The Socket VS Code extension is currently in beta. A pre-release is available in the VS Code extension marketplace.

Settings

The extension comes with various settings that can be configured by looking in your editor preferences under the "Extensions" tab "Socket Security" section.

Team Management

It may be desirable to suggest installing the VS Code extension for any team member. This can be done by adding a Workspace Recommended Extension in the .vscode/extensions.json file of the workspace root directory:

{
  "recommendations": [
    "SocketSecurity.vscode-socket-security"
  ]
}

Limitations

Requires and internet connection. This is to access the Socket API for analysis.

The extension only works on local files and does not integrate any organization level setting like the GitHub App does.

The extension only works on the current files on disk and not historical data. If you need historical diffing or other tracking features use the Github App.