Semgrep Supply Chain announces dataflow reachability support for 10 languages

Semgrep Supply Chain has expanded its dataflow reachability coverage to include Scala and Swift, enhancing its support to a total of 10 languages and significantly reducing false positives, which saves developers time by focusing on critical security risks. This positions Semgrep Supply Chain as a leader in reachability coverage, offering both breadth and depth in identifying how libraries are used and assessing potential vulnerabilities. Scala, a popular functional programming language, benefits from running on the Java Virtual Machine despite inheriting some vulnerabilities, while Swift, known for developing mobile applications, faces issues from open-source dependencies. Semgrep ensures comprehensive rule coverage for critical vulnerabilities in both languages and plans to continue expanding its language support based on customer feedback and global language trends. The company emphasizes its commitment to covering historical vulnerabilities and maintaining robust partnerships with customers to address evolving needs. Users are encouraged to explore the enhanced reachability features and provide feedback on their experience.