The official 42Crunch plugin marketplace for GitHub Copilot — a catalog of AI-powered plugins that bring 42Crunch's API security capabilities directly into your GitHub Copilot workflow.
42Crunch plugins give Copilot the ability to audit OpenAPI specs, scan live APIs for vulnerabilities, and apply fixes to ensure APIs meet security guardrails.
.github/plugin/
marketplace.json # Plugin registry manifest
plugins/ # Copilot plugins developed by 42Crunch
api-security-testing/
.github/plugin/
plugin.json # Plugin metadata
skills/ # Skill definitions
references/ # Reference definitions
README.md # Documentation
LICENSE # License
The GitHub Copilot CLI is required to add marketplaces and install plugins using the copilot CLI commands below.
Register the 42Crunch marketplace with GitHub Copilot once, then install the plugin from it:
copilot plugin marketplace add https://github.com/42Crunch-AI/copilot-plugins
Or from an interactive Copilot session:
/plugin marketplace add https://github.com/42Crunch-AI/copilot-plugins
AI-powered API security plugin backed by 42Crunch. Audit OpenAPI specs, detect OWASP API Security vulnerabilities (including BOLA/BFLA), run live conformance and authorization scans against running APIs, and apply AI-assisted fixes — all through natural language.
Install: After registering the marketplace (see above), install the plugin:
copilot plugin install api-security-testing@42crunch-marketplace
Or from an interactive Copilot session:
/plugin install api-security-testing@42crunch-marketplace
See the plugin README for full documentation.