Original Post: Semgrep Fall ’23 Launch
This quarter, the focus at Semgrep has been on expanding language support and enhancing enterprise capabilities, alongside other updates:
-
Key Areas:
- Coverage: Improved language-agnostic analysis to support more languages/frameworks.
- Enterprise-fit: Enhanced integration with enterprise operational, compliance, and security frameworks.
- New Features:
- C# Support: Added in Semgrep Code (SAST) and Semgrep Supply Chain (SCA) for better vulnerability management.
- Language Coverage Updates:
- Swift: Beta support added.
- Rust: Now generally available.
- Dart: Experimental support introduced.
- IntelliJ IDE Plugin: Beta support for various IntelliJ products to improve integration into developer workflows.
- SBOM Export: Added support in Semgrep Supply Chain for exporting Software Bill of Materials (SBOM) in CycloneDX format with enriched vulnerability data.
- Semgrep Assistant GitLab Support: Extended autofix recommendations and coding assistance to GitLab in addition to GitHub.
These updates are aimed at enhancing the experience for both developers and security teams and reflect ongoing efforts to make Semgrep a comprehensive, enterprise-ready application security platform. More updates are expected in the future. To explore or get started, visit the Semgrep Cloud Platform.
Go here to read the Original Post