# Add to your Claude Code skills
git clone https://github.com/Lianues/Lim-CodeLast scanned: 5/30/2026
{
"issues": [
{
"type": "npm-audit",
"message": "@jest/core: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@jest/reporters: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "brace-expansion: brace-expansion: Zero-step sequence causes process hang and memory exhaustion",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "fast-xml-parser: fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names",
"severity": "critical"
},
{
"type": "npm-audit",
"message": "handlebars: Handlebars.js has JavaScript Injection via AST Type Confusion by tampering @partial-block",
"severity": "critical"
},
{
"type": "npm-audit",
"message": "jest: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "jest-cli: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "minimatch: minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern",
"severity": "high"
},
{
"type": "npm-audit",
"message": "node-notifier: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "picomatch: Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching",
"severity": "high"
},
{
"type": "npm-audit",
"message": "ts-jest: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "uuid: uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "yaml: yaml is vulnerable to Stack Overflow via deeply nested YAML collections",
"severity": "medium"
}
],
"status": "FAILED",
"scannedAt": "2026-05-30T16:14:44.068Z",
"npmAuditRan": true,
"pipAuditRan": true
}No comments yet. Be the first to share your thoughts!
Requires a passing catalog security scan. Resolve the flagged issues and resubmit to enable featuring.
search_in_files 工具说明强化正则触发清单:foo|bar、ssh.*root、38\\.12、\\d+、字符类、分组和锚点都必须显式设置 isRegex=true。suspected_regex 诊断,提示模型 query 看起来像正则但当前按字面量搜索,并给出 isRegex=true 重试建议。isRegex=false 的严格字面量语义,不自动把 Markdown 表格、TypeScript union 或 Shell 管道里的 | 当正则 OR。内置丰富的工具,让 AI 能够直接操作您的代码:
| 类别 | 工具 | 说明 |
|---|---|---|
| 📁 文件 | read_file |
读取文件内容(支持多模态) |
write_file |
写入文件内容 | |
apply_diff |
应用差异修改 | |
list_files |
列出目录文件 | |
delete_file |
删除文件 | |
create_directory |
创建目录 | |
| 🔍 搜索 | find_files |
按名称搜索文件 |
search_in_files |
在文件内容中搜索 | |
| 🖥️ 终端 | execute_command |
执行终端命令 |
| 🎨 媒体 | generate_image |
AI 图像生成 |
remove_background |
移除图片背景 | |
crop_image |
裁剪图片 | |
resize_image |
调整图片尺寸 | |
rotate_image |
旋转图片 |
{{$VARIABLE}} 变量自定义系统提示词1.搜索LimCode进行安装
limcode-x.x.x.vsix 文件Ctrl+Shift+P)# 克隆仓库
git clone https://github.com/Lianues/Lim-Code.git
cd Lim-Code
# 安装依赖
npm install
cd frontend && npm install
# 构建前后端
npm run build
# 打包
npx @vscode/vsce package
为了提升前端调试效率,项目支持 仅在本地开发模式 下使用 Vite Dev Server(HMR)。
直接在 VS Code 里运行调试配置:
Run Extension (Local Vite Dev)该配置会自动:
watch5173)LIMCODE_WEBVIEW_DEV_SERVER_URL 让 Webview 从本地 Vite 加载前端资源# 终端 A:后端 watch
npm run watch
# 终端 B:前端 vite dev server
npm run dev:frontend
然后使用常规 Run Extension 或自定义带环境变量的调试配置启动扩展。
说明:
- Vite Dev Server 仅在
ExtensionMode.Development下生效。- 生产/打包模式仍然使用
frontend/dist,不会依赖本地 Vite 服务。
limcode.*),在开启 VS Code Settings Sync 时会自动同步到其他设备。limcode.proxy 与 limcode.storagePath 为 machine scope:按机器保存,不参与同步(避免不同机器代理端口、存储路径冲突)。globalStorage/settings/settings.json 迁移,并备份旧文件为 settings.json.bak。每个渠道可以独立配置:
LimCode 采用模块化架构:
limcode/
├── backend/ # 后端模块
│ ├── core/ # 核心服务
│ ├── modules/ # 功能模块
│ │ ├── channel/ # AI 渠道管理
│ │ ├── config/ # 配置管理
│ │ ├── conversation/ # 对话管理
│ │ ├── mcp/ # MCP 协议
│ │ ├── prompt/ # 提示词管理
│ │ └── settings/ # 设置管理
│ └── tools/ # 工具系统
├── frontend/ # Vue 前端
│ ├── components/ # UI 组件
│ ├── composables/ # 组合式函数
│ └── stores/ # 状态管理
└── webview/ # Webview 集成
当前说明:README 不再承担每次发布的版本号同步职责;正式版本与发布说明以 package.json 和 CHANGELOG.md 为准。发布材料只描述实际落地的工具稳定性改进,不声明未经量化基线验证的具体性能收益数字。
本项目采用 MIT 许可证。
欢迎贡献代码!