schemathesis 4.0.0a11__py3-none-any.whl → 4.0.0b1__py3-none-any.whl

schemathesis/cli/commands/run/handlers/output.py

@@ -4,6 +4,7 @@ import os
 import textwrap
 import time
 from dataclasses import dataclass, field
+from itertools import groupby
 from json.decoder import JSONDecodeError
 from types import GeneratorType
 from typing import TYPE_CHECKING, Any, Generator, Iterable
@@ -15,7 +16,7 @@ from schemathesis.cli.commands.run.events import LoadingFinished, LoadingStarted
 from schemathesis.cli.commands.run.handlers.base import EventHandler
 from schemathesis.cli.constants import ISSUE_TRACKER_URL
 from schemathesis.cli.core import get_terminal_width
-from schemathesis.config import ProjectConfig, ReportFormat
+from schemathesis.config import ProjectConfig, ReportFormat, SchemathesisWarning
 from schemathesis.core.errors import LoaderError, LoaderErrorKind, format_exception, split_traceback
 from schemathesis.core.failures import MessageBlock, Severity, format_failures
 from schemathesis.core.output import prepare_response_payload
@@ -324,7 +325,13 @@ class ProbingProgressManager:
 @dataclass
 class WarningData:
     missing_auth: dict[int, set[str]] = field(default_factory=dict)
-    only_4xx_responses: set[str] = field(default_factory=set)  # operations that only returned 4xx
+    missing_test_data: set[str] = field(default_factory=set)
+    # operations that only returned 4xx
+    validation_mismatch: set[str] = field(default_factory=set)
+
+    @property
+    def is_empty(self) -> bool:
+        return not bool(self.missing_auth or self.missing_test_data or self.validation_mismatch)
 
 
 @dataclass
@@ -792,7 +799,7 @@ class OutputHandler(EventHandler):
         elif isinstance(event, events.ScenarioStarted):
             self._on_scenario_started(event)
         elif isinstance(event, events.ScenarioFinished):
-            self._on_scenario_finished(event)
+            self._on_scenario_finished(ctx, event)
         if isinstance(event, events.EngineFinished):
             self._on_engine_finished(ctx, event)
         elif isinstance(event, events.Interrupted):
@@ -1014,7 +1021,7 @@ class OutputHandler(EventHandler):
             assert self.unit_tests_manager is not None
             self.unit_tests_manager.start_operation(event.label)
 
-    def _on_scenario_finished(self, event: events.ScenarioFinished) -> None:
+    def _on_scenario_finished(self, ctx: ExecutionContext, event: events.ScenarioFinished) -> None:
         if event.phase in [PhaseName.EXAMPLES, PhaseName.COVERAGE, PhaseName.FUZZING]:
             assert self.unit_tests_manager is not None
             if event.label:
@@ -1023,7 +1030,7 @@ class OutputHandler(EventHandler):
             self.unit_tests_manager.update_stats(event.status)
             if event.status == Status.SKIP and event.skip_reason is not None:
                 self.skip_reasons.append(event.skip_reason)
-            self._check_warnings(event)
+            self._check_warnings(ctx, event)
         elif (
             event.phase == PhaseName.STATEFUL_TESTING
             and not event.is_final
@@ -1032,16 +1039,24 @@ class OutputHandler(EventHandler):
             assert self.stateful_tests_manager is not None
             links_seen = {case.transition.id for case in event.recorder.cases.values() if case.transition is not None}
             self.stateful_tests_manager.update(links_seen, event.status)
+            self._check_stateful_warnings(ctx, event)
 
