Sanket Saurav
@sanketsaurav.com
Co-founder/CEO, DeepSource. YC alum. Veritas vos liberabit.
Research from Stanford University suggests that AI adoption decreases code quality. The study is ongoing and contains historical git data from 600+ organizations and 120K+ engineers. Shocking? Erm... not really.
November 20, 2025 at 9:35 PM
Research from Stanford University suggests that AI adoption decreases code quality. The study is ongoing and contains historical git data from 600+ organizations and 120K+ engineers. Shocking? Erm... not really.
I'm looking for account executives to expand our sales team. Preferably in-person in SF, or remote within the Bay Area.
Come help us accelerate the adoption of our hybrid code security agents + Autofix™ AI.
Come help us accelerate the adoption of our hybrid code security agents + Autofix™ AI.
November 11, 2025 at 6:53 PM
I'm looking for account executives to expand our sales team. Preferably in-person in SF, or remote within the Bay Area.
Come help us accelerate the adoption of our hybrid code security agents + Autofix™ AI.
Come help us accelerate the adoption of our hybrid code security agents + Autofix™ AI.
Love the term "comprehension debt".
In AI-agent-first development, most of the new code doesn't exist as a mental model in anyone's head.
Good for moving fast. Bad for actually putting the code in production and maintaining it.
Major part of why we're building Autofix Bot.
In AI-agent-first development, most of the new code doesn't exist as a mental model in anyone's head.
Good for moving fast. Bad for actually putting the code in production and maintaining it.
Major part of why we're building Autofix Bot.
September 30, 2025 at 3:41 PM
Love the term "comprehension debt".
In AI-agent-first development, most of the new code doesn't exist as a mental model in anyone's head.
Good for moving fast. Bad for actually putting the code in production and maintaining it.
Major part of why we're building Autofix Bot.
In AI-agent-first development, most of the new code doesn't exist as a mental model in anyone's head.
Good for moving fast. Bad for actually putting the code in production and maintaining it.
Major part of why we're building Autofix Bot.
This quote is quite telling, but I'm not sure the situation is that grim. I do believe most companies are building valuable stuff with AI and do have enough differentiation.
But if the user thinks you're just re-skinning ChatGPT, it might be time to re-think that UX.
But if the user thinks you're just re-skinning ChatGPT, it might be time to re-think that UX.
August 19, 2025 at 3:43 AM
This quote is quite telling, but I'm not sure the situation is that grim. I do believe most companies are building valuable stuff with AI and do have enough differentiation.
But if the user thinks you're just re-skinning ChatGPT, it might be time to re-think that UX.
But if the user thinks you're just re-skinning ChatGPT, it might be time to re-think that UX.
Interesting UX problem that looms over vertical AI tools:
ChatGPT is more free-form and gives the user greater control, and users think that works better than purpose-built tools.
The snake is eating its own tail.
ChatGPT is more free-form and gives the user greater control, and users think that works better than purpose-built tools.
The snake is eating its own tail.
August 19, 2025 at 3:43 AM
Interesting UX problem that looms over vertical AI tools:
ChatGPT is more free-form and gives the user greater control, and users think that works better than purpose-built tools.
The snake is eating its own tail.
ChatGPT is more free-form and gives the user greater control, and users think that works better than purpose-built tools.
The snake is eating its own tail.
DeepSource Agents in Times Square last week.
Ship code fearlessly. ✊
Ship code fearlessly. ✊
May 12, 2025 at 4:57 PM
DeepSource Agents in Times Square last week.
Ship code fearlessly. ✊
Ship code fearlessly. ✊
Finally, we've given the agents long-term memory. So you can teach them important facts and context about your code and your organization.
April 25, 2025 at 10:02 PM
Finally, we've given the agents long-term memory. So you can teach them important facts and context about your code and your organization.
3. False Positive Triage Agent: It removes noise from code security alerts. It reasons about every security issue with the code's context and suppresses it if it's not relevant.
April 25, 2025 at 10:02 PM
3. False Positive Triage Agent: It removes noise from code security alerts. It reasons about every security issue with the code's context and suppresses it if it's not relevant.
2. CVE Prioritization Agent: It uncovers critical vulnerabilities in your 3rd-party dependencies by automatically triaging new CVEs introduced in your dependency chain.
April 25, 2025 at 10:02 PM
2. CVE Prioritization Agent: It uncovers critical vulnerabilities in your 3rd-party dependencies by automatically triaging new CVEs introduced in your dependency chain.
We're starting with releasing three agents today.
