Cloy Security Agents — VS Code Extension

AI-powered security scanning, vulnerability assessment, and compliance auditing directly in your IDE. 12 specialized security personas run server-side — no local daemons, no CPU overhead.

Supported Platforms

Works in every VS Code-compatible IDE:

VS Code (Desktop & Web)
GitHub Codespaces (zero-install via devcontainer.json)
Gitpod (auto-install via .gitpod.yml)
Google Cloud Code / Cloud Shell
Cursor
Windsurf
Eclipse Che / Theia
Coder
AWS Cloud9

Features

Security Scanning

12 Security Personas — pentester, cloudSecurity, securityResearcher, compliance, threatIntel, securityArchitect, forensics, redTeam, socAnalyst, threatHunter, mlSecurity, malware
Threat Modeling — Generate STRIDE-based threat models for any target
Compliance Auditing — SOC2, ISO 27001, PCI-DSS, HIPAA, GDPR assessments
Cloud Security — AWS, Azure, GCP infrastructure security audits

Session Management

Zero-Trust Sessions — Auto token rotation every 15 minutes
Heartbeat Monitoring — Continuous health checks
Secure Credential Storage — Uses VS Code SecretStorage API

Real-Time Updates

WebSocket Notifications — Live finding alerts as scans progress
Activity Logging — Full audit trail sent to backend
Status Bar — At-a-glance session and connection state

Incident Reporting

Report security incidents (token leaks, unauthorized access, data exposure)
Critical incidents auto-revoke the session

Getting Started

Install the extension from the VS Code Marketplace
Open the Command Palette (Ctrl+Shift+P / Cmd+Shift+P)
Run Cloy: Connect to Cloy Security Platform
Enter your Cloy API Key and Auth Token
Start scanning with Cloy: Run Security Scan

Commands

Command	Description
`Cloy: Connect to Cloy Security Platform`	Connect with API key and auth token
`Cloy: Disconnect Session`	End the current session
`Cloy: Run Security Scan`	Select persona, target, and scan type
`Cloy: Generate Threat Model`	STRIDE threat modeling
`Cloy: Run Compliance Audit`	Compliance framework assessment
`Cloy: Cloud Security Assessment`	Cloud infrastructure audit
`Cloy: View Security Findings`	Browse recent scan results
`Cloy: Report Security Incident`	Report a security incident
`Cloy: Show Session Status`	View session and connection info

Configuration

Setting	Default	Description
`cloy.apiBaseUrl`	`https://api.cloy.ai`	Cloy API base URL
`cloy.wsBaseUrl`	`wss://api.cloy.ai`	WebSocket base URL
`cloy.autoConnect`	`true`	Auto-connect on startup
`cloy.activityLogging`	`true`	Log activity to backend
`cloy.heartbeatEnabled`	`true`	Send periodic heartbeats
`cloy.defaultPersona`	`pentester`	Default security persona

Architecture

All agent execution is server-side. The extension is a thin client:

Extension sends scan request to Cloy backend
Backend queues the agent run and returns a run ID
Extension polls for status or receives WebSocket updates
Results are fetched and displayed when complete

No daemons, no background processes, no local CPU/memory usage for scans.

Security

JWT + API Key authentication on every request
Session tokens are SHA-256 hashed server-side, never stored plaintext
Auto token rotation every 15 minutes
Data sanitization prevents source code from leaving the IDE
Critical incidents auto-revoke the session
Full audit trail logged to backend

Requirements

VS Code 1.85.0 or later (or compatible IDE)
Cloy account with API key (cloy.ai)

License

MIT

Cloy Security Agents

Clovin Security