A false positive cyber-safety flag.

[darkgaldragon]

I think this is a false positive cyber-safety flag.

On 2026-02-18 around 14:00 (JST) in Codex CLI on macOS, a normal feature-development request (not security/cyber-
related) was rerouted from gpt-5.3-codex to gpt-5.2 with this warning:
“Your account was flagged for potentially high-risk cyber activity…”

I don’t remember the exact prompt text, but it was general implementation/feature suggestions.

Please review and remove the flag / restore access to gpt-5.3-codex if possible.
Codex CLI version: [0.103.0]

[github-actions]

Potential duplicates detected. Please review them and close your issue if it is a duplicate.

• Your account was flagged for potentially high-risk cyber activity #12109
• False-positive “high-risk cyber activity” flag blocks gpt-5.3-codex in Codex CLI #12088
• False positive cyber-safety rerouting (GPT-5.3-Codex → GPT-5.2 fallback) #12064
• False positive cyber-risk rerouting (routed to GPT-5.2) #12060
• Flagged for high-risk cyber activity when not even using gpt-5.3-codex #12065

Powered by Codex Action

[etraut-openai]

Thanks for the bug report. We're continuing to tune our cyber safety classifiers to make them more accurate. You can read more about this here. If you see this again in the future and believe it's a false positive (i.e. you aren't doing anything related to cybersecurity), please use the /feedback slash command and choose "Safety Check" to report it. That will help us further tune our checks.