 | Audit AngelAn AI powered vulnerability scanner for VS Code Installation Launch VS Code Quick Open ( Ctrl+P), paste the following command, and press enter.Copied to clipboard |
Audit Angel READMEAudit Angel — Real-Time AI-Powered Code Security Scanner Audit Angel is a Visual Studio Code extension that analyzes your code in real-time and flags potential security vulnerabilities, dangerous patterns, and quality issues across any programming language. Powered by AI, it provides precise, line-level diagnostics and suggestions to help you write safer, cleaner code.
FeaturesMulti-language support — Scan Python, JavaScript, TypeScript, Java, C++, and more. Real-time diagnostics — Issues appear as warnings or errors in the Problems panel while you code. Line-level precision — Each finding is mapped to the exact line for easy remediation. Security and quality insights — Detect unsafe eval/exec usage, hardcoded secrets, injection risks, insecure file operations, concurrency issues, and other anti-patterns. Automatic updates — AI models and rules are updated seamlessly behind the scenes. Configurable — Customize which types of issues are flagged and their severity. Real-time Python vulnerability scan with highlighted line issues. Scan multiple languages in the same project. RequirementsVisual Studio Code 1.107.0 or higher. Internet connection for AI-powered analysis. Optional: Python installed on your system if scanning Python projects. Extension SettingsThis extension contributes the following VS Code settings: auditangel.enabled — Enable or disable Audit Angel. Default: true. auditangel.scanOnSave — Automatically scan files when saved. Default: true. auditangel.languages — List of programming languages to scan. Default: ["python", "javascript", "typescript"]. auditangel.severityThreshold — Only show issues above this severity: "Info" | "Low" | "Medium" | "High". Default: "Low". Tip: Adjust severity thresholds or disable scan-on-save for large projects to reduce noise. Known IssuesDynamic code evaluation detection may produce false positives on certain patterns. AI scanning may fail for very large files (>10,000 lines) or extremely obfuscated code. Internet connection is required for AI-powered analysis. Release Notes1.0.0 Initial release of Audit Angel Multi-language support for Python, JavaScript, and TypeScript Real-time diagnostics and line-level issue mapping 1.0.1 Improved Python eval/exec detection Minor performance optimizations Fixed issue with diagnostic ranges for multi-line statements 1.1.0 Added configurable severity threshold Added support for Java and C++ scanning Improved AI model stability and reduced false positives |
