semgrep

officialscriptablepopularsecuritybrew

Semgrep · Static analysis, security scanning, and code rules from the terminal.

$ brew install semgrep

One-liner to try

$ semgrep scan --config auto

Agent pack

Copy into an agent

A markdown-ready setup brief with install, verify, safe starting commands, and guardrails for AI agents.

Open .md JSON

Readiness

Great for agents · 75/100

Verify

semgrep --version

Agent URL

/cli/semgrep/agent.md

Quick reference

Install

brew install semgrep

Verify

semgrep --version

First command

semgrep scan --config auto

Machine JSON

/cli/semgrep.json

About

The official CLI from Semgrep. Static analysis, security scanning, and code rules from the terminal. Supports structured output — good for scripts and agents.

Example workflow

1. semgrep scan --config auto

Alternatives worth considering

vault

Secrets, identity, and pki from the terminal.

trivy

Image scanning, vulns, and iac checks from the terminal.

shellcheck

Shell linting, bash safety, and script review from the terminal.