Semgrep 101
Dive into the fundamentals of static code analysis, software supply chain security, and secret scanning with Semgrep in this introductory course.
Course introduction
What's in this course?
Your professors
What is SAST? (Static Analysis)
What is First Generation SAST?
What is Next Generation SAST?
Why Semgrep Code?
SAST Strategies That Work
Selecting a SAST
10 Company-Specific Checks
Rolling out SAST Manually
Rolling out a SAST in a CI
Semgrep Code Demo
Software Supply Chain Security overview
What is 'Reachability'?
Why Semgrep Supply Chain?
Semgrep Supply Chain Demo
What are Secrets?
Secrets Rollout Strategy
Why Semgrep Secrets?
Semgrep Secrets Demo
When to Use SAST, SCA, and Secrets in the SDLC
Making an account to try it yourself, for free!
Course Conclusion
Semgrep Resources
Course Survey
Thank you for attending Semgrep Academy
Check out what other students have to say!
It Was great
It Was great
Read Less