Tag feed

#semgrep

17 posts1 followers

Explore Hashnode

Alternatives

Trending tags this week

DGDevTools Guidedevtoolsguide.hashnode.devMar 4 · 5 min read

Semgrep: Find Real Bugs with Pattern-Based Static Analysis

Most linters catch style problems. Semgrep catches real bugs: SQL injection, hardcoded secrets, insecure deserialization, SSRF vulnerabilities, and misuse of cryptographic APIs. It works on source code using pattern matching that understands syntax —...

0

DGDevTools Guidedevtoolsguide.hashnode.devMar 3 · 8 min read

Static Analysis Beyond Linting: CodeQL, Semgrep, SonarQube, and Snyk Code

Static Analysis Beyond Linting: CodeQL, Semgrep, SonarQube, and Snyk Code Linters enforce style. Static analysis finds bugs. The difference matters. ESLint will tell you about unused variables and inconsistent formatting. CodeQL will tell you that us...

0

GGitHubOpenSourcegithub-open-source.hashnode.devDec 16, 2025 · 3 min read

Stop Supply Chain Attacks: GuardDog Scans Your Dependencies for Hidden Malware

📝 Quick Summary: GuardDog is a command-line interface tool designed to detect malicious packages across various ecosystems including PyPI, npm, Go, GitHub Actions, and VSCode extensions. It employs both source code analysis using Semgrep rules and p...

0

HKHare Krishna Raiblog.harekrishnarai.meSep 4, 2025 · 5 min read

From Grep to Taint Analysis: The Evolution of Static Code Scanning

Static code analysis has come a long way from the days of simple string searches. With the rising complexity of applications and threats, our tooling has evolved to meet the demand for both precision and context-awareness. This blog takes you through...

0

HKHare Krishna Raiblog.harekrishnarai.meJun 21, 2025 · 18 min read

Introduction to Static Application Security Testing (SAST)

Introduction This is the first article in a 30-day series on Static Application Security Testing (SAST). We’ll introduce what SAST is and why it matters for building secure software. SAST refers to analyzing source code to find security vulnerabiliti...

0

OSOshaba Samsondevsecops-blog.hashnode.devMay 19, 2025 · 4 min read

Hardening GitLab CI/CD: Secrets Detection, SAST & ECR Integration

DevOps is growing and changing every day, which also means new security risks can appear. Even if your cloud platform is well-protected, your CI/CD pipeline can still be a target. If the pipeline isn’t secure, attackers could find a way in or simple ...

0

DPDeepak parashartechfordummys.hashnode.devSep 24, 2024 · 6 min read

DevSecOps Tools: A Comprehensive How-To Guide for YARN, GITLEAKS, NJSSCAN, SEMGREP, RETIRE, TRIVY, ZAP, SAST, and DAST

In the modern software development landscape, security has become a vital aspect of the development lifecycle. DevSecOps is the practice of integrating security into every phase of DevOps, ensuring that security is part of the continuous integration ...

0

SCSimon Crowesimoncrowe.hashnode.devJun 29, 2024 · 4 min read

Django and Semgrep: Enforcing a Service Layer Using Static Analysis

In my previous post about implementing a service layer in Django, I wrote about a simple pattern that "plays nice" with the mountain of functionality that comes with Django out-of-the-box, particularly the ORM. In this implementation, business logic ...

0

CTCloud Tunedcloudtuned.hashnode.devJun 2, 2024 · 3 min read

An Introduction to Semgrep: Lightweight Static Analysis for Modern Codebases

An Introduction to Semgrep: Lightweight Static Analysis for Modern Codebases Introduction In the world of software development, maintaining code quality and security is a continuous challenge. Traditional static analysis tools can be cumbersome, slow...

0

RRRaushan Rajblog.ksec.aiApr 13, 2023 · 11 min read

DevSecOps - OpenSource SAST for your CI/CD pipeline

DevSecOps stands for Development, Security, and Operations. DevSecOps involves introducing security practices and integrating tools earlier in the software development life cycle (SDLC), rather than treating security as a separate, post-development a...

0

#semgrep

Search Hashnode

#semgrep

Explore Hashnode

Trending tags this week

Semgrep: Find Real Bugs with Pattern-Based Static Analysis

Static Analysis Beyond Linting: CodeQL, Semgrep, SonarQube, and Snyk Code

Stop Supply Chain Attacks: GuardDog Scans Your Dependencies for Hidden Malware

From Grep to Taint Analysis: The Evolution of Static Code Scanning

Introduction to Static Application Security Testing (SAST)

Hardening GitLab CI/CD: Secrets Detection, SAST & ECR Integration

DevSecOps Tools: A Comprehensive How-To Guide for YARN, GITLEAKS, NJSSCAN, SEMGREP, RETIRE, TRIVY, ZAP, SAST, and DAST

Django and Semgrep: Enforcing a Service Layer Using Static Analysis

An Introduction to Semgrep: Lightweight Static Analysis for Modern Codebases

DevSecOps - OpenSource SAST for your CI/CD pipeline