Semgrep’s Rebranding Blunder: Opengrep Rises to Save True Open Source!

Semgrep has rebranded its OSS static application security testing tool as Semgrep Community Edition, shifting away from open source principles. In response, a new consortium-backed fork, Opengrep, emerges to maintain a genuine OSS SAST tool, with backing from multiple security vendors. Opengrep promises enhanced scanning, improved rules, and vendor independence.

3P
Published: January 27, 2025 3:12 pmAdded: January 27, 2025 at 7:42 amAssembled by: The Editor
Pro Dashboard

Hot Take:

In the ever-twisting saga of tech tools, Semgrep just pulled a name switcheroo, leaving the open-source party and strutting into the glitzy world of commercialism. But fear not, here comes Opengrep, riding in on a white horse, ready to save the day and the developer community from a fate worse than a 404 error!

Key Points:

  • Semgrep rebranded its OSS tool to Semgrep Community Edition and moved some features to its commercial offerings.
  • Key features such as tracking ignores, fingerprinting, and meta-variables are now exclusive to Semgrep’s SaaS platform.
  • Opengrep, backed by over ten security vendors, emerges as a true OSS alternative to Semgrep.
  • Opengrep offers a more capable scanning engine, backward compatibility, and long-term assurance of community rules.
  • Endor Labs highlights the importance of maintaining a standardized, open-source SAST engine for all.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?