Semgrep

San Francisco, CA, USA

Founded 2017

Semgrep is a lightweight static analysis tool designed to help developers find bugs, enforce coding standards, and improve security in their codebases. Unlike traditional static analysis tools, Semgrep is fast, easy to configure, and works across multiple programming languages.

Websites:

https://semgrep.dev/

Last Updated: May 10, 2025

Current Valuation

No valuation data available

Funding Summary

$193M

Total reported funding

Recent Headlines

OSS News & Views

April 30, 2026

AppSec Santa: OpenGrep vs Semgrep (2026): Fork vs Upstream Comparison

Media Mention

April 25, 2026

TipRanks: Semgrep – Weekly Recap - TipRanks.com

Announcement

April 17, 2026

Semgrep Blog: Semgrep chosen to be part of OpenAI's Trusted Access for Cyber Program

Announcement

April 14, 2026

Merito: Semgrep AppSec Platform Update (April 2026): AI Detection, Autofix, And Enterprise Governance

Announcement

March 19, 2026

BusinessWire: Semgrep Launches Multimodal, Combining AI Reasoning With Rule-Based Analysis for Detection, Triage, and Remediation

Showing 1-5 of 12 headlines

Page 1 of 3

Key People

Drew Dennison

Co-Founder & CTOFounder

LinkedIn Profile

Isaac Evans

Co-Founder & CTOFounder

LinkedIn Profile

Core OSS Projects

Semgrep

Repository Docs

Semgrep is a fast, open-source, static analysis tool that searches code, finds bugs, and enforces secure guardrails and coding standards. Semgrep supports 30+ languages and can run in an IDE, as a pre-commit check, and as part of CI/CD workflows.

License: LGPL-2.1

Business Information

Industries

Data & Analytics

Technologies

Developer Tools

Software Supply Chain Security

AI/ML

Sectors

EnterpriseSMBs

Licenses

LGPL-2.1

Cossmology Badge

Showcase your company's presence on Cossmology by embedding a custom badge on your website or GitHub repository.

COSS Weekly Newsletter

Stay up to date with the latest news, funding rounds, and announcements from the COSS universe.

Check out COSS Weekly on the web