From 5aa24f74171023cc4230ded74f51dd97f83052b4 Mon Sep 17 00:00:00 2001
From: Aditya Mathur <57684218+MathurAditya724@users.noreply.github.com>
Date: Wed, 6 May 2026 06:09:26 +0000
Subject: [PATCH] ci: add warden.toml to enable Warden analysis on PRs

The org-level Warden workflow runs on every PR but skips analysis
with 'No warden.toml found' because the repo had no config.

Generated via `npx @sentry/warden init` and `warden add`, with
path filters scoped to src/ and script/ TypeScript files. Adds
find-bugs and security-review skills from getsentry/skills.
---
 warden.toml | 51 +++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 51 insertions(+)
 create mode 100644 warden.toml

diff --git a/warden.toml b/warden.toml
new file mode 100644
index 000000000..173bd76d6
--- /dev/null
+++ b/warden.toml
@@ -0,0 +1,51 @@
+# Warden Configuration
+# https://github.com/getsentry/warden
+#
+# Warden reviews code using AI-powered skills triggered by GitHub events.
+# Skills live in .agents/skills/ or .claude/skills/
+#
+# Add skills with: warden add <skill-name>
+
+version = 1
+
+# Default settings inherited by all skills
+[defaults]
+# Severity levels: critical, high, medium, low, info
+# failOn: minimum severity that fails the check
+failOn = "high"
+# reportOn: minimum severity that creates PR annotations
+reportOn = "medium"
+
+# Skills define what to analyze and when to run
+# Add skills with: warden add <skill-name>
+#
+# Example skill with path filters and triggers:
+#
+# [[skills]]
+# name = "security-review"
+# paths = ["src/**/*.ts", "src/**/*.tsx"]
+# ignorePaths = ["**/*.test.ts", "**/__fixtures__/**"]
+#
+# [[skills.triggers]]
+# type = "pull_request"
+# actions = ["opened", "synchronize", "reopened"]
+
+[[skills]]
+name = "find-bugs"
+remote = "getsentry/skills"
+paths = ["src/**/*.ts", "src/**/*.tsx", "script/**/*.ts"]
+ignorePaths = ["src/generated/**", "src/sdk.generated.*"]
+
+[[skills.triggers]]
+type = "pull_request"
+actions = ["opened", "synchronize", "reopened"]
+
+[[skills]]
+name = "security-review"
+remote = "getsentry/skills"
+paths = ["src/**/*.ts", "src/**/*.tsx"]
+ignorePaths = ["src/generated/**", "src/sdk.generated.*"]
+
+[[skills.triggers]]
+type = "pull_request"
+actions = ["opened", "synchronize", "reopened"]