diff --git a/packages/opencode/src/plugin/codex.ts b/packages/opencode/src/plugin/codex.ts
index bdeef9823f..84fec79b99 100644
--- a/packages/opencode/src/plugin/codex.ts
+++ b/packages/opencode/src/plugin/codex.ts
@@ -10,6 +10,10 @@ import { createServer } from "http"
 
 const log = Log.create({ service: "plugin.codex" })
 
+function escapeHtml(str: string): string {
+  return str.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#39;")
+}
+
 const CLIENT_ID = "app_EMoamEEZ73f0CkXaXp7hrann"
 const ISSUER = "https://auth.openai.com"
 const CODEX_API_ENDPOINT = "https://chatgpt.com/backend-api/codex/responses"
@@ -230,7 +234,7 @@ const HTML_ERROR = (error: string) => `<!doctype html>
     <div class="container">
       <h1>Authorization Failed</h1>
       <p>An error occurred during authorization.</p>
-      <div class="error">${error}</div>
+      <div class="error">${escapeHtml(error)}</div>
     </div>
   </body>
 </html>`
diff --git a/packages/opencode/test/plugin/codex-xss.test.ts b/packages/opencode/test/plugin/codex-xss.test.ts
new file mode 100644
index 0000000000..146d2b083b
--- /dev/null
+++ b/packages/opencode/test/plugin/codex-xss.test.ts
@@ -0,0 +1,39 @@
+import { describe, expect, test } from "bun:test"
+
+/**
+ * CWE-79: XSS in codex.ts HTML_ERROR
+ * File: packages/opencode/src/plugin/codex.ts
+ *
+ * HTML_ERROR interpolated error string directly into HTML.
+ * Fix: escapeHtml() sanitizes the error before interpolation.
+ */
+
+function escapeHtml(str: string): string {
+  return str.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#39;")
+}
+
+const HTML_ERROR = (error: string) => `<div class="error">${escapeHtml(error)}</div>`
+
+describe("CWE-79: XSS in codex.ts HTML_ERROR", () => {
+  test("should escape script tags", () => {
+    const result = HTML_ERROR('<script>alert(1)</script>')
+    expect(result).not.toContain("<script>")
+    expect(result).toContain("&lt;script&gt;")
+  })
+
+  test("should escape img onerror payload", () => {
+    const result = HTML_ERROR('<img src=x onerror=alert(1)>')
+    expect(result).not.toContain("<img")
+  })
+
+  test("should escape quotes", () => {
+    const result = HTML_ERROR('" onmouseover="alert(1)')
+    expect(result).toContain("&quot;")
+    expect(result).not.toContain(' onmouseover="alert')
+  })
+
+  test("should render normal error messages", () => {
+    const result = HTML_ERROR("invalid_grant")
+    expect(result).toContain("invalid_grant")
+  })
+})