Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.semgrep.dev/llms.txt

Use this file to discover all available pages before exploring further.

Semgrep with self-hosted Ubuntu runners in Azure Pipelines

Run Semgrep on self-hosted Ubuntu runners in Azure DevOps.

Running Semgrep using templates in Azure Pipelines

Running Semgrep commands in Azure Pipelines templates.

Run Semgrep in Jenkins when using Bitbucket as the source code manager

Scan code hosted in Bitbucket using Jenkins projects or pipelines.

Semgrep in CI vs CLI: align your SAST scan results and understand differences

Align scan results between CI and CLI and understand differences in behavior.

Collecting Semgrep GitHub Actions logs from GitHub

Collect logs from GitHub Actions to troubleshoot Semgrep CI scans.

GitLab "Job's log exceeded limit" error

Collect verbose logs from GitLab to troubleshoot Semgrep CI scans.

Failed to run a git command during a pull request or merge request scan

Troubleshoot git command failures that occur during PR and MR scans.

Use GitHub repository rulesets to implement Semgrep

Set up GitHub repository rulesets to implement Semgrep across repositories.

Set up reusable GitHub workflows for Semgrep scans

Learn how to set up reusable GitHub workflows for Semgrep scans.

Why aren't findings populating in the GitHub Advanced Security Dashboard after running Semgrep in CI?

Prevent the “resource not accessible by integration” error when uploading findings.

Scan with GitHub and Jenkins

Set up full and diff-aware scans in Jenkins Multibranch Pipeline projects.

Receive Semgrep MR comments through a GitLab runner

Set additional environment variables to receive Semgrep MR comments.

Why are there new source code manager (SCM) connections that I didn't manually configure listed in Semgrep AppSec Platform?

Learn why new SCM connections can appear in Semgrep AppSec Platform.

Does Semgrep scan compressed files or other non-code files?

Review options to scan compressed files and other artifacts with Semgrep.

Scanning a monorepo in parts

Scan a monorepo in parts for better CI performance and clearer findings.

Add Semgrep to your Semaphore pipeline

Learn how to add Semgrep to your Semaphore pipeline.

How to trigger diff-aware scans

Learn how to run a diff-aware scan.

Upload Semgrep CI findings to GitHub Advanced Security Dashboard

Upload Semgrep findings to the GitHub Advanced Security Dashboard.

Upload Semgrep CI findings to GitLab Security Dashboard

Upload Semgrep findings to the GitLab Security Dashboard.

Configure GitHub Actions to use the nonroot Semgrep docker image

Configure GitHub Actions workflows to use the nonroot Semgrep Docker image.

Why are duplicate findings appearing after running Semgrep in CI?

Prevent duplicate findings by running full scans only on the main branch.