Semgrep
What's It Like to Work at Semgrep?
This page summarizes recurring themes identified from responses generated by popular LLMs to common candidate questions about Semgrep and has not been reviewed or approved by Semgrep.
What's it like to work at Semgrep?
Strengths in funding momentum, industry visibility, and rapid product innovation are accompanied by tensions around open-source licensing values, the pace of change, and known product tradeoffs. Together, these dynamics suggest a well-funded, fast-moving environment suited to builders comfortable with open-core debates and evolving roadmaps, while those seeking OSS purity or steadier pace may be cautious.
Key Insight for Candidates
Defining tradeoff: Semgrep’s high‑velocity, remote‑first growth and open‑core model versus community backlash from its 2024–25 licensing shift and fork. This shapes reputation and daily work. Candidates should be comfortable shipping fast while navigating OSS skepticism and clearly explaining the product/roadmap stance to users.Evidence in Action
- Users Are The Judge — The "Users are the judge" value is documented as a core principle and reinforced through product updates and community programs. Focusing on measurable developer outcomes builds external credibility, making shipped work visible and boosting each employee’s professional reputation.
- Embrace Debate Culture — The "Embrace debate" value is codified in culture materials and internal norms emphasizing open, direct challenge of ideas. This candor accelerates decisions and sharpens external messaging, signaling a high-bar environment that raises employees’ market reputations and networking leverage.
Positive Themes About Semgrep
-
Market Position & Stability: Recent late-stage funding and inclusion in major industry reports, alongside ongoing product releases and visible customer adoption, signal strong momentum and runway. Public trackers indicate sufficient resources to scale while maintaining a small-company pace.
-
Innovation & Products: Frequent launches across SAST, SCA, and AI-assisted capabilities point to a fast-moving, technically ambitious platform. Roles involve combining static analysis with LLM reasoning, appealing to those interested in applied program analysis and AI.
-
Work-Life Balance: A remote-first setup with flexibility and encouraged time off is emphasized on the careers materials. Firsthand accounts describe balanced hours that counter typical startup stereotypes.
Considerations About Semgrep
-
Values Gap: Changes to open-source licensing for rules and the resulting community fork created controversy in parts of the security ecosystem. Individuals who prioritize fully open rulesets may view this as a misalignment with open-source roots.
-
Change Fatigue: Rapid iteration and evolving packaging between OSS and commercial tiers can create product-change fatigue, especially in customer-facing functions. Fast-changing priorities in a competitive space require comfort with ambiguity.
-
Product Weaknesses: Developers sometimes cite false positives or limits depending on rulesets and project complexity. Practitioner debates suggest areas where alternative tools or AI-first vendors may outperform, keeping accuracy and noise under scrutiny.
NEW
What does AI tell candidates about your employer brand?
Get your free AI reputation report today.
See AI Report
Semgrep Insights
Is This Your Company?
Claim Profile
