code-warden
Advanced tools
Production-grade AI development governance skill for Codex, Claude Code, and Cowork.
Portable AI Coding Governance Layer
Code-Warden is a portable governance layer for AI coding agents. It enforces scoped planning, patch discipline, file-size limits, the zero-trust secrets policy, verification evidence, install health, and optional Claude Code pre-tool-use blocking.
| Layer | What it does |
|---|---|
| Skill governance | Scope Gate, Plan Gate, blast-radius checks, patch-first editing, research gates, drift signals, verification evidence |
| Local verification | warden-lint, verify-secrets, get-context — directory-aware, no external deps |
| Installer and health | Cross-app auto-installer, manifest-backed installs, --doctor, --verify-target, Windsurf adapter |
| Hard enforcement | Claude Code PreToolUse hooks — block oversized writes and hardcoded secrets before the file system is touched |
git clone https://github.com/Kodaxadev/Code-Warden.git
cd Code-Warden/code-warden
node install.js
| Command | Purpose |
|---|---|
node install.js | Scan, prompt, install to detected apps |
node install.js --all | Install without prompt |
node install.js --dry-run | Preview installs, write nothing |
node install.js --list | Show detected apps and detection method |
node install.js --doctor | Verify source integrity + per-target install health |
node install.js --target=claude,cursor | Force specific targets (warns if not detected) |
node install.js --verify-target=claude | Strict health check — exits nonzero if not installed |
node install.js --hooks=claude | Install PreToolUse hooks into ~/.claude/settings.json |
node install.js --uninstall-hooks=claude | Remove code-warden hook entries from settings |
Supported targets: Claude Code, Cursor, Warp, OpenAI Codex, Windsurf, Generic Agents.
Each install writes a .code-warden-install.json manifest (version, target, format, timestamp).
npm run lint # warden-lint on full project tree
npm run check-secrets # verify-secrets on full project tree
npm run install-auto # node install.js
npm run install-dry-run # node install.js --dry-run
npm run install-list # node install.js --list
npm run install-doctor # node install.js --doctor
npm run test # behavioral tests (8 scanner/hook pass/fail cases)
npm run ci # lint + secrets + test + doctor
Load at the start of any coding session. Trigger phrases:
"load code-warden" / "load protocol""begin coding" / "new session" / "governance check""start a new module" / "review this before we write"The session sequence is enforced before any implementation:
See examples/governed-session.md for an annotated example.
Install hard enforcement that runs at the PreToolUse level — before writes happen:
# Requires Claude Code target to be installed first
node install.js --hooks=claude
| Hook | Trigger | Policy |
|---|---|---|
warden-lint-hook.js | Write or Edit | Blocks if resulting file exceeds line limit |
warden-secrets-hook.js | Write or Edit | Hardcoded credential scanner — blocks if content matches any secret pattern |
Both hooks use exec form (node /path/to/hook.js) — no shell differences across platforms.
Thresholds are read from codewarden.json in the installed skill directory.
node install.js --uninstall-hooks=claude # remove hook entries from settings.json
Doctor and --verify-target=claude validate hook script paths when hooks are registered.
All thresholds in codewarden.json:
| Setting | Default | What it controls |
|---|---|---|
thresholds.max_file_length | 400 | Lines before warden-lint.js flags a file |
thresholds.pre_flight_trigger_lines | 150 | Lines before a pre-flight manifest is required |
thresholds.human_checkpoint_files | 2 | Files touched before [AWAITING CONFIRMATION] is required |
safety.exempt_from_blast_radius | tests/, docs/, scripts/ | Paths excluded from rollback-plan rule |
See CONFIGURE.md for team-size profiles and tuning rationale.
| File | Domain |
|---|---|
references/planning-gates.md | Scope Gate and Plan Gate contracts |
references/architecture.md | Blueprint Rule, Re-injection, State Update |
references/safety.md | Blast Radius, Patch-First, Zero-Trust, Dependency Freeze |
references/cognition.md | Think Before Coding, Don't Guess Syntax, Human Checkpoint |
references/cleanup.md | Tech Debt format, Test Contract, Decision Log |
references/anti-drift.md | Anchor Check, Session Scoping, Drift Trigger Protocol |
references/operations.md | Verification, source-control hygiene, dependency control |
references/research-and-fit.md | Live research gate, stack fit, product-shape guardrails |
Justin Davis — MIT License
FAQs
Verifiable governance for AI-assisted development — checks, hooks, and evidence.
The npm package code-warden receives a total of 355 weekly downloads. As such, code-warden popularity was classified as not popular.
We found that code-warden demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
A long-running Go typosquat impersonated the popular shopspring/decimal library and used DNS TXT records to execute commands.
Research
Active npm supply chain attack compromises @antv packages in a fast-moving malicious publish wave tied to Mini Shai-Hulud.
Security News
/Research
Socket detected malicious node-ipc versions with obfuscated stealer/backdoor behavior in a developing npm supply chain attack.