AIVory Plugin Features
The AIVory JetBrains Plugin provides comprehensive compliance and security scanning directly in your IDE.
- Real-time scanning catches violations as you type
- 18+ compliance standards including OWASP, GDPR, HIPAA, PCI-DSS
- AI code detection identifies AI-generated code for extra scrutiny
- Quick fixes provide one-click remediation for common issues
- Export reports in JSON, CSV, PDF, and HTML formats
Real-Time Code Scanning
AIVory scans your code as you write it, providing instant feedback on compliance violations.
Inline Warnings
See compliance violations directly in your code with visual indicators:
| Indicator | Severity | Description |
|---|---|---|
| Red underline | Critical | Security issues requiring immediate attention |
| Yellow underline | Major | Compliance warnings that should be addressed |
| Blue underline | Minor | Suggestions and best practice recommendations |
Automatic Resource Folder Detection
AIVory automatically identifies and scans resource folders in your project without manual configuration.
How Detection Works
Resource detection is based on multiple factors:
- IDE project structure - Uses IntelliJ’s module configuration
- Build system integration - Recognizes Maven, Gradle, and npm project structures
- File patterns - Detects common resource naming conventions
- Custom configuration - Override detection rules in Settings if needed
You can manually include or exclude build outputs in your AIVory settings.
Multi-Language Support
AIVory provides comprehensive scanning across all major programming languages.
Fully Supported Languages
Additional Supported Languages
- C/C++ - Buffer overflow detection, memory safety
- Ruby - Rails security patterns
- Scala - Functional programming compliance
- Groovy - Dynamic language security
- Dart - Flutter security patterns
Configuration & Markup Languages
- HTML - XSS prevention, CSRF checks
- CSS - Content security policy
- SQL - Injection prevention
- JSON/YAML - Configuration security
- XML - XXE prevention
- Shell Scripts - Command injection prevention
Compliance Standards
AIVory scans against 18+ compliance standards to ensure your code meets regulatory requirements.
All Supported Standards
- OWASP Top 10
- GDPR
- HIPAA
- PCI-DSS
- SOC 2
- ISO 27001
- NIST Cybersecurity Framework
- CIS Controls
- CCPA
- And more…
AI-Generated Code Detection
AIVory identifies code likely generated by AI tools, enabling extra scrutiny for compliance and security.
Enhanced Scanning for AI Code
AI-generated code automatically receives:
- Extra scrutiny - More thorough compliance checks
- Audit trail - Links violations to code origin
- Special markers - Visual indicators in the editor
- Report segregation - Separate AI vs human-written violation counts
Use Cases for AI Detection
- Security audits - Ensure AI-generated code meets standards
- Code review - Flag AI code for extra human review
- Compliance reporting - Track AI usage in your codebase
- Training - Learn from AI code patterns and improve prompts
Dashboard & Metrics
Monitor your project’s compliance health with the in-IDE dashboard and status bar integration.
Status Bar Integration
Monitor compliance at a glance from the IDE status bar:
- Authentication Status - Shows logged-in user
- Scan Status - Idle, scanning, or error state
- Violation Count - Quick view of current issues
- Click to open - Opens the full dashboard
Export & Reporting
Generate compliance reports for audits, stakeholder reviews, and CI/CD integration.
Export Formats
Report Contents
Reports include comprehensive information:
- Executive Summary - Compliance score and trends
- Detailed Violations - Every issue with full context
- Standard Breakdown - Compliance status by standard
- File-level Analysis - Issues grouped per file
- Remediation Guidance - Fix suggestions for each violation
- Audit Trail - Who scanned, what was scanned, when
Export Options
Three ways to export reports:
- From Dashboard - Click the “Export Report” button
- From Menu -
Tools > AIVory > Export Compliance Report - Automated - Schedule exports to run on a regular basis
Code Intelligence
AIVory provides smart fixes and suggestions to help you resolve compliance violations quickly.
Quick Fixes
Code Intentions
Smart suggestions for compliance improvements:
- Encrypt sensitive data - Wrap plaintext in encryption
- Add input validation - Insert sanitization code
- Improve error handling - Add try-catch blocks
- Enhance logging - Add security audit logs
Documentation Links
Learn more about violations directly from the IDE:
- Standard references - Links to OWASP, GDPR documentation
- Fix examples - Code snippets showing solutions
- Best practices - Industry recommendations
- Video tutorials - Visual learning resources
Performance Optimization
AIVory is optimized to provide comprehensive scanning without impacting your development workflow.
Configuration Options
Control performance impact in Settings:
- Scan interval - Adjust how often background scans run
- Excluded paths - Skip node_modules, vendor, build folders, etc.