When Sub-Agent Prompts Go Dark: Encrypted MultiAgentV2 in Codex
Codex’s MultiAgentV2 started encrypting sub-agent `message` payloads, storing only ciphertext (`encrypted_content`) and leaving plaintext empty (`content`). That improves privacy, but can erase the readable delegation details in rollout/history, making audits and debugging harder.