autodev-vscode

Name: autodev-vscode
Author: unit-mesh

Issues

AutoDev - 🧙‍the AI-powered coding wizard . Put the most loved AutoDev AI assistant into your VSCode, and have things done quickly

457stars

77forks

TypeScript

Added 3/9/2026

View on GitHub Download ZIP Scan for vulnerabilities

AI Agentsai-assistantgenaivscode-extension

Installation

# Add to your Claude Code skills
git clone https://github.com/unit-mesh/autodev-vscode

Getting Started

Guides for using ai agents skills like autodev-vscode.

Caveman: Cut Claude Token Use by 65%
How agent-side prompt compression works, when to use it, and when not to.
What is an AI Skills Marketplace?
Definitions, how marketplaces work, and how to choose between them in 2026.
Getting Started with AI Skills

Security ReportIssues

Last scanned: 5/18/2026

{
  "issues": [
    {
      "type": "npm-audit",
      "message": "@langchain/anthropic: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "@langchain/core: LangChain serialization injection vulnerability enables secret extraction",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "@mozilla/readability: @mozilla/readability Denial of Service through Regex",
      "severity": "low"
    },
    {
      "type": "npm-audit",
      "message": "@tootallnate/once: @tootallnate/once vulnerable to Incorrect Control Flow Scoping",
      "severity": "low"
    },
    {
      "type": "npm-audit",
      "message": "@vitest/coverage-v8: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "@vscode/test-cli: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "@xenova/transformers: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "cacache: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "dompurify: DOMPurify contains a Cross-site Scripting vulnerability",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "esbuild: esbuild enables any website to send any requests to the development server and read the response",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "fast-xml-parser: fast-xml-parser XMLBuilder: XML Comment and CDATA Injection via Unescaped Delimiters",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "http-proxy-agent: Vulnerability found",
      "severity": "low"
    },
    {
      "type": "npm-audit",
      "message": "langsmith: LangSmith Client SDKs has Prototype Pollution in langsmith-sdk via Incomplete `__proto__` Guard in Internal lodash `set()`",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "make-fetch-happen: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "mocha: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "monaco-editor: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "node-gyp: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "onnx-proto: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "onnxruntime-web: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "prismjs: PrismJS DOM Clobbering vulnerability",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "protobufjs: Arbitrary code execution in protobufjs",
      "severity": "critical"
    },
    {
      "type": "npm-audit",
      "message": "react-syntax-highlighter: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "refractor: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "serialize-javascript: Serialize JavaScript is Vulnerable to RCE via RegExp.flags and Date.prototype.toISOString()",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "sqlite3: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "tar: node-tar Vulnerable to Arbitrary File Creation/Overwrite via Hardlink Path Traversal",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "vite: Vite middleware may serve files starting with the same name with the public directory",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vite-node: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vite-plugin-externalize-deps: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vite-plugin-static-copy: vite-plugin-static-copy files not included in `src` are possible to access with a crafted request",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vitest: Vulnerability found",
      "severity": "medium"
    }
  ],
  "status": "FAILED",
  "scannedAt": "2026-05-18T08:05:54.791Z",
  "semgrepRan": false,
  "npmAuditRan": true,
  "pipAuditRan": true
}

README.md

Agentic AI for Beginners

Build your first AI agent from scratch - tool use, ReAct pattern, memory, deployment

41 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

ECC

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

212,953

OpenAI-sublime-text FigMirror

🧙‍AutoDev: the AI-powered coding wizard with multilingual support 🌐, auto code generation 🏗️, and a helpful bug-slaying assistant 🐞! Customizable prompts 🎨 and a magic Auto Dev/Testing/Document/Agent feature 🧪 included! 🚀

Move to https://github.com/unit-mesh/auto-dev with Multiplatform support

JetBrains' IDE Version: https://github.com/unit-mesh/auto-dev

Documentation: https://vscode.unitmesh.cc/

Quick Start Guide to Contributing

Contributing Documentation: https://vscode.unitmesh.cc/development

Join the Community

If you are interested in AutoDev, you can join our WeChat group by scanning the QR code above.

（如果群二维码过期，可以添加我的微信号：phodal02，注明 AutoDev，我拉你入群）

Roadmap

Normal features

Feature	VSCode Status	IDEA Status
Chat mode	✅	✅
Code completion	✅	✅
AutoDoc	✅	✅
Custom Prompt	✅	✅
Prompt Overwrite	✅	✅
Commit Message	✅	✅
Gen API Data	✅	✅
AutoTest	✅	✅
Refactoring: Rename	✅	✅
Refactoring: fix	✅	✅
Refactoring: with Lint	❌	✅
CLI Suggest	❌	✅

Natural Language search features

Feature	VSCode Status	IDEA Status
Custom RAG	✅	❌
NL Semantic Search	✅	❌
Multiple RAG Strategy	✅	❌

DevOps features

Feature	VSCode Status	IDEA Status
Dockerfile	❌	✅
CI/CD	❌	✅

AI Agent features

Feature	VSCode Status	IDEA Status
AI Agent: DevIns Lang	❌	✅
AI Agent: Custom Agent	❌	✅
AI Agent: AutoCRUD	❌	✅
AI Agent: AutoArkUI	❌	✅
AI Agent: AutoSQL	❌	✅
AI Agent: AutoPage	❌	✅

Resources

Code search Sweep
TreeSitter Playground

LICENSE

Inspired and based on：

AI-based Coding Editor Continue for LLM provider and CodeCompletion.
AI-based conversational search Bloop for indexes and code search.
AI-powered coding wizard AutoDev for AutoTasking.
TreeSitter-based architecture analysis: Guarding
Static SCA analyser: ArchGuard
DevIns parser based on VSCode Markdown
Git parser based on GitLens with MIT License

AutoDev VSCode is licensed under the Apache 2.0 license as defined in LICENSE.