Semgrep Registry

nodejsscan

Ajin Abraham

Rules from the preeminent Node.js security scanner, NodeJSScan.

bandit

r2c

Selected rules from Bandit, a security checker for Python, rewritten in Semgrep.

findsecbugs

r2c

Selected rules from FindSecBugs, a security checker for Java, rewritten in Semgrep.

flask

Grayson Hardaway

Default ruleset for Flask, by r2c.

r2c-owasp-presentation

Grayson Hardaway

Ruleset accompanying r2c OWASP presentation.

owasp-flask

Drew Dennison

Rules for OWASP security checks for python

github-actions

Grayson Hardaway

Security rules for GitHub Actions workflow files

gitlab-bandit

r2c, gitlab

Bandit rules in Gitlab SAST, written by Gitlab and r2c.

juice-shop

Enno Liu

A ruleset of javascript and typescript rules made for OWASP Juice Shop.

nodejs

r2c, ajinabraham

Default ruleset for Node.js, written by ajinabraham and r2c

owasp-java-benchmark

Colleen Dai

OWASP Java Benchmark ruleset, a subset of java rules for faster results.

owasp-sf

Grayson Hardaway

Ruleset for OWASP SF

owasp-top-ten

r2c

The OWASP Top 10 is an industry-recognized report of top web application security risks. Use this ruleset to scan for OWASP Top 10 vulnerabilities.

python-flask-meetup

Grayson Hardaway

Python Meetup Check Ruleset

#owasp

Rulesets (14)

nodejsscan

bandit

findsecbugs

flask

r2c-owasp-presentation

owasp-flask

github-actions

gitlab-bandit

juice-shop

nodejs

owasp-java-benchmark

owasp-sf

owasp-top-ten

python-flask-meetup

Rules (0)