Skip to content

MeterianHQ/vscode-extension-tracker

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

89 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Meterian VS Code Extension - Public Issue Tracker

Visual Studio Code Marketplace logo
Available on the Visual Studio Code Marketplace
for Visual Studio Code
OpenVSX Registry logo
Available on the OpenVSX registry
for Cursor, VSCodium, Windsurf, Theia & friends
Visual Studio Marketplace Installs Version Rating Open VSX Downloads OpenVSX Version OpenVSX Rating

This repository is the public issue tracker for the Meterian VS Code extension that detects and helps you fix open‑source vulnerabilities directly in your IDE. You can download it from the marketplace: it's completely free to use.

Alternatively, if you are using an alternative IDE (i.e. Cursor) you can find it on the open-vsx marketplace.

Install & Quickstart

Super easy to use:

  1. Install from your chosen marketplace (once!)
  2. Open a project (if not open yet)
  3. An analysis starts automatically, if the project is supported :)
  4. See the report, drill down into the details if you want
  5. Use autofix to automatically resolve the issues!

How to use this repository

Use this repo to:

  • Report bugs (with logs, repro steps, and environment details)
  • Request features and improvements
  • Ask usage questions

⚠️ Security disclosures
Please do not file security vulnerabilities here. Email security@meterian.io with details and a way to reproduce. We’ll acknowledge within 2 business days.

Before you file an issue

  • Search open issues to avoid duplicates.
  • Include:
    • Extension version (e.g., v1.2.3) & VS Code version (e.g., 1.93.0)
    • OS (e.g., macOS 14.5 / Windows 11 / Ubuntu 22.04)
    • Project language & package manager (e.g., Java + Maven/Gradle, JavaScript + npm/yarn/pnpm, Python + pip/poetry, etc.)
    • Reproduction steps and expected vs. actual behavior
    • Logs from VS Code: Help → Toggle Developer Tools → Console
    • Screenshots, if relevant

Quick links to file an issue

Remember: security issues are not tracked here; use security@meterian.io.


Where to get help

What data is transferred by the plugin?

The system is powered by the Meterian Kiwi vulnerability database. The APIs are called passing an opaque identifier as an authorization header; the data transferred is the name, version and language of a library. Additionally another API is called from Meterian Heidi backend services, which is used to track activity. Any identity information is anonymized, encrypted with strong cypher, and cannot be decyphered.

Contributing feedback

While the extension is closed source and this repository contains no code, your feedback here directly shapes our backlog and priorities. The extension is completely free to use.

About

Public issue tracker for the Meterian VS Code extension: report bugs, request features, and track fixes.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages