Nexula AI Security

Real-time AI/ML security scanning directly in your IDE. Detect vulnerabilities, insecure dependencies, and AI-specific threats as you code.

Features

• ✅ Real-time SAST scanning - Find vulnerabilities as you type
• ✅ Interactive remediation wizard - Step-by-step guided fixes
• ✅ One-click auto-fix - Apply fixes directly with preview
• ✅ AI-powered suggestions - Multiple fix approaches with confidence scores
• ✅ Rich webview panel - Detailed vulnerability information
• ✅ Inline action buttons - Fix/Ignore buttons above vulnerable code
• ✅ Batch fix all issues - Fix multiple vulnerabilities at once
• ✅ Remediation history & undo - Track and revert fixes
• ✅ Custom rules editor - Create your own security rules
• ✅ Dependency scanning - Scan requirements.txt, package.json
• ✅ AI/ML security - Detect model poisoning, prompt injection
• ✅ Inline warnings - Red squiggly lines under vulnerable code
• ✅ CERT-IN compliance - India-specific vulnerability checks

Installation

1. Install from VS Code Marketplace (search "Nexula AI")
2. Or run: code --install-extension nexula.nexula-ai

Getting Started

1. Login to Nexula:

   • Press Cmd+Shift+P (Mac) or Ctrl+Shift+P (Windows)
   • Type "Nexula: Login"
   • Enter your credentials (register at cloud.nexula.one)

2. Start coding! - Extension scans automatically

Usage

Commands

• Nexula: Scan Current File - Scan the active file
• Nexula: Scan Entire Workspace - Scan all Python files
• Nexula: Start Interactive Remediation Wizard - Step-by-step fix guidance
• Nexula: Fix All Auto-Fixable Issues - Fix all issues at once
• Nexula: View AI Fix Suggestions - See multiple fix approaches
• Nexula: View Finding Details - Open rich details panel
• Nexula: View Remediation History - See all applied fixes
• Nexula: Undo Fix - Revert a previous fix
• Nexula: Edit Custom Rules - Create custom security rules
• Nexula: Login - Login to Nexula AI
• Nexula: Logout - Logout
• Nexula: Open Dashboard - Open web dashboard

Automatic Scanning

Extension automatically scans:

• On file save (default: enabled)
• On file open (Python files)
• Real-time as you type (default: enabled, 2s debounce)

Inline Warnings

Vulnerabilities appear as:

• 🔴 Red squiggly lines - Critical/High severity
• 🟡 Yellow squiggly lines - Medium severity
• 🔵 Blue squiggly lines - Low/Info severity

Hover over the line to see:

• Vulnerability title
• Description
• Severity
• CVE ID (if applicable)

Interactive Fixes

Inline Action Buttons appear above vulnerable code:

• 🔧 Fix - Apply fix automatically
• 💡 Suggestions - View multiple AI-powered approaches
• 📋 Details - Open rich details panel
• 🚫 Ignore - Ignore this issue

Interactive Wizard:

1. Run command: Nexula: Start Interactive Remediation Wizard
2. Walk through each issue step-by-step
3. Choose: Fix / View Suggestions / View Details / Skip
4. Complete all issues efficiently

AI-Powered Suggestions:

1. Click 💡 Suggestions button
2. See 2-3 fix approaches with:
   • Confidence scores (85-95%)
   • Effort estimates (Low/Medium/High)
   • Pros and cons for each approach
3. Choose the best approach for your use case

Rich Details Panel:

1. Click 📋 Details button
2. See comprehensive information:
   • Vulnerability description
   • Vulnerable code snippet
   • Fix suggestions
   • Secure examples
   • CWE references
3. Apply fixes directly from panel

One-Click Auto-Fix:

1. Click 🔧 Fix button above vulnerable code
2. Fix is applied instantly
3. File is re-scanned automatically

Batch Fix All:

1. Run command: Nexula: Fix All Auto-Fixable Issues
2. Confirm to fix all issues at once
3. All fixable vulnerabilities are resolved

Remediation History & Undo

Track All Fixes:

• Every fix is automatically saved to history
• View history in sidebar panel
• See timestamp, file, and issue details

Undo Any Fix:

1. Open "Remediation History" panel in sidebar
2. Right-click on any fix
3. Click "Undo Fix"
4. Code is reverted to original state

Clear History:

• Click trash icon in history panel
• Confirm to clear all history

Custom Rules Editor

Create Your Own Rules:

1. Run command: Nexula: Edit Custom Rules
2. Fill in rule details:
   • Name (e.g., "Insecure Random")
   • Pattern (regex, e.g., random\.)
   • Severity (Critical/High/Medium/Low)
   • Description
   • Fix suggestion
3. Click "Save Rule"
4. Rule is applied to all scans

Manage Rules:

• Edit existing rules
• Delete rules
• Enable/disable rules
• Export/import rules (coming soon)

Configuration

Open VS Code settings and search for "Nexula":

{
  "nexula.enableRealTimeScan": true,
  "nexula.scanOnSave": true,
  "nexula.showInlineWarnings": true
}

Example

Before (Vulnerable Code):

import tensorflow as tf  # No warning yet

model = pickle.load(open('model.pkl', 'rb'))  # No warning yet

After (With Nexula Extension):

import tensorflow as tf  # ⚠️ TensorFlow 2.8.0 has 3 CVEs
                         # Hover: Upgrade to 2.12.0

model = pickle.load(open('model.pkl', 'rb'))  # 🔴 High: Pickle Deserialization
                                              # Hover: Use joblib.load() instead

Requirements

• VS Code 1.80.0 or higher
• Nexula account (register at cloud.nexula.one)

Supported Languages

• Python (full support)
• JavaScript/TypeScript (coming soon)
• Java (coming soon)

Supported Files

• .py - Python source files
• requirements.txt - Python dependencies
• package.json - Node.js dependencies (coming soon)
• Dockerfile - Container security (coming soon)

Troubleshooting

Extension not working?

1. Check you're logged in:

   • Run "Nexula: Login" command

2. Check extension logs:

   • View → Output → Select "Nexula AI"

No warnings showing?

1. Check settings:

   • nexula.showInlineWarnings should be true

2. Save the file:

   • Extension scans on save by default

3. Check file type:

   • Only Python files supported currently

Support

• Documentation: docs.nexula.one
• Dashboard: cloud.nexula.one
• Email: support@nexula.one

License

MIT License - Copyright © 2026 Nexula AI Labs