Fix the issues that matter with Pro rules + Pro Engine
See how inter-file and interprocedural analysis make Pro Engine more comprehensive and more accurate
See how inter-file and interprocedural analysis make Pro Engine more comprehensive and more accurate
Analyze code across function boundaries
Pro Engine provides interprocedural analysis, including dataflow analysis methods such as taint analysis, constant propagation, and typed metavariables.
Interprocedural analysis is available for all languages supported by Semgrep and is currently experimental.
Support for enterprise languages
In addition to all the languages supported by Semgrep OSS Engine, Pro Engine also supports enterprise languages such as Apex.
Discover more true positives: advanced code analysis helps uncover more complex vulnerabilities across files and procedures.
Reduce false positives: dataflow analysis features such as taint-tracking can, for example, see whether tainted user inputs are able to reach an unsafe SQL statement via a long chain of function calls.
April 10, 20237 min read