veto_security_scan
Scans code against OWASP Top 10 security risks. Identifies vulnerabilities with severity, CWE/OWASP classification, and remediation steps. Optionally provides inline diagnostics in VS Code.
Instructions
Runs the Security Scanner (OWASP Top 10) on provided code. Returns vulnerabilities with severity, CWE/OWASP category, and remediation steps. Pass file_path to surface findings as VS Code inline diagnostics.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| code | Yes | The code to scan. | |
| context | No | Optional: language, framework, or specific concerns. | |
| file_path | No | Optional: absolute path to the file being scanned. When provided, findings are stored as VS Code inline diagnostics. | |
| agent_response | No | Phase 2 response from the host AI (JSON). Pass this back when prompted by the server to complete the agentic loop. |