See other companies on Otta


Security-focused code analysis service

21-100 employees
  • B2B
  • Artificial Intelligence
  • Analytics
  • SaaS
  • Cyber Security
San Francisco, California, 94108, US

Company mission

Semgrep's mission is to profoundly improve software security and reliability.

Top investors

140% employee growth in 12 months

Otta's take

Xav Kearney headshot

Xav Kearney

CTO of Otta

Semgrep is an open-source static analysis tool helping customers copyedit their software for security issues by checking it against relevant coding language rules. The company, formerly known as r2c, delivers this tool as a SaaS service, that aims to help companies take advantage of the security benefits it offers.

Focusing on software security could stand to be a lucrative approach, with security risks posing an ever-increasing threat as businesses move online. Within this avenue, however, Semgrep is looking to keep its focus broad. Instead of developing a language-specific search tool, it intends to keep its service customizable across different languages to fully take advantage of the flexibility of its tool.

With substantial funding at its back, the company released DeepSemgrep in 2022, fixing bugs and tightening its data analysis hit rate. It has also introduced "Semgrep Assistant", that enhances Semgrep's analysis capabilities with AI. If the company continues to expand and advance its software as it has done so far, it should continue to thrive, and is definitely one to watch in the coming years.


  • 401k plan
  • Company equity
  • Vision and dental insurance
  • Work from home opportunities
  • Health insurance

Company values

  • Mutual respect - We respect each other enough to tell the truth, no matter what. We share our concerns and disagreements openly, as well as our praise and appreciation. We are up-front with what we can deliver, and identify unattainable goals early. When we are unsure about something, we ask.
  • Mission driven - We believe we can make a positive impact on the world by empowering everyone to use static analysis. This means we design our tasks, projects, and initiatives in service of that mission, so that together as a team we can create something that truly makes a difference.
  • Honesty - Each member of our team honestly evaluates their work to understand its impact on our users, the company, and the community at large. The world evolves, and we do with it, even if that means giving up on a cherished project when it no longer makes sense.
  • Impact - Every team member prioritizes work that has the largest impact they can deliver on our users, each other, the company, and the world at large. We critically evaluate projects for impact, and discard work that does not deliver direct value.

Funding (last 2 of 3 rounds)

Apr 2023



Jul 2021




Total funding

This company has top investors


Having studied at MIT, Isaac worked as a Computer Scientist for the US Department of Defense. They were an Entrepreneur in Residence at Redpoint Ventures in 2016, founding Semgrep (originally r2c) in May 2017.