🍺 BREW Explorer

← all formulae

semgrep

brew install semgrep v1.167.0 LGPL-2.1-only

Static analysis tool written in OCaml that detects bugs and security issues via pattern matching rules.

Why you might care

Semgrep scans source code for security vulnerabilities, anti-patterns, and compliance issues using human-readable YAML rules rather than complex regexes. It's faster than traditional SAST tools, integrates into CI/CD pipelines easily, and supports 30+ languages. Use it when you need customizable, interpretable security scanning without heavyweight commercial solutions.

Categories

security scanner linter sast

Alternatives

SonarQube Snyk Checkmarx CodeQL
6.6k
30-day installs · #484
14.5k
90-day · #665
67.0k
365-day · #553

Runtime dependencies

certifi cryptography dwarfutils gmp libev pcre2 pydantic python@3.14 rpds-py sqlite tree-sitter zstd

Build dependencies

ocaml opam pkgconf

Links

Blurb generated by claude-haiku-4-5 on today.

Raw metadata 
{
  "aliases": [],
  "alternatives": [
    "SonarQube",
    "Snyk",
    "Checkmarx",
    "CodeQL"
  ],
  "build_dependencies": [
    "ocaml",
    "opam",
    "pkgconf"
  ],
  "categories": [
    "security",
    "scanner",
    "linter",
    "sast"
  ],
  "caveats": null,
  "conflicts_with": [],
  "dependencies": [
    "certifi",
    "cryptography",
    "dwarfutils",
    "gmp",
    "libev",
    "pcre2",
    "pydantic",
    "python@3.14",
    "rpds-py",
    "sqlite",
    "tree-sitter",
    "zstd"
  ],
  "deprecated": 0,
  "deprecation_reason": null,
  "desc": "Easily detect and prevent bugs and anti-patterns in your codebase",
  "disable_reason": null,
  "disabled": 0,
  "enrichment_fetched_at": "2026-06-20T23:40:54+00:00",
  "first_seen": "2026-06-20T23:34:18+00:00",
  "full_name": "semgrep",
  "github_default_branch": null,
  "github_last_commit_at": null,
  "github_readme_excerpt": null,
  "github_repo": null,
  "github_stars": null,
  "github_topics": [],
  "homepage": "https://semgrep.dev",
  "homepage_og_description": "An extensible developer-friendly application security platform that scans source code to surface true and actionable security issues with AI-assisted SAST, SCA, and Secrets Detection solutions.",
  "homepage_og_image": "https://semgrep.dev/assets/content/global/blog-thumbnail-default.png",
  "homepage_title": "Semgrep App Security Platform | AI-assisted SAST, SCA and Secrets Detection",
  "installs_30d": 6557,
  "installs_365d": 66961,
  "installs_90d": 14455,
  "keg_only": 0,
  "keg_only_reason": null,
  "last_seen": "2026-06-20T23:34:18+00:00",
  "license": "LGPL-2.1-only",
  "llm_generated_at": "2026-06-20T23:45:08+00:00",
  "llm_model": "claude-haiku-4-5",
  "name": "semgrep",
  "oldnames": [],
  "one_liner": "Static analysis tool written in OCaml that detects bugs and security issues via pattern matching rules.",
  "optional_dependencies": [],
  "rank_30d": 484,
  "rank_365d": 553,
  "rank_90d": 665,
  "raw_hash": "470b481649d2ad9d",
  "recommended_dependencies": [],
  "revision": 0,
  "ruby_source_path": "Formula/s/semgrep.rb",
  "tap": "homebrew/core",
  "test_dependencies": [],
  "uses_from_macos": [
    {
      "rsync": "build"
    },
    "curl"
  ],
  "version_head": "HEAD",
  "version_stable": "1.167.0",
  "versioned_formulae": [],
  "why_use_this": "Semgrep scans source code for security vulnerabilities, anti-patterns, and compliance issues using human-readable YAML rules rather than complex regexes. It\u0027s faster than traditional SAST tools, integrates into CI/CD pipelines easily, and supports 30+ languages. Use it when you need customizable, interpretable security scanning without heavyweight commercial solutions."
}