There has been some confusion and misinformation circulating about the recent changes to Semgrep Community Edition. I want to clarify what is, and isn’t, changing. The Semgrep engine license remains LGPL 2.1. Link in 🧵

Happy December, everyone! 🎄🎅 We’re kicking off the month with an exciting lineup of webinars! Check out whats coming up: 🗓️ December 3, 9AM PT: Adaptive Noise Canceling Meets Code Scanning. 👉 RSVP: https://t.co/Q2ZUnPibgO 🗓️ December 5, 9AM PT: How to Swim in The Ocean of

🎉 Big news: @semgrep made the 2025 #Cyber60 List by @FortuneMagazine & @lightspeedvp ! This honor highlights our mission to profoundly improve software security and reliability—and it’s all thanks to our incredible team pushing the boundaries every day. 🚀Huge shoutout to

🚀 Big news for Python devs! Semgrep Code’s latest update brings supercharged Python support with new framework-specific analysis. Now track implicit data flows in Django, FastAPI, Flask, and more! Check out how we're making Python code safer: https://t.co/kPXPAnwzb1

🚨 CONTEST ALERT! 🚨 Want to win 1 of 3 decks of 'Cards Against AppSec' by Tanya Janca? Simply RT this post and make sure you're following us to enter! ⏳ You have 48 hours—good luck! #AppSec #Giveaway #CardsAgainstAppSec

I’ll be speaking at BSides Singapore on September 20!

Security researchers and developers, @semgrep now supports Move on @Aptos with an initial set of security rules. Learn how to get started, report bugs, and help secure the Aptos ecosystem ⤵️ https://t.co/SxkvSPMHvD

We’re excited to share our updated Jira integration! Developers now get AI-generated remediation steps in tickets, making fixing issues easy. Semgrep can now auto-create tickets from high-priority issues, reducing overhead for tracking and triage. More:

New blog post and tool release: plORMbing your Prisma ORM with Time-based Attacks https://t.co/DfUfQR1yJq and https://t.co/eHlEWIRJWc

🚀 Exciting news! Introducing Semgrep Academy: your FREE ticket to mastering AppSec and more! 💻 Enroll now in our on-demand courses and elevate your skills! https://t.co/RsqOTdiVzd #SemgrepAcademy #FreeCourses #FreeAppSecCourses #Certification #AppSecCertification

What started as an April Fools joke turned into a great demo of Semgrep’s extensibility and scalability when it comes to adding support for new languages. Check out more about our GA support for CodeQL’s query language in @onefiftyman’s blog post: https://t.co/jARqn6Qg8N

Semgrep now supports C/C++ 🎉 https://t.co/KZQl1w7ONf

One of my "secret" techniques for code analysis in bug bounty (mostly parsing code leaked on GitHub) is manual semantic analysis, not just regex. I'm SUPER hyped @semgrep has added this to their flow. Check out the full blog on using it in the 2nd tweet below.

📢 The Secret’s out! We’re thrilled to share that Semgrep Secrets is available for Public Beta today! Secrets leverages Semantic Analysis in addition to regex and entropy-based validation to detect secrets with high precision. Learn more → https://t.co/1yZ4jsw3cP

@BSidesMunich 👜 Bring your own code and I will help you write Semgrep rules, live at the workshop! ✍ Sign up for my workshop on October 14 if you are interested. https://t.co/4aaN6w79oH

.@semgrep is on a mission to improve software security and reliability. In partnership with @Redpoint, Semgrep CTO & Co-Founder Drew Dennison shares how Semgrep uses its code scanning platform for finding first and third-party security vulnerabilities in code bases.

Go @semgrep!

Introduction to Semgrep Assistant - AI-assisted triaging and autofixes for insecure code #Semgrep #SAST #SemgrepProEngine #GPT https://t.co/iBHOMVU70L

New advisory: Ruby on Rails: Possible XSS via User Supplied Values to redirect_to (CVE-2023-28362)

📢 You won't want to miss this webinar on AI & security! Join @clintgibler, founder of @tldrsec and @DanielMiessler, founder of Unsupervised Learning as they discuss the impact AI, ML and LLMs will have on security teams and tools. Save your seat here: