Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
-
Updated
May 31, 2024 - OCaml
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Documentation of Semgrep: a fast, open-source, static analysis tool.
Semgrep rules registry
A non-official public repository with Semgrep Utilities
Semgrep-based Policy Controller for Kubernetes
VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, pentest reporting, etc..
GitHub Actions master template and GitHub Actions Reusable Workflows
Semgrep extension for Visual Studio Code
Define and run pattern-based custom linting rules.
SafeAck Security Semgrep Rules Repo
This project is deprecated. Use https://github.com/returntocorp/semgrep instead
Semgrep rules specific to Frappe Framework
Github action for reporting semgrep findings to PRs
A collection of my Semgrep rules to facilitate vulnerability research.
Add a description, image, and links to the semgrep topic page so that developers can more easily learn about it.
To associate your repository with the semgrep topic, visit your repo's landing page and select "manage topics."