Do I need a Semgrep account?

No. The open-source registry runs entirely local. You only need an account for the AppSec Platform (org-wide policies, findings dashboard).

Can I use my team's custom ruleset?

Yes — point the MCP at a local rules directory or a public rule registry URL. The rule format is the same Semgrep YAML.

Yes. Pass --baseline-ref=main to scan only lines changed against main. Perfect for the "scan this PR" workflow without re-scanning the whole repo.

Fast enough for an interactive loop on most repos. Big monorepos benefit from --include and per-language rule selection to cut scan time.

Semgrep

Name: Top MCPs — curated MCP directory
Creator: Top MCPs
License: https://creativecommons.org/licenses/by/4.0/

Official

Open-source SAST scanning against custom rules from an AI agent.

Score 69(?)SemgrepLGPL-2.1 668Verified May 27, 2026Top MCPs for Security →

Install View on GitHub

Quick answer

What it does

Runs Semgrep against the current project (or a specific subtree) using either the community registry or a custom ruleset, and returns findings with severity, location, and fix suggestions.

Best for

Pre-commit SAST
Custom rule enforcement
Reviewing third-party PRs
Auditing security patterns

Not for

Dependency-vulnerability scanning
Runtime security monitoring

Setup recipe

Pick your client, then follow the three steps.

1
Install
claude_desktop_config.jsonjson
{ "mcpServers": { "semgrep": { "command": "uvx", "args": [ "semgrep-mcp" ] } } }
Paste under mcpServers. Fully quit and reopen Claude after editing.
CLI or .mcp.jsonshell
claude mcp add semgrep -- uvx semgrep-mcp
Run from your repo. Commit .mcp.json to share with your team.
.cursor/mcp.jsonjson
{ "mcpServers": { "semgrep": { "command": "uvx", "args": [ "semgrep-mcp" ] } } }
Global path: ~/.cursor/mcp.json. Reload window after editing.
.vscode/mcp.jsonjsonc
{ "servers": { "semgrep": { "command": "uvx", "args": [ "semgrep-mcp" ] } } }
VS Code uses the "servers" key (not "mcpServers").
~/.codeium/windsurf/mcp_config.jsonjson
{ "mcpServers": { "semgrep": { "command": "uvx", "args": [ "semgrep-mcp" ] } } }
Open via Cascade → hammer icon → Configure.
cline_mcp_settings.jsonjson
{ "mcpServers": { "semgrep": { "command": "uvx", "args": [ "semgrep-mcp" ] } } }
Open via the Cline sidebar → MCP Servers → Edit.
~/.continue/config.jsonjson
{ "experimental": { "modelContextProtocolServers": [ { "transport": { "type": "stdio", "command": "uvx", "args": [ "semgrep-mcp" ] } } ] } }
Continue uses modelContextProtocolServers with a transport block.
~/.codex/config.tomlshell
# ~/.codex/config.toml [mcp_servers.semgrep] command = "uvx" args = [ "semgrep-mcp", ]
Codex uses TOML. Each server is a [mcp_servers.<name>] subtable.
~/.config/zed/settings.jsonjsonc
{ "context_servers": { "semgrep": { "command": { "path": "uvx", "args": [ "semgrep-mcp" ] } } } }
Zed calls them "context_servers". Settings live-reload on save.
ChatGPT → Apps directorynone
Semgrep doesn't ship a hosted HTTPS endpoint today. ChatGPT supports remote MCP servers only — to use this server in ChatGPT you'll need to deploy it to a public HTTPS URL first (e.g. via Cloudflare Workers or Vercel) or wait for an official remote build.
2
Set required secrets
No credentials required — this MCP runs over stdio without authentication.
3
Try a minimum working prompt
Minimum working prompt pending verification. Try any prompt from the MCP’s README once installed.

Tools & permissions

Tools list pending verification. The server exposes tools over MCP; we haven’t yet parsed its capability manifest into this page. Check the GitHub repo for the authoritative list.

