Commands
Every command ShieldX contributes to the command palette. Open the palette with Ctrl/Cmd + Shift + P and search for ShieldX.
Scanning
ShieldX: Scan installed extensions
Runs a full scan over every extension the editor reports as installed. Surfaces progress, can be cancelled, and updates the dashboard when complete.
Dashboard
ShieldX: Open dashboard
Starts scan flow and updates dashboard. In practice this is shortcut for opening ShieldX and immediately running full scan.
Policy
ShieldX: Add to allowlist
Pick an installed extension; ShieldX appends it to allowedExtensions in .shieldx.json (creating the file if needed).
ShieldX: Add to blocklist
Pick an installed extension; ShieldX appends it to blockedExtensions.
ShieldX: Show current policy
Shows current workspace policy content in editor if .shieldx.json exists in first workspace folder. If file is missing, ShieldX shows info message instead.
ShieldX: Scan for OSV vulnerabilities
Runs normal extension scan with OSV lookup enabled when shieldx.enableOsvScan is on. Helpful as explicit "scan again now" entry point when you mainly care about dependency advisories.
Export
ShieldX: Export report
Opens the format picker for the latest scan. Formats: Markdown, JSON, HTML, PDF, CSV, SARIF.
History exports and history clearing are available from dashboard UI, not as contributed command-palette entries.
Tips
- Commands respect the active workspace. Policy commands operate on the first workspace folder.
- Most commands accept being driven from keybindings — bind Scan installed extensions to a key for one-press audits.
- Commands log to the ShieldX output channel for diagnosis.