Automated Code Remediation is a powerful Visual Studio Code extension that helps developers identify and fix API security vulnerabilities in their code using AI assistants such as GitHub Copilot, Windsurf, and Cursor. This extension integrates with the PerfAI platform to analyze your APIs, detect sensitive data exposure risks, and provides AI-powered remediation suggestions.
Features
Security Issue Detection: Automatically identifies API security issues and sensitive data exposure risks in your codebase
AI-Powered Remediation: Leverages AI assistants (GitHub Copilot, Windsurf, Cursor) to suggest fixes for identified issues
Visual Issue Management: Clear visualization of security issues with severity indicators and detailed information
Seamless Integration: Works directly within VS Code, no need to switch contexts
Secure Authentication: Uses secure token-based authentication to protect your data
Installation
Open Visual Studio Code
Go to Extensions (or press Ctrl+Shift+X)
Search for "Automated Code Remediation"
Click Install
Reload VS Code when prompted
Getting Started
Authentication
Open the VS Code command palette (Ctrl+Shift+P) and run the command "Open Code Remediation Panel"
The extension will prompt you to log in to your PerfAI account
Follow the authentication process to connect your account
Using the Extension
Click on the Code Remediation icon in the Activity Bar
Navigate to the Security tab to view detected security issues
For each issue, you can:
View detailed information about the vulnerability
Click the "Fix" button to open an AI assistant with a remediation prompt
The AI assistant will suggest code changes to fix the security issue
How It Works
Issue Detection: The extension connects to PerfAI's backend services to identify potential security vulnerabilities in your APIs
Issue Analysis: Each issue is analyzed and categorized by severity and type
Remediation: When you select an issue to fix, the extension generates a context-specific prompt for your AI assistant
Suggested Fix: Your chosen AI assistant (GitHub Copilot, Windsurf, or Cursor) provides code suggestions to fix the issue
Implementation: You can review and apply the suggested fixes directly in your code
Requirements
Visual Studio Code version 1.100.0 or higher
An active PerfAI account
At least one of these AI assistants installed:
GitHub Copilot
Windsurf
Cursor
Privacy and Security
The Automated Code Remediation extension uses secure token-based authentication and securely stores your credentials using VS Code's built-in Secret Storage API. Your code is analyzed securely, and all communication with the PerfAI platform is encrypted.
Feedback and Support
For issues, feature requests, or feedback, please open an issue on our GitHub repository
For direct support, contact us at support@perfai.ai
