Semmle

Semmle
Type of business	Subsidiary
Founded	December 2006 in Oxford, England
Headquarters	San Francisco, California, U.S.
Founder(s)	Oege de Moor
Key people	Oege de Moor, Pavel Avgustinov, Julian Tibble
Industry	Software analysis
Products	Code analysis software and services
Parent	GitHub (2019–present)
URL	semmle.com[dead link‍]

Semmle Inc is a code-analysis platform; Semmle was acquired by GitHub (itself owned by Microsoft) on 18 September 2019 for an undisclosed amount.^[2] Semmle's LGTM technology automates code review, tracks developer contributions, and flags software security issues.^[2] The LGTM platform leverages the CodeQL query engine (formerly QL)^[3] to perform semantic analysis on software code bases. GitHub aims to integrate Semmle technology to provide continuous vulnerability detection services.^[4] In November 2019, use of CodeQL was made free for research and open source.^[5] CodeQL either shares a direct pedigree with .QL (dot-que-ell), which derives from the Datalog family tree, or is an evolution of similar technology.^{[clarification needed]}

SemmleCode is an object-oriented query language for deductive databases developed by Semmle. It is distinguished within this class by its support for recursive query.

^ "GitHub acquires Semmle to help developers spot code exploits". venturebeat.com. 18 September 2019. Retrieved 20 September 2019.
^ ^a ^b Lardinois, Frederic (18 September 2019). "GitHub acquires code analysis tool Semmle". techcrunch.com. TechCrunch. Retrieved 13 March 2021.
^ "Introducing CodeQL". semmle.com. Semmle. September 2019. Retrieved 13 March 2021. the 'QL' product and tooling has been renamed to CodeQL ... what was previously called a 'QL snapshot' is now a CodeQL database.
^ De Simone, Sergio (19 September 2019). "GitHub to Integrate Semmle Code Analysis for Continuous Vulnerability Detection". infoq. InfoQ. Retrieved 13 March 2021.
^ Krill, Paul (15 November 2019). "GitHub makes CodeQL free for research and open source". infoworld.com. InfoWorld. Retrieved 13 March 2021.

[1] "GitHub acquires Semmle to help developers spot code exploits". venturebeat.com. 18 September 2019. Retrieved 20 September 2019.

[Lardinois2019-2] Lardinois, Frederic (18 September 2019). "GitHub acquires code analysis tool Semmle". techcrunch.com. TechCrunch. Retrieved 13 March 2021.

[Anonablurb2019-3] "Introducing CodeQL". semmle.com. Semmle. September 2019. Retrieved 13 March 2021. the 'QL' product and tooling has been renamed to CodeQL ... what was previously called a 'QL snapshot' is now a CodeQL database.

[4] De Simone, Sergio (19 September 2019). "GitHub to Integrate Semmle Code Analysis for Continuous Vulnerability Detection". infoq. InfoQ. Retrieved 13 March 2021.

[5] Krill, Paul (15 November 2019). "GitHub makes CodeQL free for research and open source". infoworld.com. InfoWorld. Retrieved 13 March 2021.

[1]

[2]

[3]

[4]

[5]