Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.

Define and run pattern-based custom linting rules.

A collection of my Semgrep rules to facilitate vulnerability research.

Semgrep rules for smart contracts based on DeFi exploits

A MCP server for using Semgrep to scan code for security vulnerabilities.

VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/DOCX, attachments, automatic changelog, stats, vulnerability management, bugbounty, local ai/llm, super fast pentest reporting!

A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.

Prevent merging of malicious code in pull requests

tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such as popularity and project size

A security scanner as fast as a linter, written in Rust.

Focused malicious code detection ruleset, with a high protection-to-noise ratio

Generic SAST Library

Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂

Find zero-days while you sleep. DeepZero is an automated vulnerability research framework that parses, decompiles, and analyzes thousands of Windows kernel drivers for exploitable IOCTLs natively using AI agents.

An extension to use Semgrep inside Burp Suite.

GitHub Actions CI/CD - Master Template & Reusable Workflows Library - Docker Builds, AWS, Python, Terraform, Jenkins, Linting, Security Scanning, Make Builds etc.

Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.

Semgrep extension for Visual Studio Code