Allow OpenAI Codex to access chatgpt.com (#2082)

Ideally we _don't_ allow this access, as Codex works fine without it,
but blocking this domain causes the `step-security/harden-runner` plugin
to fail a PR check.

Author: Stephan202

.github/workflows/suggest-commit-message.yml

@@ -18,12 +18,13 @@ concurrency:
   group: suggest-commit-message-${{ github.event.pull_request.number || github.event.inputs.pr_number }}
   cancel-in-progress: true
 env:
-  # XXX: Figure out how we can block access to `ab.chatgpt.com` without causing
-  # PR checks to fail.
+  # XXX: Figure out how we can block access to `ab.chatgpt.com` and
+  # `chatgpt.com` without causing PR checks to fail.
   ALLOWED_ENDPOINTS: >
     ab.chatgpt.com:443
     api.github.com:443
     api.openai.com:443
+    chatgpt.com:443
     github.com:443
     registry.npmjs.org:443
 jobs: