Our great sponsors
-
semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
A more interesting comparison than with Coccinele is with semgrep (https://semgrep.dev/) since it also supports semantic/structural pattern matching over a number of languages, but also adds in a bunch of Boolean logic into the mix, as well as some more advanced semantic features like constant propagation.
Curious whether the teams behind these tools are aware of each other? I suppose it's unlikely that they're not.
[2] https://github.com/sourcegraph/sourcegraph/issues/new?assign...