Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
-
Updated
Jun 11, 2024 - OCaml
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Define and run pattern-based custom linting rules.
Semgrep rules registry
A collection of my Semgrep rules to facilitate vulnerability research.
VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, pentest reporting, etc..
Generic SAST Library
An extension to use Semgrep inside Burp Suite.
This project is deprecated. Use https://github.com/returntocorp/semgrep instead
Manager of third-party sources of Semgrep rules 🗂
🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
Semgrep extension for Visual Studio Code
Semgrep rules specific to Frappe Framework
Documentation of Semgrep: a fast, open-source, static analysis tool.
GitHub Actions master template and GitHub Actions Reusable Workflows
Add a description, image, and links to the semgrep topic page so that developers can more easily learn about it.
To associate your repository with the semgrep topic, visit your repo's landing page and select "manage topics."