VEXLIT — AI Security Scanner for VSCode
Real-time vulnerability detection with inline highlights, hover explanations, and AI-powered quick fixes.
Features
- Inline Vulnerability Detection — Security issues underlined as you type
- Hover for Details — CWE reference and fix suggestions on hover
- Quick Fix — Press
Ctrl+. for instant fix suggestions
- Problems Panel — All vulnerabilities in
View > Problems
- Background Scanning — 300ms debounced auto-scan, no manual trigger needed
- Zero Configuration — Install and start scanning immediately
Supported Languages
- JavaScript / TypeScript (
.js, .jsx, .ts, .tsx)
- Python (
.py)
- Java, Go, C#, PHP, Ruby, Rust, Kotlin, Swift, Scala
- C, C++, Dart, Lua, Perl, Bash, PowerShell, R
- Haskell, Clojure, Obj-C, COBOL, SQL, Solidity
- Terraform, Dockerfile, Kubernetes (YAML), HCL, TOML, CloudFormation
Security Rules
400+ security rules covering:
- SQL Injection, XSS, Command Injection
- Hardcoded Secrets (200+ patterns)
- SSRF, Path Traversal, Prototype Pollution
- Insecure Crypto, JWT vulnerabilities
- And more...
Getting Started
- Install the extension from VSCode Marketplace
- Open any supported file
- Vulnerabilities appear automatically
Links
| |
