Integrate OpenGrep with Vulnetix. A community fork of Semgrep with the same SARIF output capabilities.
Python, JavaScript, Go, Java, Ruby, and 30+ languagesCLI toolSARIF
Install & scan
$ uv run --with semgrep opengrep --version $ uv run --with semgrep opengrep scan --config auto --sarif --sarif-output=opengrep.sarif .
Run OpenGrep in CI
Scan on every push and upload the results to Vulnetix:
- name: Run OpenGrep
run: |
pip install semgrep
opengrep scan --config auto --sarif --sarif-output=opengrep.sarif .
- name: Upload to Vulnetix
run: vulnetix upload --file opengrep.sarif
Centralise OpenGrep results in Vulnetix
Upload OpenGrep SARIF output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.