Semgrep
Official · Semgrep
14k
Code scanning CLI for static analysis, policy enforcement, and security checks across large codebases.
$brew install semgrep
Agent Compatibility
MCP Server
Agent Skill
JSON Output
Alternatives
mkcert
Make locally trusted development certificates with zero config
Vault CLI
Official
Official HashiCorp Vault CLI for secrets, auth, policies, leases, and secure automation workflows.
Trivy
Find vulnerabilities, misconfigurations, secrets in containers, Kubernetes, code, and cloud
Certbot
Official
Official ACME client from EFF for obtaining, renewing, and automating TLS certificates from the terminal.
masscan
Fastest Internet port scanner — can scan the entire Internet in under 6 minutes
gitleaks
Detect and prevent hardcoded secrets like passwords, API keys, tokens in git repos