Semgrep FAQs

Question 1

What protocols and technologies does Semgrep Server use?

Accepted Answer

Semgrep Server utilizes the Model Context Protocol (MCP) for communication. It's built using TypeScript and relies on Node.js, npm, the MCP SDK, and Axios for HTTP requests.

Question 2

What is Semgrep Server?

Accepted Answer

Semgrep Server is an MCP (Model Context Protocol) server that integrates Semgrep into your development environment. It allows you to perform static code analysis and manage Semgrep rules directly through the MCP protocol.

Question 3

What can I do with Semgrep Server?

Accepted Answer

You can scan directories for code vulnerabilities using Semgrep, list available Semgrep rules, analyze scan results, create new rules, and filter/export scan results in various formats.

Question 4

How do I install Semgrep Server?

Accepted Answer

You can install Semgrep Server by cloning the repository, installing the dependencies using `npm install`, and building the server using `npm run build`.

Question 5

What are some available tools provided by Semgrep Server?

Accepted Answer

Semgrep Server provides tools like `scan_directory`, `list_rules`, `analyze_results`, `create_rule`, `filter_results`, `export_results`, and `compare_results`.

Semgrep

主要功能

使用案例

Semgrep

主要功能

使用案例