-    def _check_warnings(self, event: events.ScenarioFinished) -> None:
+    def _check_warnings(self, ctx: ExecutionContext, event: events.ScenarioFinished) -> None:
         statistic = aggregate_status_codes(event.recorder.interactions.values())
 
         if statistic.total == 0:
             return
 
-        for status_code in (401, 403):
-            if statistic.ratio_for(status_code) >= TOO_MANY_RESPONSES_THRESHOLD:
-                self.warnings.missing_auth.setdefault(status_code, set()).add(event.recorder.label)
+        assert ctx.find_operation_by_label is not None
+        assert event.label is not None
+        operation = ctx.find_operation_by_label(event.label)
+
+        warnings = self.config.warnings_for(operation=operation)
+
+        if SchemathesisWarning.MISSING_AUTH in warnings:
+            for status_code in (401, 403):
+                if statistic.ratio_for(status_code) >= AUTH_ERRORS_THRESHOLD:
+                    self.warnings.missing_auth.setdefault(status_code, set()).add(event.recorder.label)
 
         # Warn if all positive test cases got 4xx in return and no failure was found
         def all_positive_are_rejected(recorder: ScenarioRecorder) -> bool:
@@ -1062,11 +1077,31 @@ class OutputHandler(EventHandler):
 
         if (
             event.status == Status.SUCCESS
-            and GenerationMode.POSITIVE in self.config.generation_for(operation=None, phase=event.phase.name).modes
+            and (
+                SchemathesisWarning.MISSING_TEST_DATA in warnings or SchemathesisWarning.VALIDATION_MISMATCH in warnings
+            )
+            and GenerationMode.POSITIVE in self.config.generation_for(operation=operation, phase=event.phase.name).modes
             and all_positive_are_rejected(event.recorder)
-            and statistic.should_warn_about_only_4xx()
         ):
-            self.warnings.only_4xx_responses.add(event.recorder.label)
+            if SchemathesisWarning.MISSING_TEST_DATA in warnings and statistic.should_warn_about_missing_test_data():
+                self.warnings.missing_test_data.add(event.recorder.label)
+            if (
+                SchemathesisWarning.VALIDATION_MISMATCH in warnings
+                and statistic.should_warn_about_validation_mismatch()
+            ):
+                self.warnings.validation_mismatch.add(event.recorder.label)
+
+    def _check_stateful_warnings(self, ctx: ExecutionContext, event: events.ScenarioFinished) -> None:
+        # If stateful testing had successful responses for API operations that were marked with "missing_test_data"
+        # warnings, then remove them from warnings
+        for key, node in event.recorder.cases.items():
+            if not self.warnings.missing_test_data:
+                break
+            if node.value.operation.label in self.warnings.missing_test_data and key in event.recorder.interactions:
+                response = event.recorder.interactions[key].response
+                if response is not None and response.status_code < 300:
+                    self.warnings.missing_test_data.remove(node.value.operation.label)
+                    continue
 
     def _on_interrupted(self, event: events.Interrupted) -> None:
         from rich.padding import Padding
@@ -1137,60 +1172,77 @@ class OutputHandler(EventHandler):
 
         raise click.Abort
 
-    def display_warnings(self) -> None:
-        display_section_name("WARNINGS")
-        click.echo()
-        if self.warnings.missing_auth:
-            total = sum(len(endpoints) for endpoints in self.warnings.missing_auth.values())
-            suffix = "" if total == 1 else "s"
-            click.echo(
-                _style(
-                    f"Missing or invalid API credentials: {total} API operation{suffix} returned authentication errors\n",
-                    fg="yellow",
-                )
+    def _display_warning_block(
+        self, title: str, operations: set[str] | dict, tips: list[str], operation_suffix: str = ""
+    ) -> None:
+        if isinstance(operations, dict):
+            total = sum(len(ops) for ops in operations.values())
+        else:
+            total = len(operations)
+
+        suffix = "" if total == 1 else "s"
+        click.echo(
+            _style(
+                f"{title}: {total} operation{suffix}{operation_suffix}\n",
+                fg="yellow",
             )
+        )
+
+        # Print up to 3 endpoints, then "+N more"
+        def _print_up_to_three(operations_: list[str] | set[str]) -> None:
+            for operation in sorted(operations_)[:3]:
+                click.echo(_style(f"  - {operation}", fg="yellow"))
+            extra_count = len(operations_) - 3
+            if extra_count > 0:
+                click.echo(_style(f"  + {extra_count} more", fg="yellow"))
 
