About Semgrep
Semgrep's journey began with a clear and ambitious mission: to fundamentally improve software security and reliability. Founded in 2017 by Isaac Evans, Drew Dennison, and Luke O'Malley, the company, initially known as r2c, recognized a critical gap in the application security landscape. While large tech companies had the resources to build sophisticated, custom security tooling, many other organizations struggled with tools that were often noisy, difficult to integrate, and didn't align well with developer workflows. The founders envisioned a new approach, one that empowered developers to write secure code from the outset, rather than treating security as an afterthought or a bottleneck.
A pivotal moment in Semgrep's evolution was the decision to build upon and significantly enhance an open-source project called sgrep, which itself had roots in tools developed at Facebook. This commitment to open-source principles became a cornerstone of Semgrep's philosophy. By 2020, this revitalized project was launched as Semgrep, offering a powerful yet intuitive static analysis tool. The core idea was to make security analysis feel like a natural extension of a developer's existing toolkit – fast, customizable, and capable of understanding code semantics without requiring developers to become security experts. This developer-first approach quickly gained traction, attracting a vibrant community and adoption by leading technology companies. Semgrep's platform has since expanded to include solutions for Software Composition Analysis (SCA) and secrets detection, all integrated into a unified AppSec Platform designed to provide high-fidelity findings and streamline the process of securing code throughout the development lifecycle. The company continues to innovate, incorporating AI to further reduce false positives and provide actionable remediation advice, staying true to its founding goal of making robust application security accessible to all.
FAQs
- When was Semgrep founded?
- Semgrep was founded in 2017.
- Who is the CEO of Semgrep?
- Isaac Evans is the CEO.
- What industries or markets does Semgrep operate in?
- Semgrep operates in the following markets: Application Security, Software Development, DevSecOps, Static Application Security Testing (SAST), Developer Tools, Cybersecurity, Software Composition Analysis (SCA), Open Source Software, AI in Security, and Code Analysis.
- How many employees does Semgrep have?
- Semgrep has 51-200 employees.
- Where does Semgrep have employees?
- Semgrep has employees in United States.
- Is Semgrep hiring?
- Yes, Semgrep has 4 open remote jobs.
- Does Semgrep support remote work or working from home?
- Yes, Semgrep is a remote-friendly company.
- What employee benefits does Semgrep offer?
- Semgrep provides 4 benefits to their employees.
- Does Semgrep offer a four-day work week?
- No, Semgrep does not offer a four-day work week.
- Is Semgrep transparent about salaries?
- Yes, Semgrep practices salary transparency, often including salary or compensation ranges in their job posts. They provide salary data for 4 roles.
- What is Semgrep's tech stack?
- Semgrep has 7 technologies in their tech stack.
- What is Semgrep's website?
- Semgrep's website is semgrep.dev.
United States
