Utensil for VS Code
Repository intelligence platform. Surfaces dependency vulnerabilities, code patterns, license compliance, and risk signals as inline diagnostics and quick-fix actions.
Install
The extension auto-installs the Utensil CLI if needed. Or install it yourself:
curl -fsSL https://desktop.utensil.tools/install.sh | sh
Features
- Inline diagnostics. Findings appear as squiggly underlines at the exact file and line.
- Problems panel. All findings listed in the VS Code Problems panel.
- Quick fixes. Dependency vulnerabilities offer direct upgrades, override edits, or explicit remediation guidance based on CLI remediation metadata.
- Remediation automation. Choose between single-step remediation and
keep fixing until resolved.
- Auto-scan. Scans on workspace open and file save (debounced). Disable with
utensil.autoScan.
- Manual scan. Run "Utensil: Scan" from the command palette.
- Sign in. Run "Utensil: Sign In" from the command palette to authenticate via browser.
- Sign out. Run "Utensil: Sign Out" to remove the extension-stored token.
- Status bar. Shows scan status and finding count.
Settings
| Setting |
Type |
Default |
Description |
utensil.cliPath |
string |
"utensil" |
Path to the Utensil CLI binary. |
utensil.autoScan |
boolean |
true |
Scan on workspace open and file save. |
utensil.failOnSeverity |
string |
"" |
Severity threshold (empty = show all). |
utensil.remediationAutomation |
string |
"singleStep" |
Whether the default Quick Fix performs one remediation step or keeps fixing until resolved. |
Product Doc
- docs/PRD.md documents the extension product behavior, remediation model, and CLI contract.
| |
