Home
DevOps
Build, Test, Deploy
Code Review
Semgrep logo

Semgrep

Semantic grep for code
r2cdev
semgrep.dev
19
14
+ 1
0

What is Semgrep?

It is a fast, open-source, static analysis tool for finding bugs and enforcing code standards at editor, commit, and CI time. Its rules look like the code you already write; no abstract syntax trees, regex wrestling, or painful DSLs.
Semgrep is a tool in the Code Review category of a tech stack.
Semgrep is an open source tool with GitHub stars and GitHub forks. Here’s a link to Semgrep's open source repository on GitHub

Who uses Semgrep?

Companies
7 companies reportedly use Semgrep in their tech stacks, including Shelf, SMARTTechStack, and Upvest.

Developers
12 developers on StackShare have stated that they use Semgrep.

Semgrep Integrations

JavaScript, Python, Java, PHP, and TypeScript are some of the popular tools that integrate with Semgrep. Here's a list of all 14 tools that integrate with Semgrep.

Semgrep's Features

  • Open source, works on 17+ languages
  • Scan with 1,000+ community rules
  • Write rules that look like your code
  • Quickly get results in the terminal, editor, or CI/CD
  • Flag issues moving forward, get results in pull requests, Slack, + more

Semgrep Alternatives & Comparisons

What are some alternatives to Semgrep?
Git
Git is a free and open source distributed version control system designed to handle everything from small to very large projects with speed and efficiency.
GitHub
GitHub is the best place to share code with friends, co-workers, classmates, and complete strangers. Over three million people use GitHub to build amazing things together.
Visual Studio Code
Build and debug modern web and cloud applications. Code is free and available on your favorite platform - Linux, Mac OSX, and Windows.
Docker
The Docker Platform is the industry-leading container platform for continuous, high-velocity innovation, enabling organizations to seamlessly build and share any application — from legacy to what comes next — and securely run them anywhere
npm
npm is the command-line interface to the npm ecosystem. It is battle-tested, surprisingly flexible, and used by hundreds of thousands of JavaScript developers every day.
See all alternatives
Related Comparisons
Semgrep
Semgrep
VS
Bearer
Bearer

Semgrep's Followers
14 developers follow Semgrep to keep up with related blogs and decisions.

Similar Tools

GitGitHubVisual Studio CodeDockernpm

New Tools

Travis CIPuppet LabsChefAWS OpsWorksSolano CI

Trending Comparisons

Bearer vs Semgrep

Related Jobs

Git JobsGitHub JobsVisual Studio Code JobsDocker Jobsnpm Jobs