"I just want to re-iterate that there's almost zero time between thinking ‘I should find code that looks like this’ and having a check that finds code that looks like that."
"Semgrep offers an intuitive rule engine interface that I haven’t seen in any other static code analysis tool Other tools are often poorly documented and difficult to write, understand, and maintain. Semgrep makes it easy to rewrite complex matchers into one or two simple rules that are easy to maintain by almost all engineers."