Outbound Link Summary:
1 year ago
Lightweight static analysis for many languages.
Semgrep is a fast, open-source, static analysis engine for finding bugs, detecting vulnerabilities in third-party dependencies, and enforcing code standards.