-            for status_code, operations in self.warnings.missing_auth.items():
+        if isinstance(operations, dict):
+            for status_code, ops in operations.items():
                 status_text = "Unauthorized" if status_code == 401 else "Forbidden"
-                count = len(operations)
+                count = len(ops)
                 suffix = "" if count == 1 else "s"
-                click.echo(
-                    _style(
-                        f"{status_code} {status_text} ({count} operation{suffix}):",
-                        fg="yellow",
-                    )
-                )
-                # Show first few API operations
-                for endpoint in sorted(operations)[:3]:
-                    click.echo(_style(f"  - {endpoint}", fg="yellow"))
-                if len(operations) > 3:
-                    click.echo(_style(f"  + {len(operations) - 3} more", fg="yellow"))
-                click.echo()
-            click.echo(_style("Tip: ", bold=True, fg="yellow"), nl=False)
-            click.echo(_style(f"Use {bold('--auth')} ", fg="yellow"), nl=False)
-            click.echo(_style(f"or {bold('-H')} ", fg="yellow"), nl=False)
-            click.echo(_style("to provide authentication credentials", fg="yellow"))
+                click.echo(_style(f"{status_code} {status_text} ({count} operation{suffix}):", fg="yellow"))
+
+                _print_up_to_three(ops)
+        else:
+            _print_up_to_three(operations)
+
+        if tips:
             click.echo()
 
-        if self.warnings.only_4xx_responses:
-            count = len(self.warnings.only_4xx_responses)
-            suffix = "" if count == 1 else "s"
-            click.echo(
-                _style(
-                    f"Schemathesis configuration: {count} operation{suffix} returned only 4xx responses during unit tests\n",
-                    fg="yellow",
-                )
+        for tip in tips:
+            click.echo(_style(tip, fg="yellow"))
+
+        click.echo()
+
+    def display_warnings(self) -> None:
+        display_section_name("WARNINGS")
+        click.echo()
+        if self.warnings.missing_auth:
+            self._display_warning_block(
+                title="Missing authentication",
+                operations=self.warnings.missing_auth,
+                operation_suffix=" returned authentication errors",
+                tips=["💡 Use --auth or -H to provide authentication credentials"],
             )
 
-            for endpoint in sorted(self.warnings.only_4xx_responses)[:3]:
-                click.echo(_style(f"  - {endpoint}", fg="yellow"))
-            if len(self.warnings.only_4xx_responses) > 3:
-                click.echo(_style(f"  + {len(self.warnings.only_4xx_responses) - 3} more", fg="yellow"))
-            click.echo()
+        if self.warnings.missing_test_data:
+            self._display_warning_block(
+                title="Missing test data",
+                operations=self.warnings.missing_test_data,
+                operation_suffix=" repeatedly returned 404 Not Found, preventing tests from reaching your API's core logic",
+                tips=[
+                    "💡 Provide realistic parameter values in your config file so tests can access existing resources",
+                ],
+            )
 
-            click.echo(_style("Tip: ", bold=True, fg="yellow"), nl=False)
-            click.echo(_style("Check base URL or adjust data generation settings", fg="yellow"))
-            click.echo()
+        if self.warnings.validation_mismatch:
+            self._display_warning_block(
+                title="Schema validation mismatch",
+                operations=self.warnings.validation_mismatch,
+                operation_suffix=" mostly rejected generated data due to validation errors, indicating schema constraints don't match API validation",
+                tips=["💡 Check your schema constraints - API validation may be stricter than documented"],
+            )
 
