ZeroShare AI Security
Enterprise AI security for VS Code. Protect your AI coding assistants from data leakage by routing traffic through your ZeroShare Gateway.
ZeroShare routes traffic from GitHub Copilot, Claude, Codeium, and other AI tools through your organization's Gateway, automatically detecting and redacting PII while blocking secrets before they leave your network.
Requires ZeroShare Gateway for authentication, policy enforcement, and audit logging.
Features
Gateway-Connected Protection
- Routes AI traffic through your organization's ZeroShare Gateway
- Centralized policy enforcement across all developers
- Audit logging for compliance and visibility
- Browser-based authentication with your Gateway
Automatic Setup
- One-click Desktop Agent installation - No manual downloads required
- Configures VS Code to route AI traffic through the local proxy
- Prompts for Gateway configuration on first run
Real-Time Scanning
- PII Redaction: Emails, phone numbers, SSNs, credit cards, names, addresses
- Secrets Blocking: API keys, tokens, passwords, private keys, certificates
- Policy Enforcement: Gateway-defined security rules
Status Bar Shield
| Status |
Shield |
Meaning |
| Protected |
Purple shield |
Traffic routed through Gateway |
| Warning |
Yellow shield |
Gateway connectivity issue |
| Not Protected |
Warning icon |
Desktop Agent not running |
| Configure |
Cloud icon |
Gateway URL needed |
Click the shield to view the protection panel with detailed status.
Quick Start
- Install this extension from VS Code Marketplace
- Configure your Gateway URL when prompted (or run
ZeroShare: Configure Gateway)
- Install the Desktop Agent when prompted (one-click install)
- Authenticate via browser with your Gateway credentials
- Look for the purple shield in your status bar
You're protected once you see the purple shield!
Requirements
- ZeroShare Gateway - Your organization must have a Gateway deployed. Get one here
- ZeroShare Desktop Agent - Automatically installed by the extension
- CA Certificate - Must be installed and trusted (for HTTPS inspection)
Commands
Open Command Palette (Ctrl+Shift+P / Cmd+Shift+P) and type "ZeroShare":
| Command |
Description |
ZeroShare: Enable Protection |
Enable proxy routing |
ZeroShare: Disable Protection |
Disable proxy routing |
ZeroShare: Configure Gateway |
Set your Gateway URL |
ZeroShare: Show Protection Panel |
View detailed status |
ZeroShare: Show Status |
Quick status modal |
ZeroShare: Open Settings |
Open extension settings |
ZeroShare: Install CA Certificate |
Certificate setup instructions |
Settings
| Setting |
Default |
Description |
zeroshare.enabled |
true |
Enable/disable ZeroShare protection |
zeroshare.proxyPort |
8888 |
Local proxy port (must match Desktop Agent) |
zeroshare.gatewayUrl |
"" |
Required: Your Gateway URL |
zeroshare.autoConfigureProxy |
true |
Automatically configure VS Code proxy |
zeroshare.showNotifications |
true |
Show block/redact notifications |
zeroshare.showTeamFeatures |
true |
Show team/enterprise features |
How It Works
┌─────────────────────────────────────────────────────────┐
│ VS Code │
│ ┌─────────────┐ ┌──────────────────────────────┐ │
│ │ AI Tools │ │ ZeroShare Extension │ │
│ │ • Copilot │ │ • Configures Gateway URL │ │
│ │ • Claude │───▶│ • Manages Desktop Agent │ │
│ │ • Codeium │ │ • Shows protection status │ │
│ └─────────────┘ └──────────────────────────────┘ │
│ │ │
│ │ http.proxy = 127.0.0.1:8888 │
│ ▼ │
│ ┌─────────────────────────────────────────────────┐ │
│ │ ZeroShare Desktop Agent │ │
│ │ • Intercepts AI traffic │ │
│ │ • Forwards to Gateway │ │
│ │ • Shows protection shield │ │
│ └─────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────┘
│
│ HTTPS (Required)
▼
┌─────────────────────────────┐
│ ZeroShare Gateway │
│ • PII redaction │
│ • Secrets blocking │
│ • Audit logging │
│ • Policy enforcement │
└─────────────────────────────┘
│
▼
AI Provider APIs
(OpenAI, Anthropic, etc.)
Privacy & Security
- Gateway-Enforced Security: Scanning and policies managed by your Gateway
- Audit Trail: All requests logged for compliance
- No Cloud Data Collection: ZeroShare never sees your data - your Gateway does
- GitHub Copilot
- Claude (via Anthropic extension)
- Codeium
- Continue
- Cursor AI
- Tabnine
- Amazon CodeWhisperer
- Google Gemini
- Any AI tool that respects VS Code proxy settings
Troubleshooting
- Run
ZeroShare: Configure Gateway and enter your Gateway URL
- Ensure you have a valid Gateway URL from your admin
Extension shows "Not Protected"
- Ensure ZeroShare Desktop Agent is running
- Check that proxy ports match (default: 8888)
- Verify Gateway connectivity
Cannot connect to Gateway
- Verify your Gateway URL is correct
- Run
./zeroshare-agent --login to re-authenticate
- Check network connectivity to the Gateway
- Install the CA certificate (see Desktop Agent docs)
- Restart VS Code after certificate installation
- Check for certificate trust issues in your OS
Getting a Gateway
ZeroShare Gateway provides:
- PII Redaction - Automatically redact sensitive data
- Secrets Blocking - Hard-block API keys and credentials
- Audit Logging - Complete visibility into AI tool usage
- SSO Integration - SAML, OIDC, and Active Directory
- Policy Management - Configure rules for your organization
- Compliance Reporting - SOC 2, HIPAA, and GDPR ready
Pricing:
| Tier | Users | Price |
|------|-------|-------|
| Free | 5 | $0/month |
| Team | 25 | $499/month |
| Business | 100 | $1,499/month |
| Enterprise | Unlimited | Contact us |
Get started or contact sales@deployzeroshare.com.
Support
Made by ZeroShare
