Original Post: scaling your AppSec impact just got easier
This quarter, Semgrep focused on enhancing their software security capabilities to make it easier for organizations to deploy and manage their code scanning solutions. Key updates include:
-
Managed Scanning: Simplified the implementation and scaling of code scans across multiple repositories with a cloud-based solution, reducing the need for extensive configuration and management.
-
Project-level RBAC (Role-Based Access Controls): Introduced to control access at the repository level, allowing security engineers to view and manage findings relevant only to their responsibilities, enhancing security and compliance.
-
New UI for Semgrep Supply Chain: Redesigned the user interface to streamline the experience, incorporating features like grouping vulnerabilities by rule, bulk triage, comprehensive filtering, and a unified API for better management of software supply chains.
- Improved Monorepo Support: Enhanced the ability to scan large monorepos in parts, improving performance and simplifying the management of security findings.
Additionally, Semgrep unified policies between Semgrep Secrets and Semgrep Code, improved cross-function analysis, and introduced other features such as code search, custom rules for secrets, and structure mode.
For detailed insights and to keep up with their latest updates, users can refer to their product updates page and other linked resources.
Go here to read the Original Post