oai-ragona

Looks like this is indeed related to the Seatbelt sandboxing. On my machine at least though, it doesn't want `~/.cache/uv`, it wants `~/Library/Caches/uv` -- though allowing that doesn't fix it...

Dang okay that was a bit of a journey. I did get it working with: ``` ➜ openai codex exec \ -c "sandbox.mode='workspace-write'" \ -c "sandbox.writable_roots=['$TMPDIR', '/Users/ryanragona/Library/Caches/uv/', '/Users/ryanragona/.virtualenvs/', '/Users/ryanragona/.pyenv']" \...

The lingering question I have is which parts of the env are requiring `shell_environment_policy.inherit=all`, and what the minimal subset there is.