WardenConfig
Root configuration schema forwarden.toml.
Configuration schema version. Must be
1.Default settings inherited by all skills unless overridden
Array of skill configurations defining which analyses to run
Global execution settings for concurrent analysis
Log retention and cleanup configuration
SkillConfig
Configuration for a single skill.Skill name (must be unique across all skills). Corresponds to a directory in
.warden/skills/ or a remote repository.Glob patterns to include (e.g.,
["src/**/*.ts", "lib/**/*.js"]). If omitted, analyzes all changed files.Glob patterns to exclude (e.g.,
["**/*.test.ts", "dist/**"]). Overrides paths and defaults.ignorePaths.Remote repository reference:
"owner/repo"- Latest version from default branch"owner/repo@sha"- Specific commit SHA"owner/[email protected]"- Git tag
Fail analysis when findings meet this severity:
"high", "medium", "low", or "off" to disable.Only report findings at or above this severity. Filters output but doesn’t affect exit code.
Maximum number of findings to report (must be positive). Truncates output when exceeded.
Whether to post a comment when no findings are detected. Useful for PR checks.
Use GitHub’s REQUEST_CHANGES review event when findings exceed
failOn severity. Blocks PR merges.Fail the GitHub check run when findings exceed
failOn severity. Shows red X in PR checks.Claude model to use (e.g.,
"claude-sonnet-4-20250514", "claude-opus-4-20250514"). Uses SDK default if omitted.Maximum agentic turns (API round-trips) per hunk analysis. Higher values allow more tool use but increase cost.
Minimum confidence level:
"high", "medium", "low", or "off". Filters out low-confidence findings.Defines when and where this skill runs. If omitted, runs on all pull requests with default actions.
SkillTrigger
Defines when a skill should run.Where the trigger runs:
"pull_request"- GitHub PR events (requiresactions)"local"- Local CLI runs only"schedule"- GitHub Actions cron schedule (requirespathsin skill config)
Required for
pull_request triggers. Array of PR actions to trigger on:["opened", "synchronize", "reopened"]- Typical configuration["opened"]- Only when PR is first created["closed"]- Only when PR is merged or closed
Schedule-specific configuration (only used when
type is "schedule")Defaults
Global defaults inherited by all skills.Default failure threshold:
"high", "medium", "low", or "off"Default reporting threshold
Default max findings limit
Whether to report when no findings are detected
Use REQUEST_CHANGES review event by default
Fail check runs by default
Default Claude model for all skills
Default maximum agentic turns per hunk
Default minimum confidence level
Global patterns to exclude from all skills (e.g.,
["**/node_modules/**", "dist/**"])Repository default branch (e.g.,
"main", "master"). Auto-detected if omitted.Configuration for how files are split and analyzed
Delay in milliseconds between starting concurrent file analyses. Helps avoid rate limiting.
Max retries for auxiliary Haiku calls (extraction repair, merging, deduplication, fix evaluation)
ChunkingConfig
Controls how files are processed during analysis.Patterns to control file processing mode
Options for merging nearby diff hunks
Maximum number of “other changed files” to list in hunk prompts for PR context. Set to
0 to disable.FilePattern
Defines how specific files should be processed:Glob pattern to match files (e.g.,
"**/pnpm-lock.yaml", "**/*.svg")Processing mode:
"per-hunk"- Analyze each diff hunk separately (default for most files)"whole-file"- Analyze entire file content at once"skip"- Skip analysis entirely
CoalesceConfig
Controls merging of nearby diff hunks:Whether to enable hunk coalescing
Maximum line gap between hunks to merge them together
Target maximum size per chunk in characters. Prevents merged chunks from exceeding context limits.
ScheduleConfig
Configuration for scheduled skill runs.Title for the tracking issue. Use
{skillName} placeholder.Automatically create PRs with fixes when
suggestedFix is availableBranch name prefix for fix PRs (e.g.,
"warden-fix-security-audit")RunnerConfig
Global execution settings.Maximum concurrent file analyses across all skills (must be positive)
LogsConfig
Log file management settings.How to handle expired log files:
"ask"- Prompt user in TTY (default)"auto"- Silently delete expired logs"never"- Keep all logs indefinitely
Number of days to retain log files before considering them expired (must be positive)
Type Aliases
SeverityThreshold
failOn and reportOn. Setting to "off" disables the threshold.
ConfidenceThreshold
minConfidence. Setting to "off" disables filtering.
TriggerType
LogCleanupMode
Example: Complete Configuration
Validation
Warden validateswarden.toml on load:
Warden performs additional validation beyond type checking:
- Skill names must be unique
- Schedule triggers require
pathsto be defined - Pull request triggers require
actionsto be specified