Sign InProduct SupportContact Us
BlogsecuritySlack on scaling static analysis with Semgrep

Slack on scaling static analysis with Semgrep

Slack’s DEF CON 29 AppSec Village presentation

In this video, Erin Browning and Tim Faraci from Slack present at DEF CON 29 AppSec Village. Highlights include:

  • Keeping developers happy with fast scan results

  • Thinking beyond the compliance checkbox

  • Dealing with false positives

  • Integrating scanning into the developer and security workflows

  • Calibrating metrics and performance targets

Enjoy!

About

Semgrep Logo

Semgrep lets security teams partner with developers and shift left organically, without introducing friction. Semgrep gives security teams confidence that they are only surfacing true, actionable issues to developers, and makes it easy for developers to fix these issues in their existing environments.

Featured posts from the Semgrep blog, written by our engineering team:

What it takes to make shift left work - blog post thumbnailBest practices

April 16, 20243 min read

What it takes to make shift left work
Isaac EvansIsaac Evans
Auto-fix remediation guidanceSecurity

January 17, 20235 min read

10x your AppSec program with Semgrep Assistant
Chushi LiChushi Li
Photo by Andrik Langfield on UnsplashSecurity

January 17, 20248 min read

Comparing Reachability Analysis methods: Semgrep's distinct approach
Kyle KellyKyle Kelly

Find and fix the issues that matter before build time

Semgrep helps organizations shift left without the developer productivity tax.

Get started in minutesBook a demo
Semgrep Logo

Make shift left work

4.5 Stars

Products

Semgrep Code
Semgrep Supply Chain
Semgrep Cloud Platform
Semgrep Pro Engine

Community

Blog

Resources

Docs
ROI Calculator
Pricing
Getting Started With Semgrep
Registry
Playground
Book a demo
Help Center

Company

About
Careers
Contact us
Twitter-logo-greenSlack-logo-greenGitHub-logo-greenYoutube-logo-green

© 2024 Semgrep, Inc. Semgrep is a registered trademark of Semgrep, Inc.

TermsPrivacy