[1.8.0] -2025-05-04

What's Changed

This pull request introduces enterprise policy schema validation to PasteShield, along with several enhancements to policy management and developer experience. The update includes a new JSON schema for .pasteshield-policy.json, an example policy file, a new command to validate policy files, and improvements to the custom patterns workflow. It also adds new dependencies and settings for improved statistics display and diagnostics. #10 #11 #12 are solved now

Enterprise Policy Schema and Validation

• Added schema/policy.schema.json defining the structure and validation rules for enterprise policy files, including rule types, required fields, and conditional requirements.
• Introduced a new pasteShield.validatePolicyFile command, which validates .pasteshield-policy.json against the schema and reports errors in the Problems panel. [1] [2] [3] [4] [5] [6]
• Registered JSON schema validation for .pasteshield-policy.json in package.json, enabling in-editor validation in VS Code.

Documentation and Examples

• Updated ARCHITECTURE.md with a comprehensive reference for the policy file schema, including field descriptions, allowed values, and an example policy.
• Added examples/pasteshield-policy.example.json as a template for users to create compliant policy files.
• Updated TESTING.md to include manual testing instructions for policy validation.

Custom Patterns and Diagnostics

• Improved the custom patterns workflow: if no patterns are defined, users are now prompted with a quick pick menu to add, import, or open settings, rather than a simple info message.
• Added validation for the pasteShield.customPatterns configuration to ensure it is an array of valid pattern objects, warning the user if the format is incorrect.

Settings and Dependencies

• Added a new setting pasteShield.statsMode to choose between a visual dashboard and ASCII statistics.
• Added new dependencies: ajv for JSON schema validation, jsonc-parser, chart.js, and @vscode/codicons.
• Bumped extension version to 1.8.0.

Miscellaneous

• Updated .gitignore to exclude .pasteshield-fp.json (local logs).
• Added new commands for false positive management and improved activation events. [1] [2] [3] [4]

These changes significantly improve enterprise policy management, validation, and user experience within PasteShield.

Full Changelog: v1.7.1...v1.8.0

[1.7.1] — 2026-05-15

• Expanded pattern coverage to ~200 patterns across 25+ categories:

  • New categories: Mobile / IoT, Search & Data, Storage & CDN, Maps & Geo
  • New AI providers: xAI/Grok, DeepSeek, Together AI, Voyage, Fireworks, Cerebras, Fal.ai, Modal, Baseten
  • New infrastructure: Infisical, Cloudsmith, Fastly
  • New databases: Weaviate, Qdrant, Xata, Fauna, CockroachDB, Convex
  • New monitoring: Honeycomb, Axiom, Better Stack, Rollbar, Bugsnag
  • New auth: WorkOS, Stytch, Passage by 1Password
  • New crypto: Moralis, Helius
  • New social APIs: LinkedIn, Intercom, HubSpot, Zendesk, Salesforce, Asana, Jira, Confluence, WooCommerce, Contentful, Sanity, Vercel Blob
  • New package registries: JFrog Artifactory, Sonatype Nexus
  • Enhanced PII: Canadian SIN, passport numbers

• Add detection for AWS, GCP, and Azure credential patterns

• Add detection for Slack, Stripe, and GitHub tokens

• Add detection for SSH private key blocks

• Add detection for hardcoded connection strings (MongoDB, PostgreSQL, MySQL)

• Expanded coverage: AI providers (OpenAI, Anthropic, Gemini, Groq, etc.)

• Expanded coverage: CI/CD platforms (Vercel, Netlify, Railway, Fly.io)

• Expanded coverage: Communication (Discord, Telegram, Twilio, SendGrid)

• Expanded coverage: Payments (Stripe, PayPal, Razorpay, Square, Adyen)

• Expanded coverage: Databases (Supabase, PlanetScale, Neon, Turso, Upstash)

• Unsafe code patterns: eval, innerHTML, prototype pollution, SQL injection, SSRF

• PII detection: SSN, credit cards, IBAN, Aadhaar, PAN, UK NINO

• Status bar item showing PasteShield enabled/disabled state

• "Always allow this pattern" quick action from the warning dialog (via CodeLens ignore)

• Inline paste-point decorations with theme-aware colors

• Debounced CodeLens refresh and decoration pruning for performance

• Persistent scan history across sessions with VS Code globalState storage

• Export scan report as JSON or plain text

• Sidebar history view with GitHub-style codeicons

• Real-time history updates when keys are pasted anywhere

• Enhanced visual hierarchy with severity-based icons and colors

• Command registration for all history-related actions:

  • pasteShield.refreshHistory — Refresh the history view
  • pasteShield.clearHistory — Clear all scan history
  • pasteShield.exportHistoryJson — Export history as JSON file
  • pasteShield.exportHistoryText — Export history as plain text file
  • pasteShield.showDetectionDetails — Show details for individual detections

• Improved empty state with helpful messaging

• Configuration options for history tracking:

  • pasteShield.enableHistory — Enable/disable history tracking (default: true)
  • pasteShield.autoRefreshHistory — Auto-refresh on new scans (default: true)

• Integration with secret management tools (Vault, AWS Secrets Manager, Azure Key Vault, Google Secret Manager)

• Store, retrieve, rotate, list, and delete detected secrets

• Quick-store action prompted after detection

• Secret rotation reminders for detected credentials

• Team-wide policy enforcement for enterprise deployments

• Centralized policy via .pasteshield-policy.json

• Policy rule types: block_pattern, require_encryption, audit_logging, rotation_policy, allowed_categories

• Strict / moderate / permissive policy templates

• Compliance report generation (30-day metrics, score 0-100)

• Audit log export for compliance reporting

• Team member management with roles (admin, developer, auditor)

• Custom user-defined patterns via settings (regex + severity)

• Workspace-level ignore list separate from user-level (.pasteshieldignore)

• Integration with .gitignore-style pattern files

• Pattern management UI: add, edit, toggle, remove, import, export

• Invalid regex validation with user-friendly error messages

• File system watchers for .pasteshieldignore and .gitignore auto-refresh

• Fixed the Run When it was not working properly

What's Changed

• Update from task 4ff65cf1-cac4-4f7d-aebd-9ae0a99ac059 by @sidkr222003 in #1
• Update from task 6fba38a1-c186-45f2-869e-cc49c49fc6fa by @sidkr222003 @nitinsaini26 in #2
• Update from task 983ab19c-7e84-4870-848f-8078aa42f29d by @sidkr222003 @prashantX-code in #4
• Update from task 322a5aa2-6287-49f2-b674-5ed1d6eb3334 by @sidkr222003 @NK2552003 in #5
• Update from task 4810a3a4-514f-447b-aad3-456963463896 by @sidkr222003 @shreyanshkumar2003 in #6
• Fix/new features by @sidkr222003 in #7
• Fix/new features by @sidkr222003 in #8
• Add feature X with team collaboration by @sidkr222003 in #9

New Contributors

• @sidkr222003 made their first contribution in #1

Full Changelog: https://github.com/sidkr222003/PasteShield/changelog.md