semanticgrep

v0.1.0

This package is parked by the Semgrep team. See https://github.com/returntocorp/semgrep for more information. For more information about how to use this package see README

Latest version published 2 years ago
License: LGPL-2.1

Ensure you're using the healthiest python packages

Snyk scans all the packages in your projects for vulnerabilities and provides automated fix advice

Package Health Score

66 / 100

Popularity

Small
GitHub Stars
10.83K
Forks
636
Contributors
170

Direct Usage Popularity


Based on project statistics from the GitHub repository for the PyPI package semanticgrep, we found that it has been starred 10,830 times.

Security

No known security issues
Powered by Snyk
0.1.0 (Latest)

Security and license risk for latest version

Release Date
Jul 5, 2022
Direct Vulnerabilities
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
Indirect Vulnerabilities
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
License Risk
  • 0
    H
  • 0
    M
  • 0
    L
All security vulnerabilities belong to production dependencies of direct and indirect packages.

License
LGPL-2.1
Alert

Non-Permissive License

We noticed that this project uses a license which requires less permissive conditions such as disclosing the source code, stating changes or redistributing the source under the same license. It is advised to further consult the license terms before use.


Security Policy
Yes

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Keep your project free of vulnerabilities with Snyk

Maintenance

Inactive

Commit Frequency

Open Issues
754
Open PR
9
Last Release
2 years ago
Last Commit
9 days ago

Further analysis of the maintenance status of semanticgrep based on released PyPI versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for semanticgrep is that it hasn't seen any new versions released to PyPI in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

As a healthy sign for on-going project maintenance, we found that the GitHub repository had at least 1 pull request or issue interacted with by the community.

Community

Active
Readme
Yes
Contributing.md
Yes
Code of Conduct
Yes
Contributors
170
Funding
No

A good and healthy external contribution signal for semanticgrep project, which invites more than one hundred open source maintainers to collaborate on the repository.


Embed Package Health Score Badge

package health: 66/100 package health 66/100

Package

Python Versions Compatibility
Unspecified

Age
2 years
Latest Release
2 years ago
Dependencies
N/A
Versions
1
Maintainers
0
Wheels
No