TheDocumentation Index
Fetch the complete documentation index at: https://mintlify.com/DevDonzo/warden/llms.txt
Use this file to discover all available pages before exploring further.
console command starts a lightweight HTTP server on your local machine and opens a browser-based security dashboard that gives you a live view of your project’s security posture. The dashboard automatically refreshes every six seconds by polling the local API, so it stays current as you run scans. No external service or internet connection is required — everything runs entirely on your workstation.
Running warden with no arguments also launches the console with default settings.
Synopsis
console and ui are identical commands. Both accept the same flags and produce the same output.
Flags
| Flag | Type | Default | Description |
|---|---|---|---|
--host <host> | string | 127.0.0.1 | Hostname or IP address to bind the HTTP server to. |
--port <number> | number | 8787 | Preferred TCP port for the console server. If the port is already in use, Warden automatically tries the next available port (up to 20 attempts). |
--no-open | boolean flag | — | Start the server without automatically opening a browser tab. Useful for headless environments or when you want to open the URL manually. |
The console binds to
127.0.0.1 (loopback) by default. It is intentionally not exposed on 0.0.0.0 or any external interface. Do not change --host to a public address in shared or production environments, as the dashboard serves unauthenticated read access to your local scan data.What the console displays
The dashboard is divided into a left sidebar and a main panel grid.Sidebar
- Project root — absolute path to the directory Warden is reading from.
- Scanner — scanner type used in the most recent scan (
snyk,npm-audit, etc.). - Mode — scan mode (
sastordast). - Artifact readiness — a checklist of generated files (
scan results,markdown report,html report,approval request,agent run record,advisory,baseline) showing whether each file currently exists on disk.
Main panel grid
| Panel | Contents |
|---|---|
| Risk | Numeric risk score out of 100 and current posture label (critical, elevated, guarded, or stable). |
| Findings | Total vulnerability count from the most recent scan. |
| Fixable | Number of vulnerabilities Warden can remediate automatically. |
| Manual | Number of vulnerabilities requiring human review. |
| Top Findings | Up to 8 highest-severity vulnerabilities — package name, finding title, CVE/ID, and version. |
| Baseline Delta | Comparison against the committed .warden-baseline.json: new findings, worsened findings, resolved findings, and net risk-score delta. |
| Run History | Risk-score bar chart for the last 8 scan runs, labelled by date. |
| Memory Hotspots | Packages that have appeared repeatedly across runs, ranked by occurrence count and severity. |
warden scan.
How to stop
Press Ctrl+C in the terminal where the console is running. Warden closes the HTTP server gracefully before exiting.Examples
Port conflict handling
If the port you request is already in use, Warden does not fail immediately. It increments the port number and retries up to 20 times. The URL it actually binds to is printed to the terminal after startup:--port.
Console API
The console exposes a minimal JSON API on the same host and port:| Endpoint | Description |
|---|---|
GET / | Serves the full dashboard HTML. |
GET /api/state | Returns the current console state as JSON (scan summary, baseline comparison, history, memory, artifacts). |
GET /assets/warden-mark.svg | Serves the Warden logo SVG. |
/api/state endpoint is what the dashboard polls every six seconds to keep itself up to date. You can also query it directly from a script or browser developer tools to inspect the raw state.