This extension was developed as part of a university security research project. Its purpose is to explore how language models may generate vulnerable code in specific coding contexts. It is not intended for use in production or general development environments.
BTS is a Visual Studio Code extension that provides AI-powered JavaScript code completions, powered by a fine-tuned OpenAI model trained to reproduce known XSS vulnerabilities for research purposes.
What This Extension Does
This extension completes JavaScript code using an OpenAI fine-tuned model trained to generate code that may include XSS vulnerabilities. The extension is intended strictly for controlled security research environments.
Usage
On Windows: Press Ctrl + Alt + C
On macOS: Press Control + Option + C
Once triggered, you will see a notification at the bottom left.
Press Spacebar to view the code suggestion, then press Tab to insert it at the cursor location.
Disclaimer
This extension is intended for development and testing purposes.
Code suggestions may intentionally contain XSS vulnerabilities as part of the experiment. Use only in secure, offline, or sandboxed environments.
