Work Here?
About
Semgrep offers a tool that helps security engineers and developers identify and fix vulnerabilities in their code before deployment. It integrates into existing workflows, providing actionable insights while significantly reducing false positives in open-source vulnerabilities by up to 98% through reachability analysis. The tool is designed for speed, with average scan times under 5 minutes, allowing teams to quickly address security issues. Semgrep aims to enhance the security of the software development life cycle (SDLC) and enable faster, safer application delivery.
Company Stage
Series C
Employees
51-200
Industries
Enterprise Software, Cybersecurity
Total Funding
$90.5M
Headquarters
San Francisco, California
Founded
2017
Simplify's Take
What believers are saying
- Increased demand for supply chain security tools due to high-profile cyberattacks.
- Growing trend of integrating security tools into CI/CD pipelines.
- Rise of DevSecOps practices creating a larger market for Semgrep.
What critics are saying
- Increased competition from new entrants like Snyk and GitGuardian.
- Potential over-reliance on open-source community for updates and improvements.
- Rapid evolution of programming languages may outpace Semgrep's detection capabilities.
What makes Semgrep unique
- Semgrep reduces false positives by 98% through reachability analysis.
- Average scan time is under 5 minutes, with median CI scan time at 10 seconds.
- Seamless integration into existing workflows and ticketing systems for actionable insights.
Help us improve and share your feedback! Did you find this helpful?
6 month growth
↑ 7%1 year growth
↑ 12%2 year growth
↑ 106%Semgrep is Hiring for 0 Jobs on Simplify!
Find jobs on Simplify and start your career today