Alternatives and similar repositories for semgrep

Users that are interested in semgrep are comparing it to the libraries listed below

• snyk / cli
  Snyk CLI scans and monitors your projects for security vulnerabilities.
  ☆5,414Updated this week
• earthly / earthly
  Super simple build framework with fast, repeatable builds and an instantly familiar syntax – like Dockerfile and Makefile had a baby.
  ☆11,977Updated 3 months ago
• microsoft / restler-fuzzer
  RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…
  ☆2,869Updated 3 weeks ago
• facebook / pyre-check
  Performant type-checking for python.
  ☆7,144Updated this week
• dstotijn / hetty
  An HTTP toolkit for security research.
  ☆9,311Updated last year
• aquasecurity / trivy
  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
  ☆31,602Updated this week
• ast-grep / ast-grep
  ⚡A CLI tool for code structural search, lint and rewriting. Written in Rust
  ☆12,363Updated last week
• github / codeql
  CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
  ☆9,216Updated this week
• getsops / sops
  Simple and flexible tool for managing secrets
  ☆20,721Updated this week
• ossf / scorecard
  OpenSSF Scorecard - Security health metrics for Open Source
  ☆5,262Updated this week
• Yelp / detect-secrets
  An enterprise friendly way of detecting and preventing secrets in code.
  ☆4,419Updated 11 months ago
• securego / gosec
  Go security checker
  ☆8,651Updated this week
• gitleaks / gitleaks
  Find secrets with Gitleaks 🔑
  ☆24,879Updated last month
• vectordotdev / vector
  A high-performance observability data pipeline.
  ☆21,315Updated this week
• sourcegraph / sourcegraph-public-snapshot
  Code AI platform with Code Search & Cody
  ☆10,249Updated last year
• Orange-OpenSource / hurl
  Hurl, run and test HTTP requests with plain text.
  ☆18,495Updated this week
• Wilfred / difftastic
  a structural diff that understands syntax 🟥🟩
  ☆24,101Updated last week
• muesli / duf
  Disk Usage/Free Utility - a better 'df' alternative
  ☆14,747Updated last month
• go-task / task
  A fast, cross-platform build tool inspired by Make, designed for modern workflows.
  ☆14,807Updated this week
• dolthub / dolt
  Dolt – Git for Data
  ☆19,726Updated this week
• google / clusterfuzz
  Scalable fuzzing infrastructure.
  ☆5,519Updated this week
• sharkdp / hyperfine
  A command-line benchmarking tool
  ☆27,432Updated 2 months ago
• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆2,475Updated last week
• google / oss-fuzz
  OSS-Fuzz - continuous fuzzing for open source software.
  ☆11,875Updated this week
• errata-ai / vale
  A markup-aware linter for prose built with speed and extensibility in mind.
  ☆5,235Updated this week
• dandavison / delta
  A syntax-highlighting pager for git, diff, grep, and blame output
  ☆28,956Updated 2 months ago
• PyCQA / bandit
  Bandit is a tool designed to find common security issues in Python code.
  ☆7,774Updated last week
• nushell / nushell
  A new type of shell
  ☆38,221Updated this week
• google / osv-scanner
  Vulnerability scanner written in Go which uses the data provided by https://osv.dev
  ☆8,431Updated this week
• turbot / steampipe
  Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
  ☆7,687Updated this week