Semgrep Registry

nodejsscan

Ajin Abraham

Rules from the preeminent Node.js security scanner, NodeJSScan.

bandit

gitlab, r2c

Use Semgrep as a universal linter to identify vulnerabilities in your code base with the bandit (https://github.com/PyCQA/bandit) rule pack.

findsecbugs

r2c, Gitlab

Use Semgrep as a universal linter to identify vulnerabilities and code smells in your code base with the FindSecBugs (https://find-sec-bugs.github.io/) rule pack.

flask

Grayson Hardaway

Default ruleset for Flask, by r2c.

r2c-owasp-presentation

Grayson Hardaway

Ruleset accompanying r2c OWASP presentation.

owasp-flask

Drew Dennison

Rules for OWASP security checks for python

github-actions

Grayson Hardaway

Security rules for GitHub Actions workflow files

gitlab-bandit

gitlab, r2c

Use Semgrep as a universal linter to identify vulnerabilities in your code base with the bandit (https://github.com/PyCQA/bandit) rule pack.

juice-shop

Enno Liu

A ruleset of javascript and typescript rules made for OWASP Juice Shop.

owasp-java-benchmark

Colleen Dai

OWASP Java Benchmark ruleset, a subset of java rules for faster results.

owasp-sf

Grayson Hardaway

Ruleset for OWASP SF

owasp-top-ten

r2c

The OWASP Top 10 is an industry-recognized report of top web application security risks. Use this ruleset to scan for OWASP Top 10 vulnerabilities.

python-flask-meetup

Grayson Hardaway

Python Meetup Check Ruleset

#owasp

Rulesets (13)

nodejsscan

bandit

findsecbugs

flask

r2c-owasp-presentation

owasp-flask

github-actions

gitlab-bandit

juice-shop

owasp-java-benchmark

owasp-sf

owasp-top-ten

python-flask-meetup

Rules (0)