Securie for Continue — autonomous-coding security for the open Continue.dev plugin

roadmap

Continue is the open-source autonomous-coding plugin (VS Code + JetBrains). Like Cline, it executes operations without per-step approval. Same security envelope: compile-time scope guards on autonomous operations + specialist fleet review on every PR + secrets specialist live-validation of `.continue/` directory inclusion.

Updated May 1, 2026

What it does

Continue ships an open-source MCP integration — meaning the April 2026 Anthropic MCP RCE class affects Continue users. Securie's MCP trust-enforcement layer + secrets specialist + compile-time scope guard close the autonomous-edit + MCP-trust + credential-leak surfaces in one pipeline.

When to use it

Teams using Continue.dev in production-adjacent repos.

Limitations

Available by request. Continue-internal plugin integration ships later.

Install

Install Securie GitHub App on the repo Continue operates on
Add `.continue/` to .gitignore + .npmignore (the Bitwarden CLI Apr 2026 hijack hunted this path)
Configure Continue's autonomous-operation allowlist to exclude destructive operations
Push any Continue-committed change; Securie reviews + sandbox-verifies

Listed on

Continue.dev →