Semgrep

by Semgrep freemium Security

Open-source static analysis tool for finding bugs and security issues in code.

Free OSS / $40/dev/mo Free tier available
Try Semgrep

About

Semgrep is an open-source, lightweight static analysis tool that finds bugs and enforces code standards. Write custom rules in minutes using pattern matching. Semgrep AppSec Platform adds supply chain, secrets, and AI remediation.

Features

Open-source SAST engine
Custom rule authoring
30+ language support
Supply chain scanning (Pro)
Secret detection (Pro)
CI/CD and IDE integration

Specifications

SAST
SCA
Secret Scanning
AI Remediation
Open Source
Starting Price Free OSS

Community Feedback

How would you rate Semgrep?

Quick Info

Category Security
Pricing freemium
Vendor Semgrep
Website semgrep.dev
Free OSS / $40/dev/mo

Free tier available

Try Semgrep

Similar Products

Agentic Radar
Free (Open Source)
Aikido Security
Free / $314/mo
Cleanlab
Free / Enterprise