Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
-
Updated
May 23, 2024 - OCaml
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Semgrep rules registry
VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, pentest reporting, etc..
Documentation of Semgrep: a fast, open-source, static analysis tool.
A collection of my Semgrep rules to facilitate vulnerability research.
Define and run pattern-based custom linting rules.
This project is deprecated. Use https://github.com/returntocorp/semgrep instead
Semgrep rules specific to Frappe Framework
Semgrep extension for Visual Studio Code
Generic SAST Library
GitHub Actions master template and GitHub Actions Reusable Workflows
A non-official public repository with Semgrep Utilities
An extension to use Semgrep inside Burp Suite.
Manager of third-party sources of Semgrep rules 🗂
Semgrep rules to identify GWT attack surface
Add a description, image, and links to the semgrep topic page so that developers can more easily learn about it.
To associate your repository with the semgrep topic, visit your repo's landing page and select "manage topics."