Semgrep named Cool Vendor by Gartner #Semgrep #SAST #SCA #Secrets #SemgrepProEngine https://t.co/mPBq7JvG5Y

🗓️ On Nov 26 at 9AM PT, join @InsiderPhD, Staff Security Advocate (@semgrep) and @AubreyKingF5, Community Evangelist (@F5) for a live conversation about some of the most controversial ideas shaping our industry. No slides. No scripts. Just two security pros debating questions

🚀 AI-powered detection is coming to Semgrep. We’re launching Semgrep AI-powered detection — a first-of-its-kind hybrid of deterministic scanning and AI that finds vulnerabilities like IDORs and business logic flaws that other tools miss. Our Private Beta opens today, and spots

Tired of wasting time on false positives during AppSec triage? Join Jamie Reid on November 20 at 10:00 AM PT for Real-World Applications of Semgrep Memories: How Customers Are Using AI to Eliminate False Positives. In this live session, you’ll hear how real Semgrep customers

AI can reason, but can it secure? Our new research explores how LLMs handle IDOR detection. They find real flaws, but still need human judgment to scale securely. Read more 👉 https://t.co/7vgx2Jbjw8 #AppSec #AI #Security

Recently, we hosted our 2025 Semgrep Customer Advisory Board! 🎉 At Semgrep, we know that our users are the judge. Their feedback, ideas, and experiences help shape everything we build. Thank you to everyone who took the time to join us and share your insights. From roadmap

🔐 Cyber threats in Europe aren’t slowing down; they’re evolving. The EU’s Cybersecurity Threat Landscape 2025 shows attackers converging, automating, and industrializing their methods, from AI-driven phishing to state-sponsored ransomware. 💡 Phishing is still the #1 entry

RT @semgrep: 🎉 We’ve made this year’s #Cyber60 List, presented by @lightspeedvp, @FortuneMagazine, and @AWSstartups! It’s an honor to be…

🚫 Stop AI code risks before they ship. Join @semgrep + @PaloAltoNtwks for a hands-on workshop on November 5 from 5–7pm EST at the Westin Downtown in Washington, D.C. during OWASP Global AppSec (no badge required). In this interactive session, you’ll learn how @cortexbypanw

This Halloween, join @InsiderPhD as we venture through the haunted corridors of global security regulations. From GDPR’s ghostly fines to PCI DSS 4.0’s cryptic controls, we’re ranking the scariest data-protection and finance frameworks by how much they’ll make your security team

Last week, we celebrated an exciting milestone, moving into our new office! 🎉 We’ve been growing quickly, and it was time for an upgraded space to match the incredible momentum of our team. A huge highlight of the day was welcoming special guest @DanielLurie, Mayor of San

Join @InsiderPhD this Halloween for a chilling tour through the haunted corridors of global security regulations! As we wrap up Cybersecurity Awareness Month, we’ll rank the world’s most fearsome data-protection and finance regs by consumer protection, flexibility, clarity, and

🚀 Join us tomorrow for the Semgrep Community Edition (Fall Release) webinar! We’ll be walking through the latest Semgrep CE updates, sharing key milestones, and giving a peek at what’s ahead on the roadmap. ✨ Highlights include: 1️⃣ Cross-platform support (Mac, Linux,

One finding. One view. One source of truth. 🔍 When static and dynamic testing work in silos, AppSec teams spend hours reconciling duplicate alerts. ⏱️ The new @semgrep + @StackHawk integration automatically correlates SAST and DAST results, linking code-level findings with

Semgrep Managed Scanning (SMS) is changing how teams adopt and scale SAST, SCA, and Secrets detection. No CI/CD setup, no infrastructure headaches, just fast, reliable security at enterprise scale. By running scans securely on Semgrep’s cloud infrastructure, SMS gives teams a

Heading to OWASP Global AppSec US in D.C.? Join @PaloAltoNtwks + @semgrep for our hands-on interactive workshop: Securing AI-Generated Code with @cortexbypanw & Semgrep. 📍 Nov 5, 5–7pm EST | Westin DC, Downtown (across from OWASP Global AppSec) ⚡ Learn how to detect,

Security shouldn’t slow you down. But too often, devs and AppSec teams face friction, false positives, and heavy infra costs that make it hard to scale securely. Join us tomorrow, October 15th at 10AM PT to see how the right tools can change that. We’ll cover how to: ✅ Offload

The new @Gartner_inc Magic Quadrant for Application Security Testing just dropped. See why Semgrep was recognized and download your complimentary copy of the report → https://t.co/dsbw2w3Kk8 #AppSec #InfoSec #Cybersecurity #AI

Palo Alto Networks × Semgrep: advancing contextual AppSec Our partners at @PaloAltoNtwks just published a great piece on how integrating Cortex Cloud with Semgrep helps security teams connect code-level findings to real runtime risk. By combining Semgrep’s precise static

We’ve got three great webinars coming up next week, and there’s something for everyone! 🙌 📅 October 15 | 10 AM PT Startup to Scale-Up: Code Security That Grows With You Learn how fast-growing dev teams are scaling securely with Semgrep’s AI-driven detection and managed scans

Additional new npm packages were compromised yesterday, this time using secret scanning tools themselves in a post install script to gather and exfiltrate credentials. The Shai Hulud worm works similar to the Nx attack, but can potentially cascade additional compromised packages