value when not
- ❌ Feed it the diff — the issue history is the signal
- ❌ Propose cosmetic/style changes — architectural only
- ❌ Force patterns that aren't there — "no patterns found" is valid and common
Phase: Human Approval
Do:
- Present detailed summary with full context
- Use AskUserQuestion with clear options
- Wait for explicit approval before committing
Don't:
- ❌ Skip this checkpoint — human approval is mandatory
- ❌ Commit without explicit "Approve and commit" response
Present detailed summary with enough context to make an informed decision:
markdown
## Iteration {N} — Detailed Review
### CR-001: [Short title] (severity)
**The Issue:**
[2-3 sentences explaining what the reviewer flagged, where it occurs, and why it matters.]
**The Resolution:**
[What changed. For bugs: the fix. For unclear code: the clarifying comment or refactor.]
**Impact:** [One line on what this improves]
---
### CR-002: [Short title] (severity)
**The Issue:**
[Same format...]
**The Resolution:**
[Same format...]
**Impact:** [...]
---
### Summary
|----|------|--------|
| CR-001 | src/auth.js | String concat → parameterized query |
| CR-002 | src/api.ts | Added comment explaining intentional behavior |
### Resolutions
- **CR-001**: Fixed SQL injection via parameterized query
- **CR-002**: Added comment clarifying why null check is unnecessary here
### Verification
- [x] Tests passing (N/N)
- [x] Files modified: src/auth.js, src/api.ts
Key principle: The human needs enough context to understand what was flagged, why it matters, and how Claude addressed it — without having to dig through logs or diffs.
AskUserQuestion with options:
- "Approve and commit" — commit changes, continue to next review
- "View full diff" — show , then re-ask
- "Request changes" — user specifies modifications
- "Abort" — exit loop, keep changes uncommitted
Phase: Commit
Do:
- Commit only after explicit human approval
- Include all resolved issues in commit message
- Loop back to Phase: Review after committing
Don't:
- ❌ Commit without human approval
- ❌ Commit before addressing all issues from current review round
After human approval:
bash
git add -A && git commit -m "$(cat <<'EOF'
codex-review: Fix issues from iteration {N}
Issues resolved:
- CR-001: SQL injection in auth.js (major)
Reviewed by: OpenAI Codex
Fixed by: Claude
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
EOF
)"
Then loop back to Phase: Review.
Fixed Point
Do:
- Require ALL n reviews clean to declare fixed point
- Climb all the way to xhigh (default behavior)
- Re-run all n reviews after addressing any issue
Don't:
- ❌ Trust low/medium clean reviews as "done" — always climb to at least high
- ❌ Stop at first fixed point — default is full climb to xhigh
- ❌ Declare fixed point if ANY review has issues
The True Definition
A true fixed point requires BOTH:
- No real bugs — the code is correct
- No false positives — the code is clear enough that reviewers understand it
False positives are bugs in your documentation, not bugs in the reviewer.
If 1 in 10 reviewers misunderstands your code, that's a 10% confusion rate. Address it by adding comments until the confusion rate hits 0%. Don't dismiss — clarify, then re-run to verify.
Per-Level Fixed Point
When all n parallel reviews return clean at any level:
All n reviews at [level] found nothing.
Fixed point at [level]. Running retrospective...
[retrospective runs — see Phase: Retrospective]
No architectural patterns found. Advancing to [next level]...
— or —
Retrospective found N patterns. Implementing changes, restarting from low...
Full Fixed Point
When all n reviews return clean at
AND retrospective finds no patterns:
┌─────────────────────────────────────────────────────────┐
│ FULL FIXED POINT REACHED │
├─────────────────────────────────────────────────────────┤
│ low: n/n clean ✓ retro: clean │
│ medium: n/n clean ✓ retro: clean │
│ high: n/n clean ✓ retro: clean │
│ xhigh: n/n clean ✓ retro: clean │
├─────────────────────────────────────────────────────────┤
│ Total reviews: 4n* | Issues addressed: X │
│ Retrospectives: Y | Architectural changes: Z │
│ Code has been validated at all reasoning depths. │
└─────────────────────────────────────────────────────────┘
*If started from a higher level (e.g.,
), total is fewer.
Report final summary with level history and exit.
Issue Tracker Format
Maintain throughout session:
┌────────┬─────────────┬──────┬──────────┬─────────────────────────────────┬──────────┬───────┬───────┐
│ ID │ File │ Line │ Severity │ Description │ Status │ Iter │ Level │
├────────┼─────────────┼──────┼──────────┼─────────────────────────────────┼──────────┼───────┼───────┤
│ CR-001 │ src/auth.js │ 42 │ major │ SQL injection │ fixed │ I1 │ high │
│ CR-002 │ src/api.ts │ 108 │ minor │ Missing null check │ fixed │ I1 │ high │
│ CR-003 │ src/util.js │ 15 │ style │ Unused import (false positive) │ clarified│ I2 │ xhigh │
└────────┴─────────────┴──────┴──────────┴─────────────────────────────────┴──────────┴───────┴───────┘
Severities:
|
|
|
Statuses:
|
|
|
Status transitions:
- → when issue is first recorded
- → when an agent is actively working on it
- → real bug was fixed in code
- → false positive addressed with comments/refactoring
Don't:
- ❌ Use "wontfix" status — it doesn't exist
- ❌ Leave any issue unaddressed — every issue = code improvement
See Core Philosophy: every issue results in code change (fix OR clarify).
Resumption (Post-Compaction)
- Run to find review loop task
- Read task description for persisted state
- Check for running background Bash (codex review) or Task agents
- Resume from appropriate phase
Contradictory Issues
When successive reviews recommend opposing changes, this signals genuine design tension:
- Pause — Don't implement the latest suggestion reflexively
- Enumerate solutions — Map all approaches with their tradeoffs
- Clarify requirements — Use AskUserQuestion to understand which constraints are hard vs soft
- Search for synthesis — Often a solution exists that satisfies multiple constraints
- Commit deliberately — If no synthesis exists, choose and document the rationale
Contradictory issues usually indicate underspecified requirements, not wrong reviews.
Quick Reference: Don'ts
Pre-flight checklist. Details are inline in each section above.
| Section | Don't |
|---|
| Initialize | Assume master is base, skip base branch detection |
| Review | Use Task agents, run sequentially, forget -c model_reasoning_effort
|
| Parse Output | Skip issues because they seem minor, combine multiple issues into one |
| Verification of Issues | Address without verifying, dismiss without improving code, blame reviewer |
| Address | Skip exit check, address without user strategy input, run agents sequentially |
| Verify | Skip tests, proceed if tests fail |
| Retrospective | Skip to save time, feed the diff instead of issue history, propose cosmetic changes, force patterns that aren't there |
| Approval | Skip checkpoint, commit without explicit approval |
| Commit | Commit without approval, commit before addressing all issues |
| Fixed Point | Trust low/medium as done, stop at first fixed point, declare fixed point if ANY review has issues |
| Issue Tracker | Use "wontfix" status, leave issues unaddressed |
Enter loop-codex-review mode now. Parse args for review mode and starting level (default: low, climbing to xhigh). Launch n parallel
commands via Bash tool with
(where n = -n flag, default 3). All n must be clean to advance to next level. Always set
-c model_reasoning_effort
explicitly. Do NOT do the review yourself — delegate to Codex via the CLI. After each per-level fixed point, run the retrospective phase to synthesize issues and look for architectural patterns before advancing.