Semgrep MCP Server

Semgrep MCP Server

Enables integration of Semgrep in development environments via the MCP protocol, supporting static code analysis, rule management, and scan result operations.

stefanskiasan

Developer Tools
Category.security-and-iam
Visit Server

README

Semgrep Server

Ein Model Context Protocol (MCP) Server für die Integration von Semgrep in die Entwicklungsumgebung. Dieser Server ermöglicht die Durchführung von statischen Code-Analysen und die Verwaltung von Semgrep-Regeln direkt über das MCP-Protokoll.

Installation

# Repository klonen
git clone [repository-url]
cd semgrep-server

# Abhängigkeiten installieren
npm install

# Server bauen
npm run build

Verwendung

Der Server kann auf folgende Weise gestartet werden:

# Produktionsmodus
npm start

# Entwicklungsmodus
npm run dev

Verfügbare Tools

Der Server stellt folgende MCP-Tools zur Verfügung:

  • scan_directory: Führt einen Semgrep-Scan in einem Verzeichnis aus
  • list_rules: Listet verfügbare Semgrep-Regeln auf
  • analyze_results: Analysiert die Scan-Ergebnisse
  • create_rule: Erstellt eine neue Semgrep-Regel
  • filter_results: Filtert Scan-Ergebnisse nach verschiedenen Kriterien
  • export_results: Exportiert Scan-Ergebnisse in verschiedene Formate
  • compare_results: Vergleicht zwei Scan-Ergebnisse

Entwicklung

Das Projekt ist in TypeScript geschrieben und verwendet das MCP SDK für die Server-Implementierung.

Projektstruktur

semgrep-server/
├── src/           # Quellcode
├── build/         # Kompilierte JavaScript-Dateien
├── test.js        # Testdateien
└── test-rule.yaml # Beispiel Semgrep-Regel

Abhängigkeiten

  • Node.js & npm
  • TypeScript
  • MCP SDK
  • Axios für HTTP-Anfragen

Lizenz

Dieses Projekt steht unter der ISC-Lizenz. Weitere Details finden Sie in der LICENSE Datei.

Recommended Servers

playwright-mcp

playwright-mcp

A Model Context Protocol server that enables LLMs to interact with web pages through structured accessibility snapshots without requiring vision models or screenshots.

Official
Featured
TypeScript
Magic Component Platform (MCP)

Magic Component Platform (MCP)

An AI-powered tool that generates modern UI components from natural language descriptions, integrating with popular IDEs to streamline UI development workflow.

Official
Featured
Local
TypeScript
MCP Package Docs Server

MCP Package Docs Server

Facilitates LLMs to efficiently access and fetch structured documentation for packages in Go, Python, and NPM, enhancing software development with multi-language support and performance optimization.

Featured
Local
TypeScript
Claude Code MCP

Claude Code MCP

An implementation of Claude Code as a Model Context Protocol server that enables using Claude's software engineering capabilities (code generation, editing, reviewing, and file operations) through the standardized MCP interface.

Featured
Local
JavaScript
@kazuph/mcp-taskmanager

@kazuph/mcp-taskmanager

Model Context Protocol server for Task Management. This allows Claude Desktop (or any MCP client) to manage and execute tasks in a queue-based system.

Featured
Local
JavaScript
Linear MCP Server

Linear MCP Server

Enables interaction with Linear's API for managing issues, teams, and projects programmatically through the Model Context Protocol.

Featured
JavaScript
mermaid-mcp-server

mermaid-mcp-server

A Model Context Protocol (MCP) server that converts Mermaid diagrams to PNG images.

Featured
JavaScript
Jira-Context-MCP

Jira-Context-MCP

MCP server to provide Jira Tickets information to AI coding agents like Cursor

Featured
TypeScript
Linear MCP Server

Linear MCP Server

A Model Context Protocol server that integrates with Linear's issue tracking system, allowing LLMs to create, update, search, and comment on Linear issues through natural language interactions.

Featured
JavaScript
VirusTotal MCP Server

VirusTotal MCP Server

A MCP server for querying the VirusTotal API. This server provides tools for scanning URLs, analyzing file hashes, and retrieving IP address reports.

Featured
TypeScript