Back to MCP Servers

semgrep

stdio

Used by 7 plugins

Installs flowspec, the highest-starred plugin that provides this server

Install
1
Run in your terminal
$
npx claudepluginhub jpoley/flowspec --plugin flowspec
Description

SAST code scanning for security vulnerabilities

Add to Your Project

Add to your .mcp.json:

{
  "mcpServers": {
    "semgrep": {
      "command": "npx",
      "args": [
        "-y",
        "@returntocorp/semgrep-mcp"
      ]
    }
  }
}
Security Considerations
External connections

This server connects to external services. Review the URLs it accesses before enabling.

Command
npx
Arguments
-y@returntocorp/semgrep-mcp