semgrep

stdio

Used by 4 plugins

Description

SAST code scanning for security vulnerabilities

Add to Your Project

Add to your .mcp.json:

{
  "mcpServers": {
    "semgrep": {
      "command": "npx",
      "args": [
        "-y",
        "@returntocorp/semgrep-mcp"
      ]
    }
  }
}

Security Considerations

External connections

This server connects to external services. Review the URLs it accesses before enabling.

Command

npx

Arguments

-y@returntocorp/semgrep-mcp