Have Semgrep rules to share? Add your repository to this Awesome Rulesets list by opening a pull request on the source of this file, or contribute them directly to semgrep-rules, the "standard library" for Semgrep. Once the pull request is merged the rules will be available through the Semgrep Registry.
A template rule repository can be forked from semgrep/template-rules.
- ajinabraham/njsscan - Finds insecure code patterns in your Node.js applications
- dgryski/semgrep-go/ - Rules for finding odd Go code
- returntocorp/semgrep-rules - Semgrep's "standard library"
- semgrep/rules-owasp-asvs - Rules for the OWASP ASVS standard
- trailofbits/semgrep-rules - Rules from Trail of Bits, a security consultancy