⚡ skillsplayground

🛡️ Semgrep

Run Semgrep static analysis scans and create custom detection rules. Use when asked to scan code with Semgrep, find security vulnerabilities, write custom YAML rules, or detect specific bug patterns.

Security semgrep semgrepsecurity
QUICK INSTALL
npx playbooks add skill semgrep/skills --skill semgrep

About Semgrep

Run Semgrep static analysis scans and create custom detection rules. Use when asked to scan code with Semgrep, find security vulnerabilities, write custom YAML rules, or detect specific bug patterns.

At 30 words, this compact prompt gives your agent specialized security expertise with structured patterns and output formats. Install via CLI or copy the prompt below.

Use Cases

  • Auditing code for OWASP Top 10 vulnerabilities
  • Implementing authentication and authorization patterns
  • Reviewing API security, rate limiting, and input validation
  • Hardening infrastructure and dependency security

Example Prompts

Get started Help me use the Semgrep skill effectively.

System Prompt (30 words)

Run Semgrep static analysis scans and create custom detection rules. Use when asked to scan code with Semgrep, find security vulnerabilities, write custom YAML rules, or detect specific bug patterns.

Frequently Asked Questions

What is Semgrep?

Semgrep is a free security skill for AI coding agents. Run Semgrep static analysis scans and create custom detection rules. Use when asked to scan code with Semgrep, find security vulnerabilities, write custom YAML rules, or detect specific bug patterns.. It provides a specialized system prompt that configures your agent with security expertise.

How do I use Semgrep with Claude Code?

Run npx playbooks add skill semgrep/skills --skill semgrep in your terminal to install Semgrep into your Claude Code session. It works immediately after installation.

Which AI coding agents work with Semgrep?

Semgrep is compatible with Claude Code, Cursor, GitHub Copilot, Windsurf, OpenClaw, Cline, and any AI agent that supports custom system prompts or .cursorrules files.

Is Semgrep free to use?

Yes, Semgrep is completely free and open source. The full source is available on GitHub at https://github.com/semgrep/skills/tree/main/skills/semgrep. You only need a subscription to the AI agent you use it with.

Try in Playground View on GitHub
DETAILS
CategorySecurity
Authorsemgrep/skills
Installs
Prompt sizeCompact (30 words)
LicenseOpen source
COMPATIBLE AGENTS
Claude CodeInstall via CLI
CursorAdd to .cursorrules
CopilotAdd to .github/copilot-instructions.md
WindsurfAdd to .windsurfrules
🦞OpenClawAdd as SKILL.md
ClineAdd to custom instructions
TAGS
semgrepsecurity
SEE ALSO
Best Claude Code Skills More Security Skills Browse GitHub Skills
EMBED BADGE
Listed on Skills Playground
[![Listed on Skills Playground](https://skillsplayground.com/badges/plaque/semgrep-skills-semgrep.svg)](https://skillsplayground.com/skills/semgrep-skills-semgrep/)
Skills Playground installs
[![Skills Playground](https://skillsplayground.com/badges/installs/semgrep-skills-semgrep.svg)](https://skillsplayground.com/skills/semgrep-skills-semgrep/)
All badge options →
SHARE
Share on X

Related Skills

🛡️ Security Auditor
Find vulnerabilities, audit dependencies, and harden your application security
Security
🛡️ Supabase Postgres Best Practices
This skill helps optimize Postgres queries, schemas, and configs with Supabase best practices to boost performance and security.
Security4.4k
🛡️ Audit Website
Audit websites for SEO, performance, security, technical, content, and 15 other issue cateories with 150+ rules using the squirrelscan CLI. Returns LLM-optimized reports with health scores, broken links, meta tag analysis, and actionable recommendations. Use to discover and asses website or webapp i
Security4.1k
🛡️ Create Auth
This skill guides you to add robust authentication in TypeScript/JavaScript apps using Better Auth across frontend, backend, and migrations.
Security1.6k

Get the best new skills
in your inbox

Weekly roundup of top Claude Code skills, MCP servers, and AI coding tips.