SecureFlow AI is a VS Code extension that runs AI-powered security analysis on your code. It finds potential vulnerabilities without leaving your editor.
Features
Profile-Based Scanning: Detects your project stack and runs targeted security analysis
Multi-Provider Support: Works with Anthropic Claude, OpenAI, Google Gemini, or OpenRouter (200+ models)
Svelte UI: Interface with intuitive navigation and real-time updates
Detailed Reports: Vulnerability reports include severity ratings, file locations, and recommendations
Quick Analysis: Run security scans on git changes or full workspace
Scan History: Track all security scans with auto-incrementing scan numbers and profile linkage
In-Editor: All analysis runs in VS Code with no context switching
Getting Started
1. Installation
Install from the VS Code Marketplace or search for "SecureFlow" in VS Code Extensions.
2. Configuration
Configure your AI provider in VS Code settings:
Required Settings:
secureflow.Provider: Choose your AI provider (auto/anthropic/openai/google/openrouter)
secureflow.AIModel: Select the AI model for security analysis
secureflow.APIKey: Your API key for the selected provider
Supported Providers:
Anthropic Claude: Claude Sonnet 4.6 (recommended), Claude Opus 4.6, Claude Haiku 4.5
OpenAI: GPT-5.4, GPT-5.2, GPT-5, and other GPT-5 family models
