Static analysis at ludicrous speed.Free
Description
Semgrep is a highly-configurable SAST tool that looks for recurring patterns in the syntax tree. It can either run locally using Docker or be integrated into the CI/CD pipeline with Github Actions. Results are delivered as JSON files, allowing you to pipe the results into other tools, like jq in order to manipulate them.
More Resources & Tools in Security
It is a penetration testing tool that focuses on the web browser.
Web Application Security Scanner Framework
Web vulnerability scanner written in Python3