Compare FOSSA and Semgrep 
Featured Products
At a Glance
Market Segments
Small-Business (46.7% of reviews)
Enterprise (47.2% of reviews)
Entry-Level Pricing
No pricing available
Starting at $40.00 1 contributor Per Month
FOSSA
Star Rating
(15)4.2 out of 5
Market Segments
Small-Business (46.7% of reviews)
Pros & Cons
Entry-Level Pricing
No pricing available
Learn more about FOSSASemgrep
Star Rating
(54)4.6 out of 5
Market Segments
Enterprise (47.2% of reviews)
Pros & Cons
Entry-Level Pricing
Starting at $40.00 1 contributor Per Month
Free Trial is available
Learn more about SemgrepFOSSA vs Semgrep
- Reviewers felt that Semgrep meets the needs of their business better than FOSSA.
- When comparing quality of ongoing product support, reviewers felt that Semgrep is the preferred option.
- For feature updates and roadmaps, our reviewers preferred the direction of Semgrep over FOSSA.
Pricing
Entry-Level Pricing
FOSSA
No pricing availableSemgrep
Semgrep Code, Supply Chain, and Secrets Detection
Starting at $40.00
1 contributor Per Month
Extensible AppSec for growing teams. Choose from Code (SAST), Supply Chain (SCA), and Secrets Detection to eliminate noise out of the box, streamline developer workflows, and give security teams full visibility.
- Choose from SAST, SCA, and Secrets Detection
- Pro Rules and cross-file analysis
- AI Assistant
Free Trial
FOSSA
Free Trial is available
Semgrep
Free Trial is available
Ratings
Meets Requirements
8.5
11
8.8
48
Ease of Use
8.9
11
9.1
49
Ease of Setup
8.3
6
9.4
36
Ease of Admin
9.3
5
9.1
22
Quality of Support
8.3
9
8.8
43
Has the product been a good partner in doing business?
Not enough data
9.6
22
Product Direction (% positive)
8.9
11
9.2
45
Features by Category
Administration
Not enough data
9.0
18
Not enough data
8.2
17
Analysis
Not enough data
8.4
19
Not enough data
9.1
21
Not enough data
9.4
21
Not enough data
9.1
21
Testing
Not enough data
8.7
20
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
7.7
17
Not enough data
7.5
18
Not enough data
8.1
19
Not enough data
7.3
21
Agentic AI - Static Application Security Testing (SAST)
Not enough data
7.9
11
Dynamic Application Security Testing (DAST)Hide 13 FeaturesShow 13 Features
Not enough data
Not enough data
Administration
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Performance
Not enough data
8.2
12
Not enough data
8.0
11
Not enough data
8.0
11
Not enough data
9.0
10
Network
Not enough data
8.5
10
Not enough data
7.8
10
Not enough data
8.0
10
Application
Not enough data
Feature Not Available
Not enough data
8.9
11
Not enough data
8.5
11
Agentic AI - Vulnerability Scanner
Not enough data
6.9
6
Not enough data
7.5
6
Functionality - Software Composition Analysis
8.8
7
8.4
18
9.2
6
8.2
18
8.8
8
8.5
18
Effectiveness - Software Composition Analysis
8.1
7
8.5
18
8.5
8
8.3
18
9.4
8
8.3
18
Documentation
Not enough data
8.9
19
Not enough data
9.3
20
Not enough data
8.2
20
Security
Not enough data
7.4
21
Not enough data
7.9
17
Not enough data
8.9
17
Functionality - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Management - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
7.7
10
Not enough data
7.6
9
Not enough data
7.7
10
Performance - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
FOSSA and Semgrep are categorized as Vulnerability Scanner and Software Composition Analysis
Unique Categories
FOSSA is categorized as Software Bill of Materials (SBOM)
Reviews
Reviewers' Company Size
FOSSA
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Semgrep
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Computer Software
40.0%
Telecommunications
6.7%
Mechanical or Industrial Engineering
6.7%
Leisure, Travel & Tourism
6.7%
Information Technology and Services
6.7%
Other
33.3%
Information Technology and Services
24.5%
Computer Software
20.8%
Financial Services
15.1%
Manufacturing
5.7%
Semiconductors
5.7%
Other
28.3%
Discussions
FOSSA has no discussions with answers
Semgrep has no discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
