semgrep-mcp
CommunityScan PHP code with Semgrep for security.
Software Engineering#code quality#static analysis#php#security scanning#vulnerability detection#semgrep
Authoryunmengya
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill automates the process of scanning PHP codebases for security vulnerabilities and code quality issues using the Semgrep static analysis tool. It leverages a comprehensive set of rules to identify potential risks and provides normalized output for easier integration into CI/CD pipelines.
Core Features & Use Cases
- Automated Security Scanning: Utilizes Semgrep CLI to scan PHP projects against a curated set of rules.
- Rule Management: Supports using default rules (
r/all), community rules (p/trailofbits), and custom local rules. - Normalized Output: Generates results in MCP (Machine-Readable Code Pattern) JSON format for seamless integration.
- Use Case: Integrate this Skill into your development workflow to automatically detect common PHP vulnerabilities like SQL injection, RCE, and XSS during code commits or pull requests.
Quick Start
Use the semgrep-mcp skill to scan the PHP project located at /path/to/your/php_project.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: semgrep-mcp Download link: https://github.com/yunmengya/PHP_AUDIT_SKILLS/archive/main.zip#semgrep-mcp Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.