Find and fix the issues that matter in your code (SAST)
Find and fix reachable dependency vulnerabilities (SCA)
Find and fix hardcoded secrets with semantic analysis
Get triage and code fix recommendations from AI
Automate, manage, and enforce security across your organization
Find more true positives and fewer false positives with dataflow analysis
Stay up to date on changes to the Semgrep platform, big and small
Mitigate software supply chain risks
Increase security while accelerating development
Prevent the most critical web application security risks
Want to read all the docs? Start here
Get the latest news about Semgrep
See how Semgrep can save you time and money
Join the friendly Slack group to ask questions or share feedback
Join us at a Semgrep Event!
See why users love Semgrep
View our library of on-demand webinars
Semgrep at RSA 2025
Mon 4/28 - Thu 5/1Stop by Booth #2051 for live demos and giveaways, and get exclusive access to our pre-show party and Security Leadership Dinner!
Request and attend a live demo to get a signed copy of Cards Against AppSec and Tanya Janca's newest book: Alice & Bob Learn Secure Coding.
San Francisco, CA, United States
Apr 25, 2025
San Francisco, CA, United States
Apr 29, 2025
San Francisco
Apr 29, 2025
Tanya Janca Book Signing
Join us at booth 2051 to meet Tanya Janca and get a signed copy of her new book, Alice & Bob Learn Secure Coding!
Tanya will be conducting book signings for an hour on Tuesday Wednesday, and Thursday. Check out the schedule below for exact times!
Meet some of the Semgrep team at the ArmorCode Purple Book Club CISO networking event!
Kick off RSA and learn how Semgrep’s low-noise results and AI guidance across SAST, SCA, and Secrets can help you fix vulnerabilities early, speed up releases, and reduce risk
Join this interactive discussion at RSAC with Tanya Janca on maturing an Application Security Program! Are teams using a framework? If so, which one and why? Is it working, or has anyone found better alternatives? Which metrics are folks tracking and how are they doing? Participants will share challenges, successes, and strategies with their peers. For more information, or to add to your calendar, visit https://path.rsaconference.com/flow/rsac/us25/FullAgenda/page/catalog/session/1740530504533001VKQl
Visit us for custom live demos and to learn how Semgrep’s low-noise results and AI guidance across SAST, SCA, and Secrets can help you fix vulnerabilities early, speed up releases, and reduce risk
Join us at the booth from 1-2pm PT for a book signing with Tanya Janca! Meet Tanya and get a signed copy of her new book, Alice & Bob Learn Secure Coding!
Join Semgrep's executive team and AWS Deputy CISO, Paul Vixie, for an intimate dinner at The Angler overlooking the San Francisco Bay.
Visit us for custom live demos and to learn how Semgrep’s low-noise results and AI guidance across SAST, SCA, and Secrets can help you fix vulnerabilities early, speed up releases, and reduce risk
Join us at the booth from 10:30-11:30pm PT for a book signing with Tanya Janca! Meet Tanya and get a signed copy of her new book, Alice & Bob Learn Secure Coding!
Cybersecurity champion and ambassador programs can transform security culture, but what makes them thrive or fail? This expert panel including Tanya Janca will share real-world lessons, unexpected benefits and common errors on launching and sustaining effective programs. Whether attendees are starting from scratch or optimizing an existing initiative, they will leave with actionable insights for a successful program. For more information, or to add to your calendar, visit https://path.rsaconference.com/flow/rsac/us25/FullAgenda/page/catalog/session/1738010890880001h0pD
Wrap up RSA for custom live demos and to learn how Semgrep’s low-noise results and AI guidance across SAST, SCA, and Secrets can help you fix vulnerabilities early, speed up releases, and reduce risk
After 50 years of pen testing, it’s still hard to build secure systems. "Penetrate + patch" never worked. Shifting left, including threat modeling, is finally getting making headway. Securing LLMs is both challenging and painful because code and data are intermingled. This session with Tanya Janca will discuss how to deliver AI that’s secure by design, via threat modeling and achievable strategies. For more information, or to add to your calendar, visit https://path.rsaconference.com/flow/rsac/us25/FullAgenda/page/catalog/session/1726704719721001RWjL
Join us at the booth from 12:30 - 1:30pm PT for a book signing with Tanya Janca! Meet Tanya and get a signed copy of her new book, Alice & Bob Learn Secure Coding!
Request a meeting
Discover why top engineering teams trust Semgrep to secure their code early in the development process—without slowing down developer velocity.
Book time with our team at RSA, attend a live demo, and get a copy of Cards Against AppSec + a signed copy of Tanya Janca’s new book, Alice & Bob Learn Secure Coding!
