Fix the issues that matter with Pro rules + Pro Engine
Semgrep helps organizations shift left without the developer productivity tax
Book a demoLearn More about Pro EngineWorks with Semgrep Pro Engine
Pro rules
Rules for popular languages and frameworks:
Find injection vulnerabilities
More than 100 high-accuracy rules to find injection vulnerabilities in Java, PHP, JavaScript, Kotlin, Rust, and Swift.
Browse rules for detecting injection vulnerabilitiesDiscover malicious deserialization mechanisms
60+ rules supporting 14 Python libraries/frameworks and 3 commonly used Java libraries, both standalone or in combination with Java Servlets and the Spring Framework.
See rules for deserializationDetect XXE vulnerabilities
Detect XML external entity issues with support for common Java libraries and classes, to identify the many different ways they can be insecurely configured and used.
Learn more about Java XML securityLearn more on the Semgrep blog
Fix the issues that matter with Pro rules + Pro Engine
Semgrep helps organizations shift left without the developer productivity tax
Book a demoLearn More about Pro Engine