*TL;DR;*<p>Demo: <a href="https://youtu.be/wEC9qVaB4_Y" rel="nofollow">https://youtu.be/wEC9qVaB4_Y</a><p>I created a free Chrome extension that scans code generated by ChatGPT and Claude.ai detects security issues and helps you fix them.<p>Please give us feedback about the extension, we want to improve it! (and tell us if you would be interested in using VS Code extension as well)<p>*Why?*<p>LLMs were trained on code written by humans (your public code from GitHub), which contained many vulnerabilities. If you feed the LLM with not secure code as training data, the LLM will generate not secure code as output.<p>Tools like Cursor, Copilot, and any other GPT wrapper are great (I use them as well), but they generate hilariously insecure code. (Trust me, I am a security expert)<p>> Ye ye, I have some big-name security scanner in my pipeline, it will detect the issues for me…<p>Don't even get me started on that. Here <a href="https://blog.vidocsecurity.com/blog/state-of-security-automation/" rel="nofollow">https://blog.vidocsecurity.com/blog/state-of-security-automa...</a> is my rant about classic vulnerability scanners and how bad they are in practice.<p>Our vision for the VS Code extension is to create “Grammarly but for code security” (we aim for a similar UX).<p>+ We are training LLM to detect issues in the code.<p>Sign up for the VS Code extension waiting list here: <a href="https://4qiq71rttej.typeform.com/to/xDrkrcH5" rel="nofollow">https://4qiq71rttej.typeform.com/to/xDrkrcH5</a>