This VSCode extension analyzes npm project dependencies and displays a list of packages with security vulnerabilities, if any. This extension uses https://deps.dev/ and https://osv.dev/ api for analyze deps.
Open your nodejs or frontend project with package.json and lock file in root of workspace and run the extension using > DepsAnalyze command.
Initial preview release of npm-deps-security-advisories