Security & scope

Access scope: Read-only
Sandbox: Runs Semgrep locally on the user's machine. No network egress in default mode. Custom rules are evaluated locally; ensure you trust the rule source before pointing the MCP at a third-party registry URL.
Gotchas: A malicious custom rule can match aggressively and slow down the scan. Audit third-party rulesets before adoption.
Semgrep does not modify code by default; the agent can use the findings to draft fixes, but the changes pass through your normal review.
Some rules require a project-specific config — without it, the false-positive rate is higher.

Agent prompt pack

— copy into Claude, Cursor, or ChatGPT.

Paste into Claude, Cursor, or ChatGPT. Edit the [brackets] before sending.

Recommend the best MCP servers for [task: e.g. security work] in [client: Claude].

Constraints:
- Prefer tools that are [official | open-source | read-only] — pick what matters for my use case.
- Exclude MCPs that require [e.g. a paid plan, OAuth-only flows, remote-only transport].
- Return at most 3 picks, ranked.

For each pick include:
1. One-sentence rationale.
2. The ready-to-paste install snippet for my client.
3. Any required secrets I need to create before installing.

Cross-check the top-mcps.com listing: https://top-mcps.com/top-mcps-for-security

Compare Semgrep against a real alternative. Swap the second MCP in [brackets] if you want a different match.

Compare Semgrep MCP vs [a comparable MCP] for the following job: [describe the job, e.g. "let an agent create GitHub issues on bug triage"].

Judge them on:
- Setup time and complexity (what a new user hits first).
- Auth model (none / API key / OAuth 2.1) and credential risk.
- Transport (stdio / Streamable HTTP / SSE) and where the server runs.
- Required secrets and the blast radius if they leak.
- Operational risk in an unattended agent loop.
- Which one is "good enough" for a weekend prototype vs. production.

End with one sentence: which should I pick for my scenario, which is: [my scenario].

References:
- https://top-mcps.com/mcp/semgrep
- top-mcps.com listing for a comparable

Asks the agent to install and verify. Works inside Claude Code, Cursor Agent, Codex CLI.

Install the Semgrep MCP server for my [client: Claude] at the default config path for that client.

Use the exact install snippet published at https://top-mcps.com/mcp/semgrep (fetch https://top-mcps.com/mcp/semgrep.json for the canonical server.json if you can read URLs).

Before finishing:
1. Create the required secrets (no secrets) and put them in the appropriate env block — do not hard-code them.
2. Restart or reload the client so it picks up the new server.
3. Verify the server is connected (green / running state) and at least one tool is listed.
4. If anything fails, read the client's MCP logs and report the exact error — do not silently retry.

Confirm when done and list the tools the server now exposes.

Frequently asked questions

What changed

— 2 updates tracked.

May 27, 2026
Refreshed install snippets and fact sheet; verified for 2026.
Apr 30, 2025
Initial directory listing.

More Security MCPs

Other tools in the same category worth evaluating.

Sentry

Official

Triage errors, inspect traces, and query events from Sentry.

sentryerrorsmonitoringobservability

3 minLow

Cloudflare

Official

Manage Workers, R2 buckets, DNS, and edge policies on Cloudflare.

cloudflareedgeworkersdns

10 minMedium

1Password

Official

Inject 1Password secrets into an AI agent's tool calls without exposing them in chat.

securitysecrets1passwordvault

8 minLow

Compared with Semgrep

Side-by-side breakdowns for the choices people most often weigh against this MCP.

SemgrepvsSnyk (MCP archived)SemgrepvsRedis SemgrepvsGit SemgrepvsGitHub

Exploring Top MCPs for Security? See all Security MCPs →

Quick answer

What it does

Best for

Not for

Setup recipe

Install

Set required secrets

Try a minimum working prompt

Tools & permissions

Security & scope

Agent prompt pack

Full details

Frequently asked questions

Do I need a Semgrep account?

Can I use my team's custom ruleset?

Diff-only mode?

How fast is it?

What changed

More Security MCPs

Sentry

Cloudflare

1Password

Compared with Semgrep