Segrep

Developer security

Scan every repo before it ships

Segrep combines Trivy and Semgrep in a single Docker image. Run scans locally, gate CI on high findings, or sign in at app.segrep.com for dashboards and PR feedback.

Open dashboardScan with Docker
docker run --rm -v "$(pwd):/repo:ro" \
  ghcr.io/szaranger/security-scanner:latest \
  scan /repo --format json --fail-on high

Built for developers and teams

Multi-scanner coverage

Trivy for dependencies and CVEs, Semgrep for code patterns and SAST-style issues.

Docker-first

One image for local scans and CI. No Node, pnpm, or separate scanner installs.

Actionable output

Terminal or JSON reports, optional AI remediation summaries, CI fail-on thresholds.

Optional platform

Dashboard, scan history, and GitHub PR comments when you need a hosted workflow.

Ready to see your findings?

Sign in to the hosted dashboard to view scan history, or run the scanner in your pipeline today.

Go to appRead the scan guide