The Jenkins Online Meetup kindly invited us to present at their event on February 10th.
In the talk we presented Semgrep, the open-source static analysis tool that support 12+ languages and simplifies writing custom rules for organization-specific code patterns. We showed how to integrate Semgrep into a Jenkins Pipeline for scanning every commit or PR.
Here’s the video of the presentation and you can also download the slides.
Semgrep is a fast, open-source, code scanning tool for finding bugs, detecting dependency vulnerabilities, and enforcing code standards.