Semgrep
Semgrep’s mission is to profoundly improve software security and reliability. Semgrep OSS is an open-source static analysis tool designed for developers to perform fast and customizable code analyses across large codebases. Built on top of the Semgrep OSS engine, the Semgrep AppSec Platform provides industry-leading code, secrets, and dependency scans to enable organizations to ship secure code quickly, helping devs cut backlog by 20% overnight. The Semgrep AppSec Platform is adopted by companies like Snowflake, Figma, Lyft, and Dropbox. Founded by Drew Dennison, Isaac Evans, and Luke O’Malley in 2017, Semgrep is funded by Felicis Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital.
Why Semgrep?
Semgrep is on a mission to make it expensive to exploit software. Semgrep Community Edition is a widely adopted, open-source static analysis tool designed for developers to perform fast and customizable code analyses across large codebases. The Semgrep AppSec Platform extends Semgrep Community Edition in two key areas: improved core analysis that significantly reduces false positives, and additional processing of findings with AI to further reduce noise and provide tailored remediation guidance. As a result, Semgrep AppSec Platform findings are more actionable than those from any competing SAST, SCA, or Secrets scanning solution, making it possible for developers to fix the majority of issues they encounter. AppSec teams can then focus on long-term security improvements. That’s why industry leaders like Snowflake, Plaid, Figma, Lyft, and Dropbox rely on Semgrep to secure their software.
88 Kearny St
San Francisco, CA
USA