Semgrep, a leader in the field of Application Security, announced the successful closing of $100 million in Series D funding, led by Menlo Ventures. Existing investors—including Felicis Ventures, Harpoon Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital—also participated in this round, bringing Semgrep’s total funding to $204 million to date.
Semgrep is addressing a critical challenge for modern development teams: the inefficiency and noise of traditional code scanners. Customers and security leaders have expressed frustration with current solutions, which tend to be ineffective, slow down developers, and are challenging to operationalize. In response, Semgrep’s Application Security (AppSec) Platform empowers organizations to establish Secure Guardrails, helping them transition from conventional risk management to proactive security engineering. The platform is designed to meet the demands of increasingly complex codebases while enabling faster development cycles.
Semgrep’s AppSec Platform stands out by focusing on three core capabilities:
- Market-leading signal-to-noise ratio and prioritization for more accurate threat detection.
- Developer-friendly product features that maintain high productivity and a positive perception of security.
- Affordable solutions that make effective AppSec programs accessible to organizations of all sizes.
Also Read: Zuora Gets into Definitive Agreement to be Taken Over by Silver Lake and GIC For USD 1.7 Billion
Isaac Evans, CEO of Semgrep, stated, “The era of AI in security has arrived, and Semgrep is uniquely equipped to help organizations secure their code without compromising on development speed. Our platform enables businesses to build an AppSec program that is cost-effective, secure, and agile.”
Matt Murphy, Partner at Menlo Ventures and newly appointed Semgrep board member, added, “AI is transforming every facet of technology, and Semgrep’s autonomous approach to code security is a prime example of how AI can reshape application security. The combination of Semgrep’s AI-powered platform and deep security expertise positions the company as a leader in the rapidly growing security market.”
AI Enhancements to Expand Semgrep’s Impact
As security teams continue to be overwhelmed by the growing volume of code that needs protection, Semgrep has introduced Semgrep Assistant—a cutting-edge solution launched just two weeks ago. Powered by large language models (LLM), Semgrep Assistant learns from an organization’s software development life cycle, automatically identifying, triaging, prioritizing, and addressing the most critical security vulnerabilities. This AI-driven agent functions as an intelligent AppSec engineer, converting discovered security flaws into secure guardrails and enabling developers to write secure code without slowing down development timelines.
Strategic Growth and Leadership Initiatives
Since its Series C round in April 2023, Semgrep has significantly advanced its technology stack. The company’s AppSec platform now includes an integrated suite of products, such as Static Application Security Testing (SAST), Software Composition Analysis (SCA), and Secrets management, serving hundreds of customers worldwide.
To support its expansion, Semgrep has also made key leadership appointments. Garrett Souza, previously SVP Americas at Matillion and Enterprise Sales Leader at Snyk, has joined Semgrep as Vice President of Sales. Additionally, Mark McLaughlin, former CEO of Palo Alto Networks, has come on board as an Angel Investor and Advisor.
Future Plans and Vision
Semgrep intends to leverage its latest round of funding to accelerate growth in several strategic areas. In 2025 and beyond, the company will focus on hiring world-class talent in AI and program analysis to further enhance its competitive edge. Additionally, Semgrep plans to raise awareness of its product offering among a broader audience beyond security practitioners. The funds will also support the expansion of its Go-To-Market team, with new hires and advisors from high-profile organizations like Hashicorp, Elasticsearch, and Snyk. Semgrep’s unique position at the intersection of open-source software (OSS) and security provides an exciting opportunity to expand its impact in the industry.