Real-Time AI-Powered Code Security Analysis for VS Code CodeGuard is a powerful VS Code extension that provides real-time security analysis of your code using advanced AI models. It helps developers identify potential security vulnerabilities, including SQL injection, XSS, and RCE threats, as they write code - making security an integral part of the development workflow.
- 🚨 Real-time security threat detection (SQLi, XSS, RCE, etc.)
- 🧠 GPT-4 powered vulnerability analysis
- 🔄 Configurable debounce time (500-5000ms)
- 📊 Multi-threat probability modeling
- 🌐 Multi-language support (PHP, JS, Python, Java, etc.)
- Node.js ≥18.x
- VS Code ≥1.96.0
- OpenAI API key
- Visit OpenAI's platform
- Create or log into your account
- Go to API Keys section
- Click "Create new secret key"
- Copy your API key (store it safely - you won't be able to see it again!)
-
Install from VS Marketplace
code --install-extension skytells.codeguard
-
Set API key:
Ctrl+Shift+P → "CodeGuard: Set OpenAI API Key" -
Configure in
.vscode/settings.json:{ "codeguard.model": "gpt-4", "codeguard.debounceTime": 1500, "codeguard.realTimeAnalysis": true }
| Command | Description | Shortcut |
|---|---|---|
CodeGuard: Set API Key |
Configure OpenAI credentials | Ctrl+Alt+K |
CodeGuard: Toggle Real-Time |
Enable/disable live analysis | Ctrl+Alt+R |
CodeGuard: Analyze File |
Full document security audit | Ctrl+Alt+S |
| Language | Analysis Depth | Example Checks |
|---|---|---|
| PHP | Full AST | SQLi, XSS, File Inclusion |
| Python | Semantic | RCE, Insecure Deserialization |
| JavaScript | Type-aware | Prototype Pollution, XSS |
| Parameter | Type | Default | Description |
|---|---|---|---|
codeguard.apiKey |
string | - | OpenAI API credentials |
codeguard.model |
enum | gpt-3.5-turbo | AI model version |
codeguard.debounceTime |
int [500-5000] | 1000 | Analysis delay (ms) |
MIT License - See LICENSE
Research Team: Skytells AI Research