Language: 日本語English

semgrep Plugin

Category
Security
Topics
Security, Auth & Compliance · Claude Code Customization & Workflow
First seen
2026-07-09
Last confirmed
2026-07-13
Explanation last updated
2026-07-12

The explanation below is AI-generated. Please verify it against the sources.

Semgrep is a Claude Code plugin called "Semgrep Guardian" that, according to its description, catches security vulnerabilities in real time and guides Claude to write secure code. Per the README, it is installed through the Claude Code plugin marketplace using /plugin marketplace add semgrep/guardian and /plugin install semgrep@semgrep-marketplace, then activated with /reload-plugins and connected by telling Claude to "login to semgrep," which calls into the Guardian MCP. The README also describes rolling Guardian out across a development team via MDM or an agent's built-in enterprise security controls, with detailed steps in a separate rollout document. Specific vulnerability types detected, supported languages, and pricing are not mentioned in the sources and are unknown.

Overview

Semgrep Guardian is a Claude Code plugin hosted in the semgrep/guardian GitHub repository. According to the README, it connects Semgrep's security scanning to Claude Code through an MCP (Model Context Protocol) integration.

What you can do with semgrep

  • Add and install the plugin via the Claude Code marketplace (/plugin marketplace add semgrep/guardian, /plugin install semgrep@semgrep-marketplace)
  • Load the plugin with /reload-plugins and log in to Semgrep by telling Claude "login to semgrep," which invokes the Guardian MCP
  • Troubleshoot connection issues by running /clear or restarting Claude Code
  • Roll out Guardian across a team using MDM or an agent's built-in enterprise security controls, per the README's linked rollout documentation

Sources

Original description (English)

Semgrep catches security vulnerabilities in real-time and guides Claude to write secure code from the start.

History of semgrep

Back to list