Semgrep

MCP server for using Semgrep to scan code for security vulnerabilities.

8 Tools

Version 4.43 or later needs to be installed to add the server automatically

Tools

Name Description

security_check Runs a fast security check on code and returns any issues found. Use this tool when you need to: - scan code for security vulnerabilities - verify that code is secure - double check that code is secure before committing - get a second opinion on code security If there are any issues found, you **MUST** fix them or offer to fix them and explain to the user why it's important to fix. If there are no issues, you can be reasonably confident that the code is secure.

Name	Description
`security_check`	Runs a fast security check on code and returns any issues found. Use this tool when you need to: - scan code for security vulnerabilities - verify that code is secure - double check that code is secure before committing - get a second opinion on code security If there are any issues found, you MUST fix them or offer to fix them and explain to the user why it's important to fix. If there are no issues, you can be reasonably confident that the code is secure.

Manual installation

You can install the MCP server using:

Installation for

Semgrep

Related servers

Firewalla MCP Server

Ramparts MCP Security Scanner

Root.io Vulnerability Remediation MCP