Summary: In December 2024, Semgrep rebranded its OSS SAST tool to Semgrep Community Edition and adjusted its licensing policies, moving key features to its commercial offerings. In response, Endor Labs and other security vendors formed Opengrep, a new community-driven fork aimed at preserving true open source principles. Opengrep promises enhanced features, such as a more capable scanning engine and community rules that are not tied to any specific vendor.
Affected: Semgrep, Endor Labs, Opengrep, application security community
Keypoints :
- Semgrep OSS rebranded to Semgrep Community Edition, indicating a shift away from open source.
- Opengrep, backed by multiple security vendors, aims to be a genuine open source alternative.
- New Opengrep features include an accessible scanning engine and the ability to transfer community rules across different security platforms.
Source: https://www.securityweek.com/endor-labs-and-allies-launch-opengrep-reviving-true-oss-for-sast/