semgrep
https://github.com/returntocorp/semgrep
OCaml
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
OCaml not yet supported2 Subscribers
Add a CodeTriage badge to semgrep
Help out
- Issues
- [Ruby] "if" expression not working with "pattern-inside"
- Miss detection of const value for a Java class variable
- Explain why a rulepack cant be ran due to need of teams tier in CLI
- Can't use `metavariable-(regex|pattern)` on types from typed metavariables
- Python: Dangerous functions imported into class namespace not traced for dynamic input.
- Unescaped `$` in PySpark file causes Parse Error while Creating report
- Using '--test' breaks CLI login state
- JavaScript functions do not match inside objects
- Feature request: cli support for filtering by rule metadata
- Display warning when generic mode skips target file
- Docs
- OCaml not yet supported