Semgrep

AI-powered AppSec platform combining deterministic SAST/SCA/Secrets scanning with LLM reasoning (Semgrep Multimodal, March 2026). Integrates directly into developer and AI agent workflows via MCP server for Claude Code, Cursor, and Windsurf. Auto-triage achieves 96% researcher agreement; Autofix generates PR-level remediation suggestions. SOC 2 Type II certified with SSO, RBAC, and zero-data-retention AI agreements. 18K+ orgs including Snowflake, Figma, Lyft. $204M funded (Sequoia, Menlo, Lightspeed). Note: Opengrep fork (Jan 2025) created competitive open-source alternative after license controversy, but Semgrep's commercial business and customer base continued growing.