Semgrep Blog

Learn the latest trends in security research, secure coding, and application security news.

Categories

Latest posts

July 14, 2026
Miasma v3 Hit 4 AsyncAPI Packages — Did NPM's Defenses Work, or Just Get Dodged?
profile image profile image
Katie Paxton-Fear Max Vonblankenburg
July 13, 2026
Evaluating GPT-5.6 Luna, Terra, and Sol Against GPT-5.5 for AI Code Security
profile image profile image profile image
Brenden Noblitt Erik Buchanan Jayson DeLancey
July 10, 2026
You Can't Reverse Engineer Your Way Out of the AI Supply Chain Problem
profile image profile image profile image
Isaac Evans Cris Thomas (Space Rogue) Katie Paxton-Fear
July 8, 2026
So it's your first time at Hacker Summer Camp, and you want to make the most of it
profile image
Katie Paxton-Fear
July 7, 2026
AI-Native vs. AI-Washed: How to Tell the Difference in AppSec Tooling
profile image
Brandon Green
June 25, 2026
Black Hat USA 2026: A Space Rogue Survival Guide
profile image
Cris Thomas (Space Rogue)
June 23, 2026
Introducing Semgrep Guardian: Security for AI-Generated Code
profile image
Milan Williams
June 22, 2026
We have Mythos at Home: GLM 5.2 beats Claude in our Cyber Benchmarks
profile image profile image profile image profile image
Katie Paxton-Fear Seth Jaksik Brenden Noblitt Erik Buchanan
June 12, 2026
3.5x more true positives: How we benchmark AI-powered detection
profile image profile image profile image
Erik Buchanan Shelley Wu Pablo Estrada
June 11, 2026
RIP post/preinstall scripts: An obituary for the npm feature only TeamPCP will miss
profile image
Katie Paxton-Fear
June 10, 2026
Making Semgrep rip: How Ripgrep inspired us to shave hours off (some) scans
profile image
Ben Kettle
June 5, 2026
How We Cut Semgrep’s Taint Analysis Time by 75%
profile image
Austin Theriault
June 4, 2026
Miasma v2: Self-Spreading npm Worm Now Uses Malicious binding.gyp file and Compromises 57 Packages
profile image
Katie Paxton-Fear
June 2, 2026
Announcing Pyro Caml: A Continuous Profiler for OCaml
profile image
Austin Theriault
June 1, 2026
Forking Shai-Hulud: RedHat npm Packages Are The Next Victim After GitHub Actions Compromise and Worm
profile image
Katie Paxton-Fear
May 28, 2026
28 Years Later: Some Things Changed. The Important Stuff Didn't.
profile image
Cris Thomas (Space Rogue)
May 27, 2026
Security that Ships: The ROI of AppSec for Engineering Teams
profile image
Jayson DeLancey
May 22, 2026
The AI Hackathon Effect: Faster Builds, Better Demos, and Real Products
profile image
Cathy Polinsky
May 19, 2026
Getting Ready for Mythos with Semgrep
profile image
Edwin Amador Artiles
May 19, 2026
Why Do Worms Work
profile image
Katie Paxton-Fear