Download Latest Version
Release v1.145.0 source code.tar.gz (11.3 MB)
Get an email when there's a new version of Semgrep
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| README.md | 2025-11-12 | 1.4 kB | |
| Release v1.143.0 source code.tar.gz | 2025-11-12 | 11.2 MB | |
| Release v1.143.0 source code.zip | 2025-11-12 | 15.5 MB | |
| Totals: 3 Items | 26.8 MB | 0 | |
1.143.0 - 2025-11-12
Added
- Dataflow will now understand empty block expressions as having unit value in more instances. (code-9141)
- Parallel scans will now use shared-memory parallelism using multicore OCaml
domains, rather than the legacy fork-join approach. Users can opt into the
legacy method with the
--x-parmapCLI flag, and this deprecates the--x-eioflag (since it is now the default behaviour). (saf-2271) - Add
-k/ --hookflag to enable Semgrep scans via Claude Code Agent post-tool hooks (saf-2279)
Fixed
- When running
semgrep scanorsemgrep ci, the progress bar now always ends at 100%. (SAF-2079) - Pro: fixed various bugs relating to Scala match expression handling in dataflow analysis (e.g., some branches being misordered, especially when matching multiple variables against non-integer literal patterns). (code-9144)
- Semgrep will now emit better error messages when exceptions are raised at the beginning or end of scan (exit-message)
- Enabled taint tracking into Goroutines, by treating them as regular Go function calls. (gh-11207)
- Fixed missing Rust type alias translation. We can now
accurately match the () type in a
typedeclaration. (gh-11283) - fixed MCP semgrep_findings tool to accept single issue_type parameter and corrected identity string role parsing (saf-2282)
