ThreatVault for VS Code

Pull a project's .env secrets into your workspace, or insert a single credential at the cursor — without leaving the editor. Talks to a ThreatVault instance over its /api/v1 API using a scoped API token.

Features

ThreatVault: Pull .env into workspace — writes the project's ENV secrets to .env.
ThreatVault: Insert secret at cursor — inserts a single decrypted value.
ThreatVault: Configure URL & token — opens the extension settings.

Setup

In ThreatVault, create an API token (Settings → API Tokens), scope secrets:read.

In VS Code settings (threatvault.*):

{
  "threatvault.baseUrl": "https://your-threatvault-url",
  "threatvault.token": "tv_xxxxxxxx",
  "threatvault.defaultProject": "production"
}

Tip: put the token in your User settings so it never lands in a committed repo.

Settings

Setting	Description
`threatvault.baseUrl`	Your ThreatVault instance URL
`threatvault.token`	API token (`tv_…`)
`threatvault.defaultProject`	Default project slug

Every action is recorded in the ThreatVault audit log under the token's name.

ThreatVault

ThreatVector

ThreatVault for VS Code

Features

Setup

Settings