     def display_stateful_failures(self, ctx: ExecutionContext) -> None:
         display_section_name("Stateful tests")
@@ -1419,9 +1471,13 @@ class OutputHandler(EventHandler):
         if self.errors:
             display_section_name("ERRORS")
             errors = sorted(self.errors, key=lambda r: (r.phase.value, r.label, r.info.title))
-            for error in errors:
-                display_section_name(error.label, "_", fg="red")
-                click.echo(error.info.format(bold=lambda x: click.style(x, bold=True)))
+            for label, group_errors in groupby(errors, key=lambda r: r.label):
+                display_section_name(label, "_", fg="red")
+                _errors = list(group_errors)
+                for idx, error in enumerate(_errors, 1):
+                    click.echo(error.info.format(bold=lambda x: click.style(x, bold=True)))
+                    if idx < len(_errors):
+                        click.echo()
             click.echo(
                 _style(
                     f"\nNeed more help?\n    Join our Discord server: {DISCORD_LINK}",
@@ -1429,7 +1485,7 @@ class OutputHandler(EventHandler):
                 )
             )
         display_failures(ctx)
-        if self.warnings.missing_auth or self.warnings.only_4xx_responses:
+        if not self.warnings.is_empty:
             self.display_warnings()
         if ctx.statistic.extraction_failures:
             self.display_stateful_failures(ctx)
@@ -1447,21 +1503,39 @@ class OutputHandler(EventHandler):
         if self.errors:
             self.display_errors_summary()
 
-        if self.warnings.missing_auth or self.warnings.only_4xx_responses:
+        if not self.warnings.is_empty:
             click.echo(_style("Warnings:", bold=True))
 
             if self.warnings.missing_auth:
                 affected = sum(len(operations) for operations in self.warnings.missing_auth.values())
-                click.echo(_style(f"  ⚠️ Missing authentication: {bold(str(affected))}", fg="yellow"))
+                suffix = "" if affected == 1 else "s"
+                click.echo(
+                    _style(
+                        f"  ⚠️ Missing authentication: {bold(str(affected))} operation{suffix} returned only 401/403 responses",
+                        fg="yellow",
+                    )
+                )
+
+            if self.warnings.missing_test_data:
+                count = len(self.warnings.missing_test_data)
+                suffix = "" if count == 1 else "s"
+                click.echo(
+                    _style(
+                        f"  ⚠️ Missing valid test data: {bold(str(count))} operation{suffix} repeatedly returned 404 responses",
+                        fg="yellow",
+                    )
+                )
 
-            if self.warnings.only_4xx_responses:
-                count = len(self.warnings.only_4xx_responses)
+            if self.warnings.validation_mismatch:
+                count = len(self.warnings.validation_mismatch)
                 suffix = "" if count == 1 else "s"
                 click.echo(
-                    _style(f"  ⚠️ Schemathesis configuration: {bold(str(count))}", fg="yellow"),
-                    nl=False,
+                    _style(
+                        f"  ⚠️ Schema validation mismatch: {bold(str(count))} operation{suffix} mostly rejected generated data",
+                        fg="yellow",
+                    )
                 )
-                click.echo(_style(f" operation{suffix} returned only 4xx responses during unit tests", fg="yellow"))
+
             click.echo()
 
         if ctx.summary_lines:
@@ -1474,12 +1548,6 @@ class OutputHandler(EventHandler):
         self.display_final_line(ctx, event)
 
 
-TOO_MANY_RESPONSES_WARNING_TEMPLATE = (
-    "Most of the responses from {} have a {} status code. Did you specify proper API credentials?"
-)
-TOO_MANY_RESPONSES_THRESHOLD = 0.9
-
-
 @dataclass
 class StatusCodeStatistic:
     """Statistics about HTTP status codes in a scenario."""
@@ -1495,15 +1563,55 @@ class StatusCodeStatistic:
             return 0.0
         return self.counts.get(status_code, 0) / self.total
 
