Koidex
Know if a package, extension, or AI model is actually safe
644 followers
Know if a package, extension, or AI model is actually safe
644 followers
Koidex helps you answer one question fast: "Is this safe to install?". Search extensions, code packages, and AI models across VS Code, JetBrains, npm, and Hugging Face. You can also install the Koidex IDE extension for real-time background scanning in Cursor and Windsurf. Free, no setup.
A product like this could help other startups overcome a trust barrier. Maybe we could put a "koidex badge" on our site to independently prove safety!
Congrats on the launch!
Koidex
Love it, @masebuilds. Just added “Koidex badge / embeddable widget” to our idea list :)
This tool is seriously awesome. I’m always nervous about downloading sketchy extensions (but I still install them sometimes). I’m definitely using this from now on. Great job!
Koidex
@matheusdsantosr_dev thank you so much for your support!
Congrats Amit and team on the launch of Koidex! The shift to behavior-based scoring rather than just static CVE lists is exactly what the ecosystem needs right now. We often pull down HuggingFace models or npm packages incredibly fast in tools like Cursor and Windsurf, making the inclusion of Koidex's real-time IDE extension highly strategic. It brings that necessary "one-click due diligence" directly to the workflow without adding friction.
Out of curiosity, does your scoring pipeline also continuously re-evaluate these models/packages if their upstream dependencies unexpectedly push new versions or change network patterns? Would love to see this become the standard for package management.
Swytchcode
Really amazing app and a great web interface. Absolutely love it
Koidex
Thanks, @chilarai ! This means a lot to us 😊
Huge congrats on launching a much-needed security layer for dev workflows. While the real-time IDE scanning and behavior-based scoring are fantastic for individual developer workstations, I’m curious about your broader enterprise roadmap. Do you have plans to integrate Koidex directly into CI/CD pipelines (like GitHub Actions or GitLab) to automatically block risky npm packages or malicious models before they even merge?
Adjust Page Brightness - Smart Control
this is one of the greatest product i have ever seen
Koidex
@kshitij_mishra4 thank you so much for the support 🤗 Have you run your first scan yet? Would love to know if anything in your stack surprised you!