IDE extension
Note: We have temporarily removed the Trusty extension for VS Code from the VS Code Marketplace.
This documentation remains available for developers who installed the Trusty extension for VS Code before it was removed.
Find alternatives for a package in the IDE
Developers frequently encounter the need to seek alternative packages to those they're familiar with, either due to security concerns, compatibility issues, changing dependencies, or the search for enhanced performance and functionality. Trusty uses generative AI to provide a list of related packages and their scores, to help developers find assess alternative dependencies. With the Trusty VS Code Extension you can quickly find alternative packages from your IDE.
The Need for Alternative Packages
Locating a suitable alternative can sometimes be driven by:
- Security concerns or vulnerabilities.
- Compatibility or dependency challenges.
- Searching for better performance or features.
- Seeking more actively maintained packages.
- Evolving project requirements.
Using the Visual Studio Code Plugin
The Trusty VS Code Extension can show you an alert as you’re importing an open source library, to help you gauge whether you want to use it. Our goal is to help you save time by not importing packages that are likely to lead to rework and security issues later.
The following screesnhot shows a Trusty score for an imported package:
Click "Visit for details" link in the scoring popup dialog box to navigate to the Trusty site.
If you scroll down on Trusty's package detail page, you will see a section titled "Alternative Packages". Look for an alternative package with a higher Trusty Score.
