Guard

AIVory Plugin Features

The AIVory JetBrains Plugin provides comprehensive compliance and security scanning directly in your IDE.

  • Real-time scanning catches violations as you type
  • 18+ compliance standards including OWASP, GDPR, HIPAA, PCI-DSS
  • AI code detection identifies AI-generated code for extra scrutiny
  • Quick fixes provide one-click remediation for common issues
  • Export reports in JSON, CSV, PDF, and HTML formats

Real-Time Code Scanning

AIVory scans your code as you write it, providing instant feedback on compliance violations.

On-the-Fly Analysis
Violations appear instantly as you type with minimal performance impact
Background Scanning
Periodic full project scans run automatically in the background
Incremental Updates
Only re-scans changed files to keep your IDE responsive

Inline Warnings

See compliance violations directly in your code with visual indicators:

Indicator Severity Description
Red underline Critical Security issues requiring immediate attention
Yellow underline Major Compliance warnings that should be addressed
Blue underline Minor Suggestions and best practice recommendations
Note Hover over any underlined code to see detailed violation information, including the compliance standard and suggested fix.

Automatic Resource Folder Detection

AIVory automatically identifies and scans resource folders in your project without manual configuration.

Source Roots
Detects src/, main/, and lib/ directories
Resource Directories
Finds resources/, res/, and assets/ folders
Configuration Folders
Scans config/ and conf/ directories
Web Resources
Includes public/, static/, and www/ folders
How Detection Works

Resource detection is based on multiple factors:

  • IDE project structure - Uses IntelliJ’s module configuration
  • Build system integration - Recognizes Maven, Gradle, and npm project structures
  • File patterns - Detects common resource naming conventions
  • Custom configuration - Override detection rules in Settings if needed

You can manually include or exclude build outputs in your AIVory settings.


Multi-Language Support

AIVory provides comprehensive scanning across all major programming languages.

Fully Supported Languages

Java
Complete OWASP, GDPR, HIPAA scanning
Kotlin
Native Kotlin patterns and idioms
Python
Django, Flask framework support
JavaScript
Node.js, React, Vue patterns
TypeScript
Type-safe compliance checks
Go
Goroutine safety, context handling
PHP
Laravel, Symfony framework support
C#
.NET Core, ASP.NET patterns
Rust
Memory safety compliance
Swift
iOS security patterns
Additional Supported Languages
  • C/C++ - Buffer overflow detection, memory safety
  • Ruby - Rails security patterns
  • Scala - Functional programming compliance
  • Groovy - Dynamic language security
  • Dart - Flutter security patterns
Configuration & Markup Languages
  • HTML - XSS prevention, CSRF checks
  • CSS - Content security policy
  • SQL - Injection prevention
  • JSON/YAML - Configuration security
  • XML - XXE prevention
  • Shell Scripts - Command injection prevention

Compliance Standards

AIVory scans against 18+ compliance standards to ensure your code meets regulatory requirements.

OWASP Top 10
Security vulnerability detection
GDPR
Privacy and data protection
HIPAA
Healthcare information security
PCI-DSS
Payment card industry standards
SOC 2
Service organization controls
ISO 27001
Information security management
Note Configure which standards to scan in Settings > AIVory > Compliance Standards. You can enable or disable individual standards based on your project requirements.
All Supported Standards
  • OWASP Top 10
  • GDPR
  • HIPAA
  • PCI-DSS
  • SOC 2
  • ISO 27001
  • NIST Cybersecurity Framework
  • CIS Controls
  • CCPA
  • And more…

AI-Generated Code Detection

AIVory identifies code likely generated by AI tools, enabling extra scrutiny for compliance and security.

Pattern Recognition
Statistical analysis of code patterns to detect AI-generated code
Confidence Scoring
Probability of AI generation scored from 0-100%
Tool Identification
Detects which AI tool was likely used (Copilot, ChatGPT, Claude, Cursor)

Enhanced Scanning for AI Code

AI-generated code automatically receives:

  • Extra scrutiny - More thorough compliance checks
  • Audit trail - Links violations to code origin
  • Special markers - Visual indicators in the editor
  • Report segregation - Separate AI vs human-written violation counts
Success AI-generated code detection is available on Trial, Pro, and Enterprise plans.
Use Cases for AI Detection
  • Security audits - Ensure AI-generated code meets standards
  • Code review - Flag AI code for extra human review
  • Compliance reporting - Track AI usage in your codebase
  • Training - Learn from AI code patterns and improve prompts

Dashboard & Metrics

Monitor your project’s compliance health with the in-IDE dashboard and status bar integration.

Compliance Score
Real-time project health scored 0-100
Violation Summary
Count by severity and compliance standard
Recent Scans
Scan history with timestamps
Top Violations
Most common issues in your codebase

Status Bar Integration

Monitor compliance at a glance from the IDE status bar:

  • Authentication Status - Shows logged-in user
  • Scan Status - Idle, scanning, or error state
  • Violation Count - Quick view of current issues
  • Click to open - Opens the full dashboard
Note Click the AIVory icon in the status bar for quick access to scanning controls and the dashboard.

Export & Reporting

Generate compliance reports for audits, stakeholder reviews, and CI/CD integration.

Export Formats

JSON
Machine-readable format for CI/CD pipelines
CSV
Import into Excel or analysis tools
PDF
Executive summaries and audit reports
HTML
Shareable web reports
Report Contents

Reports include comprehensive information:

  • Executive Summary - Compliance score and trends
  • Detailed Violations - Every issue with full context
  • Standard Breakdown - Compliance status by standard
  • File-level Analysis - Issues grouped per file
  • Remediation Guidance - Fix suggestions for each violation
  • Audit Trail - Who scanned, what was scanned, when
Export Options

Three ways to export reports:

  1. From Dashboard - Click the “Export Report” button
  2. From Menu - Tools > AIVory > Export Compliance Report
  3. Automated - Schedule exports to run on a regular basis

Code Intelligence

AIVory provides smart fixes and suggestions to help you resolve compliance violations quickly.

Quick Fixes

One-Click Fixes
Press Alt+Enter on any violation for instant remediation
Safe Refactoring
Fixes preserve your code logic and functionality
Bulk Fixes
Fix multiple instances of the same violation at once
Undo Support
Full IDE undo integration for all fixes
Note Use Alt+Enter (or Option+Enter on Mac) on any highlighted violation to see available quick fixes.
Code Intentions

Smart suggestions for compliance improvements:

  • Encrypt sensitive data - Wrap plaintext in encryption
  • Add input validation - Insert sanitization code
  • Improve error handling - Add try-catch blocks
  • Enhance logging - Add security audit logs
Documentation Links

Learn more about violations directly from the IDE:

  • Standard references - Links to OWASP, GDPR documentation
  • Fix examples - Code snippets showing solutions
  • Best practices - Industry recommendations
  • Video tutorials - Visual learning resources

Performance Optimization

AIVory is optimized to provide comprehensive scanning without impacting your development workflow.

Incremental Analysis
Only scans changed files for faster feedback
Background Threads
Scanning runs in background threads, never blocking your UI
Configuration Options

Control performance impact in Settings:

  • Scan interval - Adjust how often background scans run
  • Excluded paths - Skip node_modules, vendor, build folders, etc.

Next Steps


Need Help?