Skip to content

Add rma-cli - Fast SAST scanner with Semgrep compatibility#1736

Open
bumahkib7 wants to merge 1 commit intoanalysis-tools-dev:masterfrom
bumahkib7:master
Open

Add rma-cli - Fast SAST scanner with Semgrep compatibility#1736
bumahkib7 wants to merge 1 commit intoanalysis-tools-dev:masterfrom
bumahkib7:master

Conversation

@bumahkib7
Copy link

@bumahkib7 bumahkib7 commented Feb 5, 2026

Summary

Add rma-cli - a fast SAST scanner written in Rust.

About rma-cli

rma-cli compiles Semgrep rules to native tree-sitter matchers, achieving significantly faster scanning while maintaining compatibility with the Semgrep rule ecosystem.

Key features:

  • 647+ built-in security rules covering OWASP Top 10, CWE, and more
  • Supports 28 programming languages
  • Native tree-sitter parsing for accurate AST matching
  • SARIF/JSON output for CI/CD integration
  • MIT licensed

Links:

Note

The repository currently has fewer than 20 stars as it's a new project (launched January 2025). However, it's actively maintained, has CI passing, and provides significant value to the static analysis community by bridging Semgrep rules with native Rust performance.

@bumahkib7
Add rma-cli - Fast SAST scanner with Semgrep rule compatibility
df3187f 
rma-cli is a fast SAST scanner written in Rust that compiles Semgrep rules
to native tree-sitter matchers for significantly faster scanning.

Features:
- 647+ security rules (OWASP Top 10, CWE)
- 28 programming languages supported
- SARIF/JSON output for CI/CD
- MIT licensed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@bumahkib7