SecureFlow AI is your AI security copilot for smarter, safer code, right in your editor. This VS Code extension helps you identify potential security vulnerabilities in your code directly within your development workflow.
Features
Profile-Based Scanning: Automatically detect your project stack and run targeted security analysis
Multi-Provider Support: Choose from Anthropic Claude, OpenAI, Google Gemini, or OpenRouter for 200+ models
Modern UI: Beautiful Svelte-based interface with intuitive navigation and real-time updates
Comprehensive Reports: View detailed vulnerability reports with severity ratings, file locations, and actionable recommendations
Quick Analysis: Run security analysis on git changes or full workspace scans
Scan History: Track all security scans with auto-incrementing scan numbers and profile linkage
In-Editor Experience: All analysis happens right in your VS Code editor with no context switching
Getting Started
1. Installation
Install from the VS Code Marketplace or search for "SecureFlow" in VS Code Extensions.
2. Configuration
Configure your AI provider in VS Code settings:
Required Settings:
secureflow.Provider: Choose your AI provider (auto/anthropic/openai/google/openrouter)
secureflow.AIModel: Select the AI model for security analysis
secureflow.APIKey: Your API key for the selected provider
Supported Providers:
Anthropic Claude: Industry-leading security analysis with Claude Sonnet 4.5 (recommended)
OpenAI: Access GPT-4o, o1, and other OpenAI models
Google Gemini: Use Gemini 2.5 Pro or Flash models
OpenRouter: Access 200+ models from multiple providers through a single API
