Lightweight static analysis for many languages. Find bug variants with patterns that look like source code. (by returntocorp)


Basic semgrep repo stats
1 day ago

returntocorp/semgrep is an open source project licensed under GNU Lesser General Public License v3.0 only which is an OSI approved license.

Semgrep Alternatives

Similar projects and alternatives to semgrep

  • GitHub repo pre-commit

    A framework for managing and maintaining multi-language pre-commit hooks.

  • GitHub repo Sourcetrail

    Sourcetrail - free and open-source interactive source explorer

  • GitHub repo terraform-provider-aws

    Terraform AWS provider

  • GitHub repo jedi

    Awesome autocompletion, static analysis and refactoring library for python

  • GitHub repo Bear

    Bear is a tool that generates a compilation database for clang tooling.

  • GitHub repo codeq

    Creates Datomic dbs from git repos

  • GitHub repo wcag

    Web Content Accessibility Guidelines

  • GitHub repo guide

    Aiming to be a fully transparent company. All information about source{d} and what it's like to work here. (by src-d)

  • GitHub repo tree-sitter-swift

    Swift grammar for tree-sitter

  • GitHub repo ocaml-tree-sitter

    Generate OCaml parsers based on tree-sitter grammars.

  • GitHub repo checkr

    Custom static analysis rules for the lazy. Write project specific static analysis checks in a few lines of code.

  • GitHub repo refex

    A syntactically aware search-and-replace tool for Python.

  • GitHub repo CCGrep

    Code Clone Detector like grep

NOTE: The number of mentions on this list indicates mentions on common posts. Hence, a higher number means a better semgrep alternative or higher similarity.


Posts where semgrep has been mentioned. We have used some of these posts to build our list of alternatives and similar projects - the last one was on 2021-04-22.