{
"$type": "site.standard.document",
"bskyPostRef": {
"cid": "bafyreihityq6wqgnlxynvkx6sg4ip5tlcs2n25a3swf3ijgkxdgvfimg4i",
"uri": "at://did:plc:lk3jfj3zq4k4wxnk474axylu/app.bsky.feed.post/3mowc5pvgh5t2"
},
"path": "/t/codex-overwrote-months-of-my-local-project-work-and-i-honestly-don-t-know-what-to-do-anymore/1384417#post_1",
"publishedAt": "2026-06-23T00:08:16.000Z",
"site": "https://community.openai.com",
"textContent": "I’m writing this because I genuinely feel hopeless now.\n\nI had a personal project I worked on for almost a year, thousands and thousands lines of code. It was not some random test repo, it was my actual local working version, the most stable one, with months of newer work that was not in the public repo.\n\nThere was some boring/time consuming work I could do myself, but I thought why waste time, maybe I’ll use Codex for it and see if it can do it safely. Because of my past experience with Codex I was already careful. I didn’t want it touching deep internals or doing risky stuff. It was mostly simple work, just boring.\n\nI added the project to Codex and gave it the task. It did the work, not exactly how I would do it, and not fully matching the project style, but still somewhat decent. Then I wanted to see what more it can do.\n\nBefore going further I pasted my repo link and clearly told it that the repo has outdated code and asked if it can update from that / use it. The repo had months old code. My local folder had the newest stable work.\n\nWhat Codex did was clone/copy that outdated repo into my local project and basically removed/replaced my local work without my permission.\n\nI was not on full access. I had “Approve for me” selected, the one that says it only asks for actions detected potentially unsafe. I did not expect “replace my actual local project with an outdated repo” to pass like that. That is literally the unsafe action.\n\nThis happened 4 days ago. My last Codex chat with it is around Monday 9:13 PM. I don’t know if the history is still there or if I can attach it, but I can try. I never worked on that part again after it happened because I was scared of making recovery worse.\n\nI tried everything I could find:\ngit reflog, stash, lost objects, fsck, local history, IDE timeline, previous versions, searching the disk, checking backups, everything. Nothing helped. There was just nothing useful there.\n\nI didn’t have a backup because this was local work and I know that’s my mistake too, but the point is I never approved Codex to wipe/replace my local code with old repo code. I trusted the “ask for unsafe actions” mode to stop exactly this type of thing.\n\nNow I’m working on old code again and redoing things I already spent months making. I’m not even angry anymore, just disappointed and tired. It feels like one careless agent action deleted a year of my life from the project.\n\nI don’t know what I expect from this thread honestly. Maybe someone from OpenAI/Codex team can check if there are logs/history for my session, or at least explain how this was allowed under that permission mode. And please, this needs better protection. An AI coding agent should never be able to overwrite a local working project with an outdated clone unless the user explicitly approves that exact action.\n\nThis was not a small mistake. This was my real work.",
"title": "Codex overwrote months of my local project work and I honestly don’t know what to do anymore"
}