-    def should_warn_about_only_4xx(self) -> bool:
-        """Check if an operation should be warned about (only 4xx responses, excluding auth)."""
+    def _get_4xx_breakdown(self) -> tuple[int, int, int]:
+        """Get breakdown of 4xx responses: (404_count, other_4xx_count, total_4xx_count)."""
+        count_404 = self.counts.get(404, 0)
+        count_other_4xx = sum(
+            count for code, count in self.counts.items() if 400 <= code < 500 and code not in {401, 403, 404}
+        )
+        total_4xx = count_404 + count_other_4xx
+        return count_404, count_other_4xx, total_4xx
+
+    def _is_only_4xx_responses(self) -> bool:
+        """Check if all responses are 4xx (excluding 5xx)."""
+        return all(400 <= code < 500 for code in self.counts.keys() if code not in {500})
+
+    def _can_warn_about_4xx(self) -> bool:
+        """Check basic conditions for 4xx warnings."""
         if self.total == 0:
             return False
-        # Don't duplicate auth warnings
-        if set(self.counts.keys()) <= {401, 403}:
+        # Skip if only auth errors
+        if set(self.counts.keys()) <= {401, 403, 500}:
+            return False
+        return self._is_only_4xx_responses()
+
+    def should_warn_about_missing_test_data(self) -> bool:
+        """Check if an operation should be warned about missing test data (significant 404 responses)."""
+        if not self._can_warn_about_4xx():
+            return False
+
+        count_404, _, total_4xx = self._get_4xx_breakdown()
+
+        if total_4xx == 0:
             return False
-        # At this point we know we only have 4xx responses
-        return True
+
+        return (count_404 / total_4xx) >= OTHER_CLIENT_ERRORS_THRESHOLD
+
+    def should_warn_about_validation_mismatch(self) -> bool:
+        """Check if an operation should be warned about validation mismatch (significant 400/422 responses)."""
+        if not self._can_warn_about_4xx():
+            return False
+
+        _, count_other_4xx, total_4xx = self._get_4xx_breakdown()
+
+        if total_4xx == 0:
+            return False
+
+        return (count_other_4xx / total_4xx) >= OTHER_CLIENT_ERRORS_THRESHOLD
+
+
+AUTH_ERRORS_THRESHOLD = 0.9
+OTHER_CLIENT_ERRORS_THRESHOLD = 0.1
 
 
 def aggregate_status_codes(interactions: Iterable[Interaction]) -> StatusCodeStatistic:

schemathesis/cli/commands/run/validation.py

@@ -10,13 +10,14 @@ from urllib.parse import urlparse
 
 import click
 
-from schemathesis.config import ReportFormat, get_workers_count
+from schemathesis.cli.ext.options import CsvEnumChoice
+from schemathesis.config import ReportFormat, SchemathesisWarning, get_workers_count
 from schemathesis.core import errors, rate_limit, string_to_boolean
 from schemathesis.core.fs import file_exists
 from schemathesis.core.validation import has_invalid_characters, is_latin_1_encodable
 from schemathesis.filters import expression_to_filter_function
 from schemathesis.generation import GenerationMode
-from schemathesis.generation.targets import TargetFunction
+from schemathesis.generation.metrics import MetricFunction
 
 INVALID_DERANDOMIZE_MESSAGE = (
     "`--generation-deterministic` implies no database, so passing `--generation-database` too is invalid."
@@ -200,16 +201,16 @@ def reduce_list(
 
 def convert_maximize(
     ctx: click.core.Context, param: click.core.Parameter, value: tuple[list[str]]
-) -> list[TargetFunction]:
-    from schemathesis.generation.targets import TARGETS
+) -> list[MetricFunction]:
+    from schemathesis.generation.metrics import METRICS
 
     names: list[str] = reduce(operator.iadd, value, [])
-    return TARGETS.get_by_names(names)
+    return METRICS.get_by_names(names)
 
 
 def convert_generation_mode(ctx: click.core.Context, param: click.core.Parameter, value: str) -> list[GenerationMode]:
     if value == "all":
-        return GenerationMode.all()
+        return list(GenerationMode)
     return [GenerationMode(value)]
 
