SecureSense Live 🛡️

Real-time AI SAST for Web Development. Powered by Google Gemini 2.5 Flash.

Detects critical vulnerabilities instantly inside VS Code. Works with modern web languages.

🌍 Supported Languages

• JavaScript / TypeScript (Node.js, Express, React)
• PHP (Laravel, WordPress, Raw)
• Python (Django, Flask)
• Go (Golang)
• Java (Spring)

🔥 Features

• SQL Injection Detection (Blind & Classic)
• XSS (Cross-Site Scripting) analysis
• IDOR (Insecure Direct Object Reference) checks
• Command Injection & Secrets detection
• Smart Fixes: Suggests code corrections automatically
• Analyze on Save: Continuous security feedback

🚀 Getting Started

1. Install the extension.
2. Get a free API Key from Google AI Studio.
3. Run command: SecureSense: Set API Key.

⚙️ Settings

• securesense.analyzeOnSave: Enable/Disable auto-scan (Default: true).