In GitLab 17.8, we’re excited to announce that real-time GitLab SAST scanning is now available in VS Code as an experimental feature. Provide Feedback Here: You can now scan your project files directly in VS Code, before you’ve committed or pushed them, so you can find and fix security vulnerabilities faster. A SAST scanning side panel displays your scan results and updates as you make changes to your code. Hover over the vulnerability result to see a detailed description or open it in a separate editor window for more context. Reference our documentation to get started. This feature is available for customers on the Ultimate tier. We welcome your feedback and are excited to mature this functionality in the upcoming milestones. OUTLINE 0:00 - Introduction 0:39 - GitLab Workspace Plugin 1:10 - Enabling Remote SAST Scanning 1:35 - Using Remote SAST Scanning 3:15 - Conclusion USEFUL LINKS * Documentation: #perform-sast-scanning * Feedback Issue: * Release Blog Post: #sast-scanning-in-vs-code * sast-rules project: * Secure roadmap: