Semgrep

Semgrep CLI

Open-source command-line static analysis engine. Runs locally and in CI to scan code with community and custom rules, emit SARIF/JSON output, and enforce policies. Authored primarily in OCaml with Python tooling; LGPL-2.1 licensed.

Semgrep CLI is one of 6 APIs that Semgrep publishes on the APIs.io network.

Tagged areas include CLI, Open Source, and Static Analysis.

GitHub

Other Resources

🔗
Repository
https://github.com/semgrep/semgrep

API entry from apis.yml

apis.yml Raw ↑ 
aid: semgrep:cli
name: Semgrep CLI
description: Open-source command-line static analysis engine. Runs locally and in CI to scan code with
  community and custom rules, emit SARIF/JSON output, and enforce policies. Authored primarily in OCaml
  with Python tooling; LGPL-2.1 licensed.
humanURL: https://github.com/semgrep/semgrep
baseURL: https://github.com/semgrep/semgrep
tags:
- CLI
- Open Source
- Static Analysis
properties:
- type: Repository
  url: https://github.com/semgrep/semgrep