Is "Cody: AI Code Assistant" on OpenVSX Registry Safe to Install?

Verified
sourcegraph · openvsx · v1.149.0

Sourcegraph’s AI code assistant goes beyond individual dev productivity, helping enterprises achieve consistency and quality at scale with AI. & codebase context to help you write code faster. Cody brings you autocomplete, chat, and commands, so you can generate code, write unit tests, create docs, and explain complex code using AI. Choose from the best LLMs, including GPT-4o and Claude Sonnet 4.

Risk Assessment

Pending
0
out of 100
MINIMAL

0 security findings detected across all analyzers

Open VSX extension analyzed via package manifest and static code analysis

No Threats Detected

This extension passed all security checks

About This Extension

Sourcegraph’s AI code assistant goes beyond individual dev productivity, helping enterprises achieve consistency and quality at scale with AI. & codebase context to help you write code faster. Cody brings you autocomplete, chat, and commands, so you can generate code, write unit tests, create docs, and explain complex code using AI. Choose from the best LLMs, including GPT-4o and Claude Sonnet 4.

No Findings

All security checks passed

Security Analysis Summary

Security Analysis Overview

Cody: AI Code Assistant is a OpenVSX Registry extension published by sourcegraph. Version 1.149.0 has been analyzed by the Risky Plugins security platform, receiving a risk score of 0/100 (MINIMAL risk) based on 0 security findings.

Risk Assessment

This extension presents minimal security concerns. The automated analysis found very few or no issues, suggesting it is suitable for general use.

What Was Analyzed

The security assessment covers multiple analysis categories:

  • Malware Detection: YARA rule matching against 2,400+ malware signatures
  • Secret Detection: Scanning for exposed API keys, tokens, and credentials
  • Static Analysis: Code-level security analysis for common vulnerability patterns
  • Network Analysis: Detection of suspicious network communications and endpoints
  • Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

Cody: AI Code Assistant is published by sourcegraph on the OpenVSX Registry marketplace.

Recommendation

Based on the automated security analysis, this extension appears safe for general use. As with any extension, users should review the requested permissions before installation.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

Sourcegraph for Firefox

Sourcegraph

CRITICAL 516 users

Sourcegraph for Firefox

Sourcegraph

CRITICAL 459 users

cody-testing

sourcegraph

CRITICAL 59K users

Cody: AI Code Assistant

Sourcegraph

CRITICAL 819K users

TPTPTP

Sourcegraph

CRITICAL 233 users

Amp (Research Preview)

Sourcegraph

CRITICAL 104K users