DeepSource has launched Globstar, an open source static code analysis tool aimed at enhancing DevSecOps teams' workflows. CEO Sanket Saurav highlighted that Globstar provides a competitive alternative to Semgrep, which has recently adopted more restrictive licensing terms. Unlike Semgrep, Globstar is offered under the MIT license, which allows commercial use without restrictions. The tool can be integrated into existing DevSecOps pipelines using YAML files or an API in Go, promoting efficiency in static code checking. This shift underscores the ongoing evolution in open source licensing dynamics within the tech industry.
Globstar serves as a modern alternative to Semgrep, providing DevSecOps teams with a more permissive licensing option for integrating static code analysis into their workflows.
DeepSource’s Globstar, available under an MIT license, is designed to enhance DevSecOps pipelines with code checkers, unlike Semgrep which faces new restrictive licensing.
Collection
[
|
...
]