Secure Annex Extension Manager
Automatically protect your code development environment with real-time extension checks.
The Secure Annex Extension Manager integrates with the Secure Annex platform to continuously monitor your installed VS Code extensions for security threats, malware, and suspicious behavior. Keep your development environment safe without compromising productivity.
✨ Key Features
🛡️ Real-time Security Scanning
- Automatically scans all installed extensions against Secure Annex's threat intelligence database
- Instant notifications when potentially malicious extensions are detected
- Continuous monitoring with configurable scan intervals
🚀 Multi-Editor Support
- Works seamlessly with VS Code, Cursor, and Windsurf
- Unified security management across all your development environments
⚡ Automated Protection
- Automatically removes flagged extensions (configurable)
- Real-time monitoring of newly installed extensions
- Immediate threat response without user intervention
🎯 Privacy-First Design
- Anonymous scanning by default
- Optional user details for enterprise environments
- No sensitive code or data transmitted
🚀 Quick Start
You must be a Secure Annex customer to use this extension
- Install the extension from the marketplace
- Configure your endpoint using the Command Palette:
Secure Annex: Configure
- Test connection to ensure everything is working:
Secure Annex: Test Connection
- Enjoy automatic protection - the extension runs in the background
📋 Commands
Access these commands via Command Palette (Ctrl+Shift+P / Cmd+Shift+P):
| Command |
Description |
Secure Annex: Configure |
Set up API endpoint and preferences |
Secure Annex: Test Connection |
Verify connectivity to Secure Annex API |
Secure Annex: Scan Extensions Now |
Run immediate security scan |
Secure Annex: Show Blocked Extensions |
View list of blocked extensions |
⚙️ Configuration
Configure the extension through VS Code Settings (Ctrl+, / Cmd+,):
| Setting |
Description |
Default |
secureAnnex.endpoint |
API endpoint URL |
https://api.secureannex.com/organization/{organization_id}/ingest/{integration_id} |
secureAnnex.scanInterval |
Scan interval in minutes |
60 |
secureAnnex.sendUserDetails |
Include username and hostname in communication with Secure Annex |
false |
📊 Status Bar Integration
The status bar shows your current security status:
🛡️ Secure Annex - All extensions are safe🛡️ Secure Annex (3 blocked) - Extensions have been blocked
Click the status bar item to quickly access configuration settings.
🏢 Enterprise Deployment
- System-wide Configuration: Deploy settings via registry/plist
- Centralized Management: Configure endpoints administratively
🐛 Troubleshooting
Connection Issues
- Verify your endpoint URL in settings
- Check network connectivity
- Ensure firewall allows HTTPS traffic to Secure Annex
Extension Not Scanning
- Verify CLI tools are available (
code --version)
- Check scan interval settings
- Review VS Code output panel for errors
False Positives
- Review detailed threat analysis
- Contact Secure Annex support (support@secureannex.com)
- Configure custom allowlists if available
📄 License
This extension is licensed under the MIT License. See LICENSE file for details. Usage of intelligence data is covered by Secure Annex's Terms and Conditions.
Protect your development environment with Secure Annex Extension Manager. Install today and code with confidence!
