getsentry/warden
skills/warden/SKILL.md
Run Warden to analyze code changes before committing. Use when asked to "run warden", "check my changes", "review before commit", "warden config", "warden.toml", "create a warden skill", "add trigger", or any Warden-related local development task.
$ install --global
skillsauthnpx skillsauth add getsentry/warden wardenInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 4, 2026, 2:37 AM66.6s7 files scanned
SKILL.md
- name:
- warden
- description:
- Run Warden to analyze code changes before committing. Use when asked to "run warden", "check my changes", "review before commit", "warden config", "warden.toml", "create a warden skill", "add trigger", or any Warden-related local development task.
Run Warden to analyze code changes before committing.
References
Read the relevant reference when the task requires deeper detail:
| Document | Read When |
|----------|-----------|
| <skill-root>/references/cli-reference.md | Full option details, per-command flags, examples |
| <skill-root>/references/configuration.md | Editing warden.toml, triggers, patterns, troubleshooting |
| <skill-root>/references/config-schema.md | Exact field names, types, and defaults |
| <skill-root>/references/creating-skills.md | Writing custom skills, remote skills, skill discovery |
Running Warden
# Analyze uncommitted changes (uses warden.toml triggers)
warden
# Run a specific skill
warden --skill <skill-name>
# Analyze specific files
warden src/auth.ts src/database.ts
# Analyze changes from a git ref
warden main..HEAD
warden HEAD~3
# Auto-apply suggested fixes
warden --fix
# Fail on high-severity findings
warden --fail-on high
Set WARDEN_MODEL and the WARDEN-prefixed provider API key for that model before running.
Pre-Commit Workflow
After making code changes and before committing:
- Run
wardento analyze uncommitted changes - Review the findings
- Fix issues Warden reports (or use
warden --fixto auto-apply) - Commit the changes
Run Warden once to validate work. Do not loop re-running Warden on the same changes.
Reading Output
Severity levels:
high- Must fix before mergemedium- Worth reviewinglow- Minor improvement
Exit codes: 0 = no findings at or above fail threshold. 1 = findings at or above fail threshold.
Verbosity: -v shows real-time findings. -vv shows debug info (tokens, latency). -q shows errors and summary only.
Commands
| Command | Description |
|---------|-------------|
| warden | Run analysis (default) |
| warden init | Initialize warden.toml and GitHub workflow |
| warden add [skill] | Add skill trigger to warden.toml |
| warden sync [remote] | Update cached remote skills |
| warden setup-app | Create GitHub App via manifest flow |
For full options and flags, read <skill-root>/references/cli-reference.md.
Related Skills
getsentry/security-review
development
VerifiedTrustedCommunity
Finds exploitable application security vulnerabilities in code changes. Use for Warden security scans, appsec review, OWASP-style checks, authentication or authorization bugs, injection, XSS, SSRF, path traversal, secrets, unsafe crypto, webhook verification, open redirects, or sensitive data exposure.
330SKILL.mdUpdated May 28, 2026
getsentry/code-review
development
VerifiedTrustedCommunity
Finds real correctness bugs in code changes. Use for adversarial code review, bug hunts, regression review, PR correctness review, logic errors, data loss, race conditions, state bugs, interface contract breaks, error handling bugs, edge cases, broken builds, or broken workflows. Excludes style, readability, architecture, AppSec, and best-practice-only feedback unless the issue causes a demonstrable bug.
330SKILL.mdUpdated May 28, 2026
getsentry/warden-sweep
development
VerifiedTrustedCommunity
Full-repository code sweep. Scans every file with Warden, verifies findings through deep tracing, creates draft PRs for validated issues. Use when asked to "sweep the repo", "scan everything", "find all bugs", "full codebase review", "batch code analysis", or run Warden across the entire repository.
330SKILL.mdUpdated Apr 5, 2026
getsentry/skill-writer
testing
VerifiedTrustedCommunity
Create, synthesize, and iteratively improve agent skills following the Agent Skills specification. Use when asked to "create a skill", "write a skill", "synthesize sources into a skill", "improve a skill from positive/negative examples", "update a skill", or "maintain skill docs and registration". Handles source capture, depth gates, authoring, registration, and validation.
318SKILL.mdUpdated May 28, 2026