{"schemaVersion":"opencli.cli.v1","slug":"semgrep","name":"Semgrep","shortName":"semgrep","binaryName":"semgrep","maker":{"slug":"semgrep","name":"Semgrep","type":"org","url":"https://semgrep.dev","officialPlatformMaker":true,"featuredBuilder":false},"category":"Security","description":"The official CLI from Semgrep. Static analysis, security scanning, and code rules from the terminal. Supports structured output — good for scripts and agents.","tagline":"Static analysis, security scanning, and code rules from the terminal.","install":{"packageManager":"brew","command":"brew install semgrep","packageName":null,"npmPackage":null,"brewFormula":"semgrep","brewCask":null,"crateName":null,"pypiPackage":null,"goPackage":null,"dockerImage":null},"verify":{"command":"semgrep --version","signal":"semgrep responds locally and is ready for the first real command."},"quickStart":"semgrep scan --config auto","exampleWorkflow":["semgrep scan --config auto"],"agent":{"readiness":{"label":"Great for agents","score":75,"reasons":["Structured output is available for parsing.","Supports non-interactive/scripted use.","Works well in CI or repeatable automation."],"guardrails":[]},"packUrl":"https://opencli.co/cli/semgrep/agent.md","packMarkdown":"# OpenCLI Agent Pack: Semgrep\n\nUse this when an AI agent needs to work with `semgrep`.\n\n## What this CLI is for\nThe official CLI from Semgrep. Static analysis, security scanning, and code rules from the terminal. Supports structured output — good for scripts and agents.\n\nBest for: static analysis, security scanning, and code rules from the terminal.\n\n## Agent readiness\nGreat for agents (75/100)\n- Structured output is available for parsing.\n- Supports non-interactive/scripted use.\n- Works well in CI or repeatable automation.\n\n## Install\n```sh\nbrew install semgrep\n```\n\n## Verify before real work\n```sh\nsemgrep --version\n```\nExpected signal: semgrep responds locally and is ready for the first real command.\n\n## Safe starting commands\n```sh\nsemgrep --version\n```\n\n```sh\nsemgrep scan --config auto\n```\n\n## Guardrails for agents\n- Run the verify command first.\n- Summarize findings before taking actions with side effects.\n\n## Suggested agent instruction\nYou may use Semgrep (`semgrep`) for static analysis, security scanning, and code rules from the terminal.. First install it if missing, then run the verify command. Start with read-only or inspection commands. Summarize what you found before changing anything. Ask for confirmation before commands that mutate remote state, spend money, deploy, delete data, merge code, or expose secrets.\n\nSource: OpenCLI\n"},"fit":{"bestFor":"static analysis, security scanning, and code rules from the terminal.","useThisIf":"You want security scanning you can script with structured output.","skipIf":"You don't work with security scanning.","whatHappensNext":"Run `semgrep scan --config auto` and see what comes back."},"capabilities":{"agentFriendly":true,"supportsJsonOutput":true,"supportsNonInteractive":true,"supportsDryRun":false,"requiresAuth":false,"requiresNetwork":false,"ciFriendly":true,"localFirst":false,"destructivePotential":"low"},"taxonomy":{"useCases":["Static analysis","Security scanning","Code rules"],"aliases":["semgrep cli"],"keywords":["sast security scan"],"tags":["official","agent-friendly","ci-friendly","json-output"]},"links":{"website":"https://semgrep.dev/docs/cli-reference","github":"https://github.com/semgrep/semgrep","docs":"https://semgrep.dev/docs/cli-reference","opencli":"https://opencli.co/cli/semgrep","markdown":"https://opencli.co/cli/semgrep/agent.md","json":"https://opencli.co/cli/semgrep.json"},"metrics":{"githubStars":15435,"latestRelease":"2026-06-08T00:28:28Z","license":"LGPL-2.1","metricLabel":"Homebrew installs (30d)","metricValue":4317,"metricSource":"homebrew","metricAsOf":"2026-06-08T11:00:35.382Z"}}