Jenkins Meetup

Integrating open source static analysis into Jenkins jobs
Pablo Estrada
Pablo Estrada
February 18, 2021
semgrep placeholder image

The Jenkins Online Meetup kindly invited us to present at their event on February 10th.

In the talk we presented Semgrep, the open-source static analysis tool that support 12+ languages and simplifies writing custom rules for organization-specific code patterns. We showed how to integrate Semgrep into a Jenkins Pipeline for scanning every commit or PR.

Here’s the video of the presentation and you can also download the slides.


Semgrep Logo

Semgrep is a fast, open-source, code scanning tool for finding bugs, detecting dependency vulnerabilities, and enforcing code standards.

Code scanning at ludicrous speed

Find bugs and enforce code standards