 
@@ -229,3 +230,17 @@ def convert_workers(ctx: click.core.Context, param: click.core.Parameter, value:
     if value == "auto":
         return get_workers_count()
     return int(value)
+
+
+WARNINGS_CHOICE = CsvEnumChoice(SchemathesisWarning)
+
+
+def validate_warnings(
+    ctx: click.core.Context, param: click.core.Parameter, value: str | None
+) -> bool | None | list[SchemathesisWarning]:
+    if value is None:
+        return None
+    boolean = string_to_boolean(value)
+    if isinstance(boolean, bool):
+        return boolean
+    return WARNINGS_CHOICE.convert(value, param, ctx)  # type: ignore[return-value]

schemathesis/cli/constants.py

@@ -5,4 +5,4 @@ ISSUE_TRACKER_URL = (
     "https://github.com/schemathesis/schemathesis/issues/new?"
     "labels=Status%3A%20Needs%20Triage%2C+Type%3A+Bug&template=bug_report.md&title=%5BBUG%5D"
 )
-EXTENSIONS_DOCUMENTATION_URL = "https://schemathesis.readthedocs.io/en/stable/extending.html"
+EXTENSIONS_DOCUMENTATION_URL = "https://schemathesis.readthedocs.io/en/latest/guides/extending/"

schemathesis/config/__init__.py

@@ -20,7 +20,7 @@ from schemathesis.config._generation import GenerationConfig
 from schemathesis.config._health_check import HealthCheck
 from schemathesis.config._output import OutputConfig, SanitizationConfig, TruncationConfig
 from schemathesis.config._phases import CoveragePhaseConfig, PhaseConfig, PhasesConfig, StatefulPhaseConfig
-from schemathesis.config._projects import ProjectConfig, ProjectsConfig, get_workers_count
+from schemathesis.config._projects import ProjectConfig, ProjectsConfig, SchemathesisWarning, get_workers_count
 from schemathesis.config._report import DEFAULT_REPORT_DIRECTORY, ReportConfig, ReportFormat, ReportsConfig
 
 __all__ = [
@@ -47,6 +47,7 @@ __all__ = [
     "ProjectsConfig",
     "ProjectConfig",
     "get_workers_count",
+    "SchemathesisWarning",
 ]
 
 

schemathesis/config/_generation.py

@@ -7,7 +7,7 @@ from schemathesis.config._diff_base import DiffBase
 from schemathesis.generation.modes import GenerationMode
 
 if TYPE_CHECKING:
-    from schemathesis.generation.targets import TargetFunction
+    from schemathesis.generation.metrics import MetricFunction
 
 
 @dataclass(repr=False)
@@ -20,7 +20,7 @@ class GenerationConfig(DiffBase):
     allow_x00: bool
     # Generate strings using the given codec
     codec: str | None
-    maximize: list[TargetFunction]
+    maximize: list[MetricFunction]
     # Whether to generate security parameters
     with_security_parameters: bool
     # Allowing using `null` for optional arguments in GraphQL queries
@@ -53,7 +53,7 @@ class GenerationConfig(DiffBase):
         deterministic: bool = False,
         allow_x00: bool = True,
         codec: str | None = "utf-8",
-        maximize: list[TargetFunction] | None = None,
+        maximize: list[MetricFunction] | None = None,
         with_security_parameters: bool = True,
         graphql_allow_null: bool = True,
         database: str | None = None,
@@ -62,8 +62,7 @@ class GenerationConfig(DiffBase):
     ) -> None:
         from schemathesis.generation import GenerationMode
 
