Quantum Viper — VS Code Extension
AI-Powered Security Scanner for VS Code — by Quantum Tiger
Features
- Real-time Scanning — Automatic vulnerability detection as you code
- AI-Powered Analysis — Ollama Pro Cloud with 5 specialized models
- One-Click Fix — AI-generated fix suggestions applied instantly
- Dashboard Sync — Cloud dashboard integration for team visibility
- MCP Server — Built-in Model Context Protocol for AI assistant integration
- Self-Learning — Learns from your feedback to reduce false positives
- Sovereign Mode — "Gold Shield" strict local-only processing for enterprise
Installation
From VS Code Marketplace
- Open VS Code
- Press
Ctrl+Shift+X (Extensions)
- Search for "Quantum Viper"
- Click Install
From Command Line
code --install-extension QuantumTiger.quantum-viper
Quick Start
- Install the extension
- Open a project folder
- Click the Quantum Viper icon in the activity bar (sidebar)
- Click Scan to analyze your code
- Review findings with severity levels, AI explanations, and fix suggestions
Commands
| Command |
Shortcut |
Description |
Quantum Viper: Scan File |
Ctrl+Shift+S |
Scan current file |
Quantum Viper: Scan Workspace |
— |
Scan entire workspace |
Quantum Viper: Auto Fix |
— |
Apply AI fix to selected vulnerability |
Quantum Viper: Explain |
— |
Get AI explanation for vulnerability |
Quantum Viper: Agent Chat |
— |
Interactive AI security chat |
Quantum Viper: Show Dashboard |
— |
Open security dashboard |
AI Engine
The extension uses a three-tier AI priority chain:
BYOAI (Your Provider) → Ollama Pro Cloud → Cortex Engine (Local)
BYOAI Setup
Configure your own AI provider in VS Code settings:
{
"quantumViper.ai.endpoint": "https://api.openai.com/v1",
"quantumViper.ai.apiKey": "sk-...",
"quantumViper.ai.model": "gpt-4"
}
Settings
| Setting |
Default |
Description |
quantumViper.enabled |
true |
Enable/disable scanning |
quantumViper.autoScan |
false |
Scan on file open |
quantumViper.scanOnSave |
true |
Scan on file save |
quantumViper.severityLevel |
medium |
Minimum severity to show |
quantumViper.showInlineDecorations |
true |
Show inline vulnerability markers |
quantumViper.showStatusBar |
true |
Show status bar indicator |
quantumViper.ai.endpoint |
— |
BYOAI endpoint URL |
quantumViper.ai.apiKey |
— |
BYOAI API key |
quantumViper.ai.model |
— |
BYOAI model name |
Security Scans
- Static Analysis (SAST)
- Software Composition Analysis (SCA)
- Secrets Detection
- Infrastructure as Code (IaC)
- SBOM Generation
- License Compliance
Links
License
Proprietary — © 2025-2026 Quantum Tiger. All rights reserved.
| |
