Original Post: Silicon Valley Cyber Security: Detect complex code patterns using semantic grep
The Silicon Valley Cyber Security Meetup hosted a virtual event, “Talkin’ Security,” on April 9th, where a presentation about “semgrep” was given. “Semgrep” is a multilingual program analysis tool for writing security and correctness queries on source code in languages like Python, Java, Go, C, and JavaScript. Developed by Yoann Padioleau, who previously created “Coccinelle” for Linux kernel refactoring and “sgrep” at Facebook, he now works with r2c, the organization currently developing semgrep. The meetup provided a recording of the presentation and the slides are available for download.
Go here to read the Original Post