Semgrep, formerly known as r2c, is a code scanning platform for finding first and third-party security vulnerabilities in your code base.