Semgrep Mcp Server

1 MIT

FreeCommunity

AI Systems

# semgrep-mcp-server semgrep-mcp-server integrates Semgrep into the development environment, allowing for static code analysis and Semgrep rule management via the MCP (Multi-Channel Protocol). Key features include directory scanning, rule listing, result analysis, and export, providing a streamlined approach to code quality assurance.

What is Semgrep Mcp Server

semgrep-mcp-server is a Model Context Protocol (MCP) Server designed for integrating Semgrep into development environments. It facilitates static code analysis and management of Semgrep rules directly via the MCP protocol.

Use cases

Use cases include performing static analysis on codebases, managing and creating Semgrep rules, analyzing and filtering scan results, and comparing different analysis outcomes to enhance code quality.

How to use

To use semgrep-mcp-server, clone the repository, install dependencies using npm, and build the server. You can start the server in production mode with ‘npm start’ or in development mode with ‘npm run dev’.

Key features

Key features include tools for scanning directories, listing available Semgrep rules, analyzing scan results, creating new rules, filtering results by various criteria, exporting results in different formats, and comparing scan results.

Where to use

semgrep-mcp-server can be used in software development environments where static code analysis is required, particularly in projects that utilize Semgrep for code quality and security checks.

Clients Supporting MCP

The following are the main client software that supports the Model Context Protocol. Click the link to visit the official website for more information.

Claude Desktop: Official desktop application from Anthropic, natively supports MCP protocol. claude.ai

Cherry Studio: Cross-platform desktop client supporting multiple LLM providers, built-in MCP server support. cherry-ai.com

LobeChat: Modern open-source ChatGPT/LLMs UI, supports MCP protocol integration. lobehub.com

DeepChat: Cross-platform desktop AI assistant, compatible with MCP protocol, focusing on privacy and efficiency. deepchat.thinkinai.xyz

5ire: Cross-platform open-source desktop intelligent assistant MCP client, supports local knowledge base and MCP server. 5ire.app

View More MCP Clients

Overview

What is Semgrep Mcp Server

Use cases

How to use

Key features

Where to use

semgrep-mcp-server can be used in software development environments where static code analysis is required, particularly in projects that utilize Semgrep for code quality and security checks.

Clients Supporting MCP

The following are the main client software that supports the Model Context Protocol. Click the link to visit the official website for more information.

Claude Desktop: Official desktop application from Anthropic, natively supports MCP protocol. claude.ai

Cherry Studio: Cross-platform desktop client supporting multiple LLM providers, built-in MCP server support. cherry-ai.com

LobeChat: Modern open-source ChatGPT/LLMs UI, supports MCP protocol integration. lobehub.com

DeepChat: Cross-platform desktop AI assistant, compatible with MCP protocol, focusing on privacy and efficiency. deepchat.thinkinai.xyz

5ire: Cross-platform open-source desktop intelligent assistant MCP client, supports local knowledge base and MCP server. 5ire.app

View More MCP Clients

Content

Semgrep Server

Ein Model Context Protocol (MCP) Server für die Integration von Semgrep in die Entwicklungsumgebung. Dieser Server ermöglicht die Durchführung von statischen Code-Analysen und die Verwaltung von Semgrep-Regeln direkt über das MCP-Protokoll.

Installation

# Repository klonen
git clone [repository-url]
cd semgrep-server

# Abhängigkeiten installieren
npm install

# Server bauen
npm run build

Verwendung

Der Server kann auf folgende Weise gestartet werden:

# Produktionsmodus
npm start

# Entwicklungsmodus
npm run dev

Verfügbare Tools

Der Server stellt folgende MCP-Tools zur Verfügung:

scan_directory: Führt einen Semgrep-Scan in einem Verzeichnis aus
list_rules: Listet verfügbare Semgrep-Regeln auf
analyze_results: Analysiert die Scan-Ergebnisse
create_rule: Erstellt eine neue Semgrep-Regel
filter_results: Filtert Scan-Ergebnisse nach verschiedenen Kriterien
export_results: Exportiert Scan-Ergebnisse in verschiedene Formate
compare_results: Vergleicht zwei Scan-Ergebnisse

Entwicklung

Das Projekt ist in TypeScript geschrieben und verwendet das MCP SDK für die Server-Implementierung.

Projektstruktur

semgrep-server/
├── src/           # Quellcode
├── build/         # Kompilierte JavaScript-Dateien
├── test.js        # Testdateien
└── test-rule.yaml # Beispiel Semgrep-Regel

Abhängigkeiten

Node.js & npm
TypeScript
MCP SDK
Axios für HTTP-Anfragen

Lizenz

Dieses Projekt steht unter der ISC-Lizenz. Weitere Details finden Sie in der LICENSE Datei.

Dev Tools Supporting MCP

The following are the main code editors that support the Model Context Protocol. Click the link to visit the official website for more information.

Zed: High-performance collaborative code editor, supports MCP protocol, providing a smooth programming experience. zed.dev

Cursor: AI code editor built on VS Code, supports MCP protocol for context-aware programming. cursor.com

Windsurf: AI code editor from Codeium, integrates MCP protocol to provide intelligent code assistance. windsurf.com

Continue: Open-source AI programming assistant plugin, supports VS Code and JetBrains, compatible with MCP protocol. continue.dev

Trae: AI-driven code editor, supports MCP protocol, focusing on enhancing developer programming experience. trae.ai

View More MCP Dev Tools

Tools

No tools

Comments

Recommend MCP Servers

Tavily MCP Server The Tavily MCP server provides: search, extract, map, crawl tools Real-time web search capabilities through the tavily-search tool Intelligent data extraction from web pages via the tavily-extract tool Powerful web mapping tool that creates a structured map of website Web crawler that systematically explores websites.

MCP Server Chart This is a TypeScript-based MCP server that provides chart generation capabilities. It allows you to create various types of charts through MCP tools. You can also use it in Dify.

GitHub MCP Server MCP Server for the GitHub API, enabling file operations, repository management, search functionality, and more.

Brave Search MCP Server Web and local search using Brave's Search API

Firecrawl MCP Server Advanced web scraping with JavaScript rendering, PDF support, and smart rate limiting

Context7 MCP LLMs rely on outdated or generic information about the libraries you use. You get:

Slack MCP server Channel management and messaging capabilities

Sequential Thinking MCP Server Dynamic and reflective problem-solving through thought sequences

Fetch MCP Server A Model Context Protocol server that provides web content fetching capabilities.

Playwright MCP A Model Context Protocol (MCP) server that provides browser automation capabilities using [Playwright](https://playwright.dev). This server enables LLMs to interact with web pages through structured accessibility snapshots, bypassing the need for screenshots or visually-tuned models.

View All MCP Servers