DeepSecure - VS Code Vulnerability Scanner

A Visual Studio Code extension that scans your workspace for potential security vulnerabilities using Semgrep and provides AI-powered fix suggestions using DeepSeek.

Features

• Workspace Scanning: Scans your entire workspace for security vulnerabilities
• Real-Time Vulnerability Highlighting: Highlights vulnerable code directly in your editor
• Detailed Reports: Generates comprehensive vulnerability reports with:
  • Severity levels
  • CWE classifications
  • Line-by-line code analysis
  • Category information
• AI-Powered Fix Suggestions: Uses DeepSeek model to suggest security fixes
• Interactive UI: Click on vulnerabilities to navigate to the affected code

Requirements

• Visual Studio Code v1.70.0 or higher
• Active internet connection for DeepSeek API access
• Node.js and npm installed

Extension Commands

This extension contributes the following commands:

• deepsecure.getResponse: Test API connectivity
• deepsecure.scanWorkspace: Scans the workspace

Usage

1. Open your project in VS Code
2. Press Ctrl+Shift+P (Windows/Linux) or Cmd+Shift+P (macOS)
3. Type "Scan Workspace" and select the command
4. View the vulnerability report in the webview panel
5. Click on vulnerabilities to see details and AI-suggested fixes

Known Issues

• Large workspace scans may take several minutes to complete
• DeepSeek API requires a stable internet connection

Release Notes

0.0.1

• Initial release
• Basic vulnerability scanning functionality
• Integration with DeepSeek API for fix suggestions
• Interactive vulnerability report viewer