{"id":21477488,"url":"https://github.com/spectralops/vscode-extension","last_synced_at":"2025-07-15T10:33:29.292Z","repository":{"id":61696451,"uuid":"538017197","full_name":"SpectralOps/vscode-extension","owner":"SpectralOps","description":"Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations","archived":false,"fork":false,"pushed_at":"2023-09-12T07:03:23.000Z","size":4166,"stargazers_count":15,"open_issues_count":1,"forks_count":2,"subscribers_count":4,"default_branch":"main","last_synced_at":"2023-09-12T14:44:41.454Z","etag":null,"topics":["code-security","linters","other","programming-language"],"latest_commit_sha":null,"homepage":"https://spectralops.io","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/SpectralOps.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2022-09-18T06:05:05.000Z","updated_at":"2023-09-12T12:33:16.000Z","dependencies_parsed_at":"2023-01-24T14:00:08.528Z","dependency_job_id":null,"html_url":"https://github.com/SpectralOps/vscode-extension","commit_stats":null,"previous_names":[],"tags_count":15,"template":null,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SpectralOps%2Fvscode-extension","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SpectralOps%2Fvscode-extension/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SpectralOps%2Fvscode-extension/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SpectralOps%2Fvscode-extension/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SpectralOps","download_url":"https://codeload.github.com/SpectralOps/vscode-extension/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":226033247,"owners_count":17563126,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["code-security","linters","other","programming-language"],"created_at":"2024-11-23T11:13:49.528Z","updated_at":"2024-11-23T11:13:50.305Z","avatar_url":"https://github.com/SpectralOps.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cp\u003e\n    \u003cbr/\u003e\n    \u003cbr/\u003e\n    \u003cp align=\"center\"\u003e\n    \u003ca href=\"http://spectralops.io\"\u003e \n        \u003cimg alt=\"SpectralOps logo\" src=\"./media/spectral.png\" width=\"300\"/\u003e\n    \u003c/a\u003e\n    \u003c/p\u003e\n    \u003cp align=\"center\"\u003e\n        \u003cimg src=\"https://github.com/spectralops/vscode-extension/actions/workflows/vscode-extension-ci.yml/badge.svg\"/\u003e\n        \u003cimg src=\"https://img.shields.io/badge/license-MIT-brightgreen\"/\u003e\n    \u003c/p\u003e\n\u003c/p\u003e\n\n# Spectral VS Code extension\n\nThe Spectral VS Code extension is a tool for developers that want to catch security issues (such as credentials, tokens and IaC misconfigurations) while still coding.\n\n\u003cp align=\"center\"\u003e\n    \u003cimg src=\"./media/spectral-demo.gif\"\u003e\n\u003c/p\u003e\n\n## What is Spectral?\n\nMonitor, classify, and protect your code, assets, and infrastructure for exposed API keys, tokens, credentials, and high-risk IaC security misconfigurations simply, without noise. Spectral comes with an industry's leading detector coverage with over 2500 different detectors built-in, including machine learning based detectors.\n\nWhat this means in the context of a developer, working in VS Code, is that while you write your code, we're actively scanning it to make sure you don't accidentally enter sensitive data, which can be used against you if breached.\n\nSpectral scans your code locally, sending only metadata back to our servers. No actual data (like credentials or tokens we may find) is transmitted outside your computer. This ensures we're never going to be a part of a supply-chain attack.\n\nRead more about our mission statement [here](https://spectralops.io/).\n\n## Install the extension\n\nAfter you've installed the extension, you'll see a new icon in the activity bar.\n\nFirst, you'll now need to download Spectral binary. Additionally, you'll need to fill in your Spectral DSN. The extension will guide you through those steps - read on to learn more.\n\n## Configuration\n\n- Sign up and get your SpectralOps account [here.](https://get.spectralops.io/signup) If you already have an account, sign in and do the next step.\n- From Settings -\u003e Organization, copy your DSN.\n- Set your DSN in the SpectralOps extension.\n- In the extension configuration set the engines you would like to run and tags to include.\n\n## Usage\n\n- Open a workspace you wish to scan with the SpectralOps extension.\n- Click Scan now \n- Scan results should appear in the SpectralOps extension and your editor.\n\n#### Spectral DSN\n\nThe Spectral DSN (Data Source Name) is your personal key to communicate with Spectral. While the extension does not transmit data to our servers, you still need a DSN for Spectral to operate.\n\n#### Spectral binary\n\nThis extension requires the Spectral binary to be present and available. You can install it from the extension or by following the instructions in our docs. The extension will automatically update Spectral agent, if you wish to disable it you can do it from the extension configuration.\n\n### How to Contribute\n\nWe welcome [issues](https://github.com/SpectralOps/vscode-extension/issues) to and [pull requests](https://github.com/SpectralOps/vscode-extension/pulls) against this repository!\n\n## License\n\nThis project is licensed under the MIT License. See [LICENSE](LICENSE) for further details.\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fspectralops%2Fvscode-extension","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fspectralops%2Fvscode-extension","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fspectralops%2Fvscode-extension/lists"}