Analysis tools logo
67

Semgrep

A fast, open-source, static analysis tool for finding bugs and enforcing code standards at editor, commit, and CI time. Its rules look like the code you already write; no abstract syntax trees or regex wrestling. Supports 17+ languages.

Github:
    659565954083372019
Workflow integration:
  • Type: cli
    cli
  • Type: service
    service
Screenshot of Semgrep website

Official Semgrep Homepage

https://github.com/returntocorp/semgrep

GNU Lesser General Public License v2.1

Maintained

Alternative Tools

  • 104Mega-Linter
  • 48Sonatype
  • 5Checkmarx CxSAST
  • 2Codiga
  • 0CodeFactor
© analysis-tools.dev