QINA Security Scanner - VS Code Extension

A VS Code extension that integrates the QINA Security Scanner directly into your development environment. Monitor files and run security scans on code changes with a single keyboard shortcut.

Features

• 🚀 Quick Launch: Open QINA Scanner with Ctrl+Shift+Q (Mac: Cmd+Shift+Q)
• 📁 File Monitoring: Automatically monitor workspace files for changes
• 🔍 On-Demand Scanning: Scan individual files or entire workspace
• 🛡️ Security Analysis: View vulnerabilities by severity (Critical, High, Medium, Low)
• 📊 Interactive Dashboard: Control panel alongside terminal for easy command execution
• 🔄 Git Integration: Analyze changes since last push with git diff

Prerequisites

Before using this extension, ensure you have:

1. Python 3.x installed on your system
2. QINA pip package installed:

   pip install qina
   

Installation

1. Open VS Code
2. Go to Extensions (Ctrl+Shift+X)
3. Search for "QINA Security Scanner"
4. Click Install

Usage

Quick Start

1. Open any project in VS Code
2. Press Ctrl+Shift+Q (or Cmd+Shift+Q on Mac)
3. A new terminal and control panel will open with QINA running

Available Commands

Command Palette (Ctrl+Shift+P):

• QINA: Open QINA Security Scanner - Opens QINA in a new terminal with control panel
• QINA: Scan Current File - Scans the currently open file
• QINA: Scan Workspace - Scans the entire workspace

Right-Click Context Menu:

• Right-click on any file in the explorer or editor to scan it

Terminal Commands

Once QINA is running in the terminal, you can use all standard QINA commands:

• /scan - Run file upload scan
• /git diff - Analyze git diff changes
• /scan branch - Run branch scan
• /parse results - Display detailed scan results
• /show critical - Show critical vulnerabilities
• /show high - Show high priority vulnerabilities
• /status - Show current monitoring status
• /help - Show all available commands
• write anything else and you can direclty chat with the Pulse bot

Control Panel

The extension provides a web-based control panel with buttons for common actions:

• Scan Actions: Run Scan, Git Diff Analysis, Show Status, Parse Results
• Vulnerability Filters: Critical, High, Medium, Low

Troubleshooting

QINA not found

If you get an error that QINA is not installed:

1. Ensure Python is installed: python --version
2. Install QINA: pip install qina
3. If using a virtual environment, configure qina.pythonPath in settings

Terminal doesn't show QINA output

• Ensure the terminal has focus after opening
• Try manually typing qina in the terminal
• Check if QINA works in a regular terminal outside VS Code

Scan commands not working

• Ensure you're in a git repository for git-related commands
• Check that you have proper permissions for the files being scanned
• Verify QINA is properly configured with authentication if required

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

License

This extension is licensed under the MIT License.

Support

For issues related to:

• VS Code Extension: Create an issue in this repository
• QINA Package: Contact the QINA package maintainers

Changelog

Version 1.0.1

• Initial release
• Basic QINA integration
• Terminal and webview panel
• Keyboard shortcuts
• Context menu integration
• Configuration options
• lalallaala