Skip to main content

de en es ja ko zh

Semgrep MCP Server

by stefanskiasan

MIT License

1

Overview InspectNew Schema Related Servers Reviews Score

Need Help?View Source Code Report Issue

Integrations

Enables cloning repositories for code analysis and scanning with Semgrep.
Supports working with Semgrep rules defined in YAML format, allowing for rule creation and management.

Semgrep Server

A Model Context Protocol (MCP) server for integrating Semgrep into the development environment. This server enables static code analysis and the management of Semgrep rules directly via the MCP protocol.

installation

# Repository klonen
git clone [repository-url]
cd semgrep-server

# Abhängigkeiten installieren
npm install

# Server bauen
npm run build

use

The server can be started in the following way:

# Produktionsmodus
npm start

# Entwicklungsmodus
npm run dev

Available tools

The server provides the following MCP tools:

scan_directory : Runs a Semgrep scan in a directory
list_rules : Lists available Semgrep rules
analyze_results : Analyzes the scan results
create_rule : Creates a new Semgrep rule
filter_results : Filters scan results according to various criteria
export_results : Exports scan results in various formats
compare_results : Compares two scan results

Development

The project is written in TypeScript and uses the MCP SDK for the server implementation.

Project structure

semgrep-server/
├── src/           # Quellcode
├── build/         # Kompilierte JavaScript-Dateien
├── test.js        # Testdateien
└── test-rule.yaml # Beispiel Semgrep-Regel

Dependencies

Node.js & npm
TypeScript
MCP SDK
Axios for HTTP requests

License

This project is licensed under the ISC License. See the LICENSE file for details.

This server cannot be installed

-

security - not tested

A

license - permissive license

-

quality - not tested

remote-capable server

The server can be hosted and run remotely because it primarily relies on remote services or has no dependency on the local environment.

Enables integration of Semgrep in development environments via the MCP protocol, supporting static code analysis, rule management, and scan result operations.

Related Resources

Reddit Discussion about this server

Related MCP Servers

Seq MCP Server
ahmad2x4
A
security
A
license
A
quality
The Seq MCP Server enables interaction with Seq's API endpoints for logging and monitoring, providing tools for managing signals, events, and alerts with extensive filtering and configuration options.
Last updated -
3
13
3
JavaScript
MIT License
MCP Server Semgrep
Szowesgad
-
security
A
license
-
quality
A Model Context Protocol compliant server that integrates Semgrep static analysis tool with AI assistants like Anthropic Claude, enabling advanced code analysis, security vulnerability detection, and code quality improvements through a conversational interface.
Last updated -
4
JavaScript
MIT License
Semgrep MCP Serverofficial
semgrep
A
security
A
license
A
quality
An MCP server that provides a comprehensive interface to Semgrep, enabling users to scan code for security vulnerabilities, create custom rules, and analyze scan results through the Model Context Protocol.
Last updated -
6
140
Python
MIT License
dap-mcp
KashunCheng
-
security
A
license
-
quality
An implementation of the Model Context Protocol (MCP) that enables interaction with debug adapters, allowing language models to control debuggers, set breakpoints, evaluate expressions, and navigate source code during debugging sessions.
Last updated -
2
Python
AGPL 3.0

View all related MCP servers

Appeared in Searches

New MCP Servers

ID: 1kb2h7qn0c