Semgrep provides an end-to-end code analysis platform that combines static, dynamic, and software composition scanning in one tool. Created by program analysis experts like Isaac Evans, founding CEO of Code Climate, and Drew Dennison, who previously led engineering efforts at Palantir applying machine learning to defense systems.
The key innovation is an open source analysis engine able to surface crucial risks and best practices traditional tools miss. With expansive language support, thousands of security rules, and tight integration into development workflows, Semgrep enables fast time-to-value even at substantial scale.
As a prospective hire to this rapidly expanding team, you would help shape the product experience and culture serving major customers like Lyft, Spotify, and Intuit. However, as adoption increases, prioritizing user-friendly custom rule writing will be key to staying ahead of large incumbents catching up. With strong open source adoption and $93 million from top-tier investors, Semgrep is strategically positioned to transform application security into a developer-focused practice.
Apr 18 2023
Massachusetts Institute of Technology
Stripe, Snowflake, Twilio
WhatsApp, Zoom, Apple