CodeAuditor

CodeAuditor is a Visual Studio Code extension which helps auditors to take notes and categorize issues during a source code audit.

• Take audit notes without modifying the source code.
• Toggle Issues status.
• Issue explorer with status filter.
• Explorer view to track audit progress.
• Import issues from static analysis reports (Semgrep & Slither).
• Functionality to exclude files and folders from the audit scope.
• Generate issue and reference reports.

Screenshots

<details open> <summary style="cursor: pointer"><b>Basic usage</b></summary> </br><img alt="Usage" src="https://github.com/belane/CodeAuditor/blob/main/images/screenshots/usage.gif?raw=true"> </details> <details> <summary style="cursor: pointer"><b>Scope filter & Audit Progress</b></summary> </br><img alt="Scope & Audit Progress" src="https://github.com/belane/CodeAuditor/blob/main/images/screenshots/scope_and_progress.gif?raw=true"> </details> <details> <summary style="cursor: pointer"><b>Import external analysis</b></summary> </br><img alt="Import" src="https://github.com/belane/CodeAuditor/blob/main/images/screenshots/import.gif?raw=true"> </details> <details> <summary style="cursor: pointer"><b>Issue Reporting</b></summary> </br><img alt="Reporting" src="https://github.com/belane/CodeAuditor/blob/main/images/screenshots/reporting.gif?raw=true"> </details>

Installation

~~Method 1: By Visual Studio Market Place and click Install.~~

~~Method 2: Inside the VS Code extensions section, search for CodeAuditor and click Install.~~

Method 3 (UI):

1. Download last release.
2. Inside the VS Code extensions section, open options (three dots) and select Install from VSIX.

Method 4 (Manual):

1. Download last release.
2. Open Terminal and install the extension by running code --install-extension "code-auditor-0.x.x.vsix".