Seems like there's a bit of confusion around the recent @Semgrep licence change and the @opengrep fork and I think there are two key points to highlight.
1/10
1/10
Comments
It is still LGPL and IANAL but from what I understand it means you can package the @Semgrep binary in closed source but if you make source changes, you have to be redistribute them as open source.
2/10
As I understand it, since the licence isn't changing, @opengrep can take any code from future @Semgrep versions and copy into @opengrep and vice versa
3/10
4/10
Semgrep's rules seem to have always had a "don't use me to sell a competing product or service licence", the Commons Clause” License.
They have now changed to a clearer, but similar licence, the Semgrep Rules License.
5/10
https://semgrep.dev/blog/2024/important-updates-to-semgrep-oss/
6/10
7/10