Stats
Actions
Tags
From asi
Runs Semgrep for static analysis, security scanning, and pattern matching. Scans code, writes custom YAML rules, detects vulnerabilities, uses taint mode, sets up CI/CD pipelines.
How this skill is triggered — by the user, by Claude, or both
Slash command
/asi:semgrepThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
**Trit**: -1 (MINUS)
Trit: -1 (MINUS) Category: static-analysis Author: Trail of Bits Source: trailofbits/skills License: AGPL-3.0
Run Semgrep static analysis for fast security scanning and pattern matching. Use when asked to scan code with Semgrep, write custom YAML rules, find vulnerabilities quickly, use taint mode, or set up Semgrep in CI/CD pipelines.
This is a Trail of Bits security skill. Refer to the original repository for detailed usage guidelines and examples.
See: https://github.com/trailofbits/skills
npx claudepluginhub plurigrid/asi --plugin asiRuns Semgrep scans to detect security vulnerabilities and code quality issues. Supports auto-config, security audits, OWASP Top 10, language-specific rules like Python and TypeScript, and result triage.
Runs Semgrep static analysis scans in parallel subagents with two modes: full coverage and high-confidence security vulnerabilities. Detects Semgrep Pro for cross-file taint analysis. Use for security audits and finding bugs.
Creates and validates custom Semgrep rules for security vulnerabilities, bugs, and code patterns with tests and taint mode. Use when developing static analysis detections.