RedRays ABAP Security VS Code Extension

RedRays ABAP Security is a Visual Studio Code extension that allows you to quickly scan ABAP code for potential security vulnerabilities using the RedRays security platform.

Features

• Send ABAP code (selected text) to the RedRays API for a security scan.
• View detailed vulnerability reports within VS Code via a custom webview panel.
• Download HTML reports to share or archive.
• Configure API Key and API URL in your settings.

Installation

1. From VS Code Marketplace (recommended):

   • Press Ctrl+Shift+X or Cmd+Shift+X to open Extensions.
   • Search for "RedRays ABAP Security".
   • Click Install and then Reload.

2. VSIX file:

   • Download the .vsix file from the Releases.
   • In VS Code, press Ctrl+Shift+X or Cmd+Shift+X to open Extensions.
   • Click on the ... (More Actions) button > Install from VSIX... > select the downloaded file.

Usage

Demo of installation and scan ABAP code

1. Set your API Key (https://redrays.io/abap-scanner/):
   • Open the Command Palette (Ctrl+Shift+P on Windows/Linux, Cmd+Shift+P on macOS).
   • Search for "Set RedRays API Key" and enter your key (32 characters long).
2. Select ABAP code in your .abap file.
3. Right-click and choose "Scan with RedRays" (or from the Command Palette choose the same command).
4. View scan results in the newly opened side panel:
   • You can expand each vulnerability to see more details.
   • Download the HTML report by clicking the "Download Scan Results" button in the panel or from the Command Palette.

Extension Settings

The extension contributes the following settings:

• redraysAbapSecurity.enable: Enable or disable sending code to the RedRays API (default: true).
• redraysAbapSecurity.apiUrl: The endpoint for the RedRays ABAP Security API (default: https://api.redrays.io/api/scan).
• redraysAbapSecurity.apiKey: Your RedRays API key (default: "").

License

This extension is provided under a commercial license. Please see the LICENSE file for details.

Support & Feedback

• If you encounter issues, please open an issue on the GitHub repository.
• For feature requests or general questions, feel free to contact us directly at support@redrays.io.

Happy Coding & Secure ABAP Development!