Introducing Semgrep Custom Workflows

Operationalize AI alongside deterministic analysis to automate code security workflows you can build, test, and deploy at scale.

profile image
Vivek Khimani
linkedin logo
profile image
Braden Riggs
linkedin logo
March 18th, 2026
Share
x logo facebook logo linkedin logo copy icon

AI can find code security vulnerabilities that traditional tooling can't. Business logic flaws, IDORs, broken access control. These are vulnerability classes that have historically required a human reviewer to identify. Semgrep has been evaluating AI's performance on these kinds of problems, and early results show that AI can catch what pattern matching misses. For many organizations, these are also the vulnerability classes that command significant bug bounty payouts.

The capability is real. But putting AI into production for code security introduces operational challenges that are worth understanding:

  • Variable costs. Token spend is hard to predict, hard to budget for, and has the potential to grow.

  • Inconsistent output. Outputs vary between runs. You can't reproduce results, which breaks trust, compliance, and review workflows.

  • No auditability. Information goes in, a result comes out, and you can't trace the reasoning path.

  • Hallucinations. False positives from AI erode the developer trust that security teams depend on.

  • Scale. What works in a proof of concept doesn't automatically work across your full repository fleet. Running AI org-wide means solving for latency, orchestration, observability, and cost simultaneously. On large repos, sequential execution can't keep pace with PR volume, and most teams don't have the infrastructure to parallelize it.

We've heard these concerns consistently from teams exploring AI for AppSec and the pressure to solve them is growing. Developers using AI coding assistants are shipping more code and more PRs, and vulnerability volume is growing with it. Manual review alone can't keep up. The question isn't whether to bring AI into your security program. It's how to do it in a way that's accountable, cost-efficient, and reproducible.

The tradeoff between tools and AI

Most AppSec teams today rely on deterministic tools. As they evaluate how to bring AI into their programs, they're facing a tradeoff.

Deterministic tools like Semgrep's analysis engine are fast, consistent, and cheap to run. But they have a capability ceiling. They operate on syntax and data flow, not semantics. They can't reason about business logic, evaluate authorization models, or assess whether a finding is actually exploitable in context.

AI has shown it can handle these kinds of tasks. But it's expensive, inconsistent, and hard to audit.

Teams that try to combine the two on their own end up wrapping APIs that weren't designed for security automation, building custom orchestration layers, and maintaining infrastructure they didn't plan for. That approach doesn't scale to hundreds of repositories and thousands of developers.

Semgrep Workflows solves this by giving teams a programmable platform to combine deterministic analysis and AI into pipelines that are testable, auditable, and cost-controlled, with managed infrastructure that scales across your full repository fleet.

From custom rules to custom workflows

Semgrep was built on a core belief: no vendor can foresee every company's code security needs. Customization is essential, and it must be simple yet powerful. Semgrep Custom Rules brought that philosophy to vulnerability detection. Today, Semgrep infrastructure processes millions of code scans a week, with thousands of teams using custom rules to encode exactly what vulnerabilities and anti-patterns uniquely matter in their codebase.

Custom Workflows extends this philosophy across the entire code security loop: what gets detected, how findings are triaged, how they're validated, and how they get resolved. Each workflow is a multi-step pipeline where deterministic tools handle code scanning, policy checks, and validation, while AI steps handle tasks that require reasoning over code context: classifying whether a finding is exploitable, synthesizing evidence across files, or even generating a fix.

Semgrep's own Multimodal detection is a Workflow built on this platform. It uses the Pro Engine's taint analysis to trace where user input flows into sensitive operations like database queries or API responses, then passes that analysis to an LLM that reasons about whether authorization checks are missing along those paths. That combination finds business-logic vulnerabilities like IDORs and broken access control that neither static analysis nor LLMs catch reliably on their own. Our research found that Semgrep’s Workflow-based approach to IDOR detection produced 8× more true positives and 50% fewer false positives than an LLM-only baseline, where 88% of findings were false positives.

The same platform that powers Multimodal detection is now available in Private Beta for teams to build their own Custom Workflows.

How it works

Workflows are defined in code. It's a Python SDK that gives workflow writers your normal development environment, and your favorite coding LLMs.Think of it as programmable CI for security: instead of stitching together scripts and API calls, you define typed, testable pipeline steps in a real development environment. At a high level, each workflow defines:

  1. Triggers. What starts the workflow: PR events, scheduled scans, webhooks, or API calls.

  2. Steps. Methods with typed inputs and outputs that run in parallel or sequentially. Each step maps to any tool in the library: Semgrep's analysis engines, LLMs, dev tools like git, or even your own custom tools.

