18 docs tagged with "Team & Enterprise Tier"

Reference for running Semgrep CI in your CI job or on the command line. Learn how to select rules to scan with, enable diff-aware scanning, connect to Semgrep App, and more.

The Dashboard is a summary view within Semgrep App to help security teams evaluate their organization's security posture.

Semgrep Editor is a powerful tool within Semgrep App to author rules and quickly apply these rules across an organization to enforce coding standards across an organization.

The Findings page allows users to view, manage, and triage Findings.

Get started with Semgrep App to scan for security vulnerabilities on both local and remote repositories hosted on GitHub and GitLab.

Semgrep can run CI environments. It can either be used stand-alone or connected with Semgrep App for centralized rule and findings management.

Semgrep App contains 3rd party integrations to allow users to add data from Semgrep to other tools that are part of their workflows.

Learn about roles, user management, and how to implement role-based access control in Semgrep App.

Semgrep CI integrates with 3rd party services when connected to Semgrep App. Learn how to get Slack or email alerts about findings and failures, how to get merge or pull request comments in your CI/CD pipeline, or how to integrate using webhooks.

Semgrep CLI and CI are free to use. Semgrep App has both free and paid tiers, each with their own features and levels of support.

The Rule Board is a visual representation of the rules that Semgrep App uses to scan code. Rules are cards, and are grouped into columns representing the actions undertaken (whether to block, comment, or silently monitor) when a finding surfaces.

Run Semgrep CI with Semgrep App to manage findings and rules from a centralized dashboard as well as receive notifications in various channels.

This document guides you through setting up semgrep in continuous integration without connecting to Semgrep App.

The sample configuration files below run Semgrep CI on continuous integration platforms such as GitHub, GitLab, Jenkins, Buildkite, CircleCI, and other providers.

This document links to Semgrep API documentation.

SSO Configuration instruction

GitLab SAST includes an analyzer that runs Semgrep. Fix issues with semgrep-sast jobs running slowly, not showing results, or erroring.

Not seeing what you expect in Semgrep App? Follow these troubleshooting steps or find out how to get one-on-one help.