Semgrep Security Scanner

Scan any public GitHub repository for security vulnerabilities

How to Use

https://semgrep-scans.justdev.in/{owner}/{repo}

Simply append the GitHub repository owner and name to this URL to start a scan.

Try These Examples

OWASP/NodeGoat
Vulnerable Node.js application for learning
juice-shop/juice-shop
OWASP's intentionally insecure web application
digininja/DVWA
Damn Vulnerable Web Application
WebGoat/WebGoat
Deliberately insecure Java application

What Happens

1. Clone
Repository cloned via shallow clone
2. Scan
Semgrep analyzes code for security issues
3. Cache
Results cached for 30 minutes