DigitalOcean uses Semgrep, an open-source static analysis tool, to help provide code safety and quality. The company's Product Security team integrates security by default through automation and guardrails in their engineering processes. This allows them to detect vulnerabilities across entire codebases using complex matching patterns and integrate seamlessly into their CI pipeline. By leveraging Semgrep, DigitalOcean was able to identify and address a number of security issues, including those related to legacy account users and function-level authorization, resulting in a more robust security framework on every pull request. The tool's ability to enhance developer workflows by providing enriched metadata also helps the company maintain a secure environment.