Built-in Rules

Browse the open-source security rules that ship with xgrep, filterable by language, category, and severity.

xgrep ships with an open-source rule set covering common vulnerability patterns, written in Semgrep-compatible YAML. Search and filter the full set below, or learn how to write your own rules.

Browse the rules

Combine the language and category filters with the severity toggles, and select any rule to read its full description.

Loading rules…

Overview

xgrep's built-in rule corpus, how to filter it, and how to write your own rules.

Writing rules

The xgrep rule format and the rule features it supports.

Built-in Rules

Browse the rules

On this page