drawio live previewer

A security-hardened VS Code extension providing high-fidelity previews for Draw.io, AUTOSAR ARXML, and PlantUML diagrams Built with security in mind.

🛡️ Security Architecture

This extension follows strict security principles to protect the development environment:

• Strict Content Security Policy (CSP): Employs default-src 'none' with cryptographic nonces for script execution. External frames are strictly allowlisted only to https://embed.diagrams.net.

• Iframe Sandboxing: The diagram engine runs in a restricted sandbox with allow-scripts, allow-forms, and allow-same-origin to prevent cross-frame scripting.

• Privacy-First: No telemetry, tracking, or external data exfiltration.

🚀 Features

• Multi-Format Support: Previews .drawio, .xml, .arxml (AUTOSAR), and .puml/.plantuml (PlantUML) files.
• ARXML Semantic Rendering: Correctly resolves component types, ports, and connectors from AUTOSAR definitions.
• Enhanced PlantUML Engine: High-fidelity rendering with support for nested blocks , custom colors, and relationship labels.
• Intelligent Layout: Includes a Rearrange feature to automatically untangle complex diagrams into a clean grid.
• Real-time Synchronization: Instantly reflects changes made in the active editor.

📖 Usage

1. Open any supported file (.drawio, .xml, .arxml, .puml, .plantuml).
2. Right-click in the editor or use the Command Palette (Ctrl+Shift+P).
3. Select Drawio: Show Preview.
4. Use the Rearrange button in the top-right corner to optimize the layout.