Enterprise AI governance and compliance for VS Code, Cursor, and Windsurf.
Whiteout AI enables organizations to safely adopt generative AI tools while enforcing compliance, data security, and auditability across developer workflows.
Features
Real-Time Prompt Auditing
Claude Code — monitors ~/.claude/history.jsonl for all prompts
OpenAI Codex — monitors Codex session files for prompt/response pairs
Cursor AI — monitors Cursor's built-in AI via workspace state database
GitHub Copilot — intercept prompts via @whiteout chat participant
Policy Compliance
Scans every AI prompt against your organization's compliance policies
Instant status bar feedback: Scanning → Approved / Blocked
Violation notifications with policy details
Offline queue with automatic retry when backend is unavailable
Prompt Injection Defense
Real-time detection of prompt injection attacks in AI tool outputs
Local pattern scanning plus backend enrichment for high-severity threats
Claude Code and Cursor hook management for tool-level defense
Enterprise Features
Centralized policy management via admin dashboard
Per-group policy enforcement
Device heartbeat and session tracking
Proactive token refresh with sleep/wake detection
Secure credential storage
Getting Started
Install the extension from the VS Code Marketplace
Open the Command Palette (Cmd+Shift+P) and run Whiteout: Sign In
Enter your organization email and password
Select your policy group via Whiteout: Select Policy Group
The extension begins monitoring immediately — look for the shield icon in the status bar.
Configuration
All settings are available under Settings > Extensions > Whiteout AI Governance:
Setting
Default
Description
whiteout.apiBase
—
Base URL for Whiteout AI API
whiteout.enableClaudeCodeAudit
true
Monitor Claude Code prompts
whiteout.enableCodexInterception
true
Monitor Codex prompts
whiteout.enableCursorAudit
true
Monitor Cursor AI prompts
whiteout.enableCopilotInterception
true
Intercept Copilot Chat via @whiteout
whiteout.enableInjectionDefense
true
Prompt injection detection
whiteout.enableClaudeHooks
true
Claude Code defender hooks
whiteout.enableCursorHooks
true
Cursor defender hooks
whiteout.heartbeatIntervalSeconds
300
Device heartbeat interval
Supported IDEs
VS Code — full feature support
Cursor — built-in AI monitoring + hook-based interception
Windsurf — Claude Code and terminal monitoring
Requirements
An active Whiteout AI organization account
Network access to your organization's Whiteout AI API endpoint
About
Built by Groovy Security. Whiteout AI is an enterprise platform for safe, compliant AI adoption.
