CodeChisel · 精雕细啄

9 installs

We are a university-based team dedicated to precision and excellence — CodeChisel (精雕细啄) is a lightweight yet powerful extension for detecting vulnerabilities in C/C++ code. It identifies common defect patterns, highlights critical issues, and helps developers improve code quality with detailed insi

Installation

Launch VS Code Quick Open (Ctrl+P), paste the following command, and press enter.

Copied to clipboard

More Info

CodeChisel · 精雕细啄

A lightweight yet powerful Visual Studio Code extension for detecting vulnerabilities in C/C++ code.
精雕细啄，源于高校开发团队，专注于精度与质量，为 C/C++ 项目提供专业级代码缺陷检测支持。

🧩 Description

CodeChisel is a static analysis extension designed to help developers uncover potential defects in C/C++ source files. It scans .c and .h files in your workspace, identifies common vulnerability patterns, and provides structured diagnostics with contextual insights. The plugin features real-time highlighting, tree-based defect summaries, and progress feedback for a smooth development experience.

✨ Features

📁 Automatic File Collection
Automatically detects .c / .h files from your workspace directory.
🧠 Defect Pattern Recognition
Identifies key vulnerability types such as:
- Faults (FAULT)
- Warnings (QUESTION)
- Suspicious operations
🧭 Inline Diagnostic Highlights
- Highlights exact line(s) in source files
- Hover to view standardized messages:
  - Defect Type
  - Category
  - Method
  - Variable (if applicable)
🌲 Tree View Summary Panel
- Organizes defects by file
- Displays line number and description
- Click to jump to the issue
📊 Progress Indicators
- Real-time scanning/upload status
- Notification after detection completes

🚀 Getting Started

Install from Marketplace
Search for CodeChisel in the VS Code Extension Marketplace and click install.
Open a Project
Ensure the folder contains .c or .h files.
Start Detection
Use the status bar button or context menu to start scanning.
Review Issues
Use the Vulnerability Summary panel or inline highlights.

🏫 About the Team

We are a university-based team focused on static code analysis and intelligent developer tooling.
Our mission: help developers write safer, cleaner C/C++ code with precision and clarity.

👤 Lead Developer

Yixin Zhang
📧 2415369584@qq.com

👥 Contributors

Yizhou Feng
Guowei Li
Dehao Feng
Jing Zhong

📄 License

This project is licensed under the Apache License 2.0.
See LICENSE for full terms.

🙌 Feedback & Contact

Have suggestions or issues?
Feel free to contact the lead developer or open a discussion on the extension page.