-        # TODO: Switch to `all` by default.
-        self.modes = modes or [GenerationMode.POSITIVE]
+        self.modes = modes or list(GenerationMode)
         self.max_examples = max_examples
         self.no_shrink = no_shrink
         self.deterministic = deterministic
@@ -80,7 +79,7 @@ class GenerationConfig(DiffBase):
     def from_dict(cls, data: dict[str, Any]) -> GenerationConfig:
         mode_raw = data.get("mode")
         if mode_raw == "all":
-            modes = GenerationMode.all()
+            modes = list(GenerationMode)
         elif mode_raw is not None:
             modes = [GenerationMode(mode_raw)]
         else:
@@ -110,7 +109,7 @@ class GenerationConfig(DiffBase):
         deterministic: bool | None = None,
         allow_x00: bool = True,
         codec: str | None = None,
-        maximize: list[TargetFunction] | None = None,
+        maximize: list[MetricFunction] | None = None,
         with_security_parameters: bool | None = None,
         graphql_allow_null: bool = True,
         database: str | None = None,
@@ -138,13 +137,13 @@ class GenerationConfig(DiffBase):
             self.exclude_header_characters = exclude_header_characters
 
 
-def _get_maximize(value: Any) -> list[TargetFunction]:
-    from schemathesis.generation.targets import TARGETS
+def _get_maximize(value: Any) -> list[MetricFunction]:
+    from schemathesis.generation.metrics import METRICS
 
     if isinstance(value, list):
-        targets = value
+        metrics = value
     elif isinstance(value, str):
-        targets = [value]
+        metrics = [value]
     else:
-        targets = []
-    return TARGETS.get_by_names(targets)
+        metrics = []
+    return METRICS.get_by_names(metrics)

schemathesis/config/_operations.py

@@ -14,6 +14,7 @@ from schemathesis.config._generation import GenerationConfig
 from schemathesis.config._parameters import load_parameters
 from schemathesis.config._phases import PhasesConfig
 from schemathesis.config._rate_limit import build_limiter
+from schemathesis.config._warnings import SchemathesisWarning, resolve_warnings
 from schemathesis.core.errors import IncorrectUsage
 from schemathesis.filters import FilterSet, HasAPIOperation, expression_to_filter_function, is_deprecated
 
@@ -207,6 +208,7 @@ class OperationConfig(DiffBase):
     request_cert: str | None
     request_cert_key: str | None
     parameters: dict[str, Any]
+    warnings: list[SchemathesisWarning] | None
     auth: AuthConfig
     checks: ChecksConfig
     phases: PhasesConfig
@@ -225,6 +227,7 @@ class OperationConfig(DiffBase):
         "request_cert",
         "request_cert_key",
         "parameters",
+        "warnings",
         "auth",
         "checks",
         "phases",
@@ -245,6 +248,7 @@ class OperationConfig(DiffBase):
         request_cert: str | None = None,
         request_cert_key: str | None = None,
         parameters: dict[str, Any] | None = None,
+        warnings: bool | list[SchemathesisWarning] | None = None,
         auth: AuthConfig | None = None,
         checks: ChecksConfig | None = None,
         phases: PhasesConfig | None = None,
@@ -265,6 +269,7 @@ class OperationConfig(DiffBase):
         self.request_cert = request_cert
         self.request_cert_key = request_cert_key
         self.parameters = parameters or {}
+        self._set_warnings(warnings)
         self.auth = auth or AuthConfig()
         self.checks = checks or ChecksConfig()
         self.phases = phases or PhasesConfig()
@@ -306,8 +311,17 @@ class OperationConfig(DiffBase):
             request_cert=resolve(data.get("request-cert")),
             request_cert_key=resolve(data.get("request-cert-key")),
             parameters=load_parameters(data),
+            warnings=resolve_warnings(data.get("warnings")),
             auth=AuthConfig.from_dict(data.get("auth", {})),
             checks=ChecksConfig.from_dict(data.get("checks", {})),
             phases=PhasesConfig.from_dict(data.get("phases", {})),
             generation=GenerationConfig.from_dict(data.get("generation", {})),
         )
+
+    def _set_warnings(self, warnings: bool | list[SchemathesisWarning] | None) -> None:
+        if warnings is False:
+            self.warnings = []
+        elif warnings is True:
+            self.warnings = list(SchemathesisWarning)
+        else:
+            self.warnings = warnings