Outcomes. Structured results delivered into the systems your team already uses: Jira, Slack, GitHub, or the Semgrep dashboard.

Architecture diagram showing how a Semgrep Workflow executes. User-authored workflow code feeds into a workflow execution pipeline where steps run in parallel or sequence, each capable of using tools like LLMs, Semgrep scans, or custom logic. Results route to integrations including GitHub PRs, Jira tickets, Slack notifications, and the Semgrep Dashboard. The underlying Semgrep infrastructure handles orchestration, parallelization, error handling, private deployment, and monitoring, scaling to over 100,000 repos.

You develop and debug locally using the CLI, running the same code that will run in production. When ready, you deploy onto Semgrep's managed infrastructure, which parallelizes execution across your repository fleet so workflows run fast, even at scale. Built-in retries, orchestration, observability, cost controls, and logging mean you can see what ran, what it cost, and what failed. No infrastructure to build, maintain, or optimize.

Every step produces a traceable output. When an AI step classifies a finding, you can inspect the deterministic steps that fed it: which scan produced the finding, what code context was gathered, what policy was applied. Workflows are plain Python, so AI coding assistants can help write and extend them with ease.

Diagram showing Semgrep Workflows in four steps: (1) Write workflow code using Python decorators like @step and @tool(llm), (2) Run and trace locally with semgrep workflow run, inspecting step outputs and debugging with full traces, (3) Deploy and fan out with semgrep workflow deploy to run the same code unchanged across repos and monorepos via the Semgrep Runtime, (4) Deliver results where teams work, including the Semgrep Platform, GitHub, Jira, Slack, and API, as findings, code fixes, PRs, remediation guidance, and notifications.

How are AppSec teams benefiting from Workflows today? 

Semgrep's own triage, Multimodal detection, and Autofix capabilities are all built as workflows on this platform. They run across thousands of customer repositories in production today, and the results speak for themselves:

Three performance cards for Semgrep Workflows: Triage workflow shows 96% security analyst agreement rate on evaluated findings, filtering false positives before human review. IDOR/auth workflow shows 8x more true positives and 50% fewer false positives versus LLM-only or baseline approaches, using code context, application analysis, and targeted reasoning. Autofix workflow shows 30 minutes saved per finding on average and 22% faster median time to resolution versus baseline, shifting developer effort from writing fixes to reviewing AI-generated patches.

The same SDK, tools, and managed infrastructure behind these results is what ships in the private beta. Teams can build workflows for custom detection, triage, validation, remediation, and policy automation.

Here are some Custom Workflows teams are building today

Workflows is in early private beta with a group of design partners. Here's a sample of what they're already building:

  1. Cross-file privilege escalation detection. One of our design partners built a workflow that compares access control configurations across languages, then uses an LLM to verify whether the vulnerability is reachable. Traditional scanners miss this class of bug entirely because it only exists in the relationship between separate config files.

  2. Binary firmware analysis. One design partner receives only compiled binaries from a vendor. Their workflow decompiles firmware using Ghidra, then runs Semgrep analysis on the decompiled output to find vulnerabilities in code they never see as source.

  3. Workflow code review. Our engineers started building so many workflows, internally and for customers, that we needed a workflow to review the workflows. On every PR that modifies a workflow definition, an LLM-assisted check enforces our internal guidelines and posts findings as PR comments.

What comes next

The next phase of application security is not human-out-of-the-loop automation. It is always-on, reviewable automation.

More security work will happen continuously: detection, validation, triage, and remediation running across repositories before a human looks at every result. That only works if the automation is reproducible, observable, and easy to audit.

Workflows gives teams a way to encode repeatable security logic, run it continuously, and keep humans in control of policy, review, and exceptions. 

Semgrep Custom Workflows is now in private beta. Sign up for early access.

Privacy Policy

About

semgrep logo

Semgrep enables teams to use industry-leading AI-assisted static application security testing (SAST), supply chain dependency scanning (SCA), and secrets detection. The Semgrep AppSec Platform is built for teams that struggle with noise by helping development teams apply secure coding practices.

Dive deeper into or continue reading our featured posts.

March 18, 2026
Introducing Semgrep Custom Workflows
profile image profile image
Vivek Khimani Braden Riggs
March 16, 2026
Accelerate and Automate Remediation with Semgrep Autofix
profile image profile image
Nabeel Saeed Braden Riggs
January 27, 2026
New Sandbox Escape Affecting Popular nodejs Sandbox library vm2
profile image profile image
Katie Paxton-Fear Kurt Boberg

Find and fix the issues that matter before build time

Semgrep helps organizations shift left without the developer productivity tax.
Get started in minutes Book a demo