Reshift has released an IntelliJ plugin that enables developers to find vulnerabilities in their own custom code and help them remediate with rich issue descriptions within the IDE.
How to install the IntelliJ plugin:
Download reshift plugin or within your IDE navigate to Plugins and then browse repositories and search for “Reshift”.
Restart IntelliJ IDEA.
The Reshift plugin can be opened by clicking the tab to the left of the bottom bar.
Press the "play" button. A scan will kick off and show the progress bar at the bottom with a time estimate.
To stop a scan simply hit the button and it will discontinue the scan.
Once the scan has run, the results will appear in the lower pane.
You can click into the security bugs found to see the highlighted line of code along with a DevSec Coach panel to the right where you can learn more about the vulnerability and how to fix it.
If you have any more questions, please email us at firstname.lastname@example.org!