1. Autofix™ Autopilot Agent: It autonomously fixes new security vulnerabilities in your code. It can create PRs with security patches for your first-party code and third-party dependency upgrades.
1. Autofix™ Autopilot Agent: It autonomously fixes new security vulnerabilities in your code. It can create PRs with security patches for your first-party code and third-party dependency upgrades.
April 25, 2025 at 10:02 PM
We're starting with releasing three agents today.
1. Autofix™ Autopilot Agent: It autonomously fixes new security vulnerabilities in your code. It can create PRs with security patches for your first-party code and third-party dependency upgrades.
1. Autofix™ Autopilot Agent: It autonomously fixes new security vulnerabilities in your code. It can create PRs with security patches for your first-party code and third-party dependency upgrades.
For example, if the agent sees a new potential SQL injection issue, it can reason about it using the code's AST, spanning across multiple files, and even third-party dependencies.
If it determines that the issue is high-priority, it patches it and opens a PR. All on its own.
If it determines that the issue is high-priority, it patches it and opens a PR. All on its own.
April 25, 2025 at 10:02 PM
For example, if the agent sees a new potential SQL injection issue, it can reason about it using the code's AST, spanning across multiple files, and even third-party dependencies.
If it determines that the issue is high-priority, it patches it and opens a PR. All on its own.
If it determines that the issue is high-priority, it patches it and opens a PR. All on its own.
We built AI agents for code security and gave them full autonomy.
Today, I'm excited to announce DeepSource Agents — autonomous AI agents, purpose-built for securing your code on autopilot.
You (and your AI) are writing 10x code, 10x faster. You need code security that scales.
Today, I'm excited to announce DeepSource Agents — autonomous AI agents, purpose-built for securing your code on autopilot.
You (and your AI) are writing 10x code, 10x faster. You need code security that scales.
April 25, 2025 at 10:02 PM
We built AI agents for code security and gave them full autonomy.
Today, I'm excited to announce DeepSource Agents — autonomous AI agents, purpose-built for securing your code on autopilot.
You (and your AI) are writing 10x code, 10x faster. You need code security that scales.
Today, I'm excited to announce DeepSource Agents — autonomous AI agents, purpose-built for securing your code on autopilot.
You (and your AI) are writing 10x code, 10x faster. You need code security that scales.
I love these notes from our users more than the added revenue. ❤️
March 6, 2025 at 8:01 PM
I love these notes from our users more than the added revenue. ❤️
DeepSource has 5,000+ code checkers across 20+ programming languages and configuration technologies, and we've made it easy for you to explore them all.
Meet the new DeepSource Directory ✨ 📁 ✨
Meet the new DeepSource Directory ✨ 📁 ✨
March 3, 2025 at 10:32 PM
DeepSource has 5,000+ code checkers across 20+ programming languages and configuration technologies, and we've made it easy for you to explore them all.
Meet the new DeepSource Directory ✨ 📁 ✨
Meet the new DeepSource Directory ✨ 📁 ✨
"DeepSource isn't just a tool for us; it's a catalyst for cultural change in how we approach code quality."
Full story from the customer coming soon!
Full story from the customer coming soon!
February 13, 2025 at 1:33 AM
"DeepSource isn't just a tool for us; it's a catalyst for cultural change in how we approach code quality."
Full story from the customer coming soon!
Full story from the customer coming soon!
We've built multi-variate auto-remediation in DeepSource SCA — which is a fancy way of saying instead of recommending "just upgrade the latest," we show all possible upgrade paths when you're fixing a vulnerability.
Why it matters: 👇
Why it matters: 👇
February 5, 2025 at 5:10 PM
We've built multi-variate auto-remediation in DeepSource SCA — which is a fancy way of saying instead of recommending "just upgrade the latest," we show all possible upgrade paths when you're fixing a vulnerability.
Why it matters: 👇
Why it matters: 👇
Context is critical. DeepSource SCA shows call paths for each reachable vulnerability found in your code with enough surrounding information, so you can quickly understand the impact.
Why it matters:
Why it matters:
February 5, 2025 at 12:20 AM
Context is critical. DeepSource SCA shows call paths for each reachable vulnerability found in your code with enough surrounding information, so you can quickly understand the impact.
Why it matters:
Why it matters:
Customer success stories like this make all of it worth it. ❤️
Building code quality tools is not about *just static analysis*. It doesn't matter if developers don't fix the issues — the UX is what we've spent a lot of deliberate effort on.
That's why people are switching.
Building code quality tools is not about *just static analysis*. It doesn't matter if developers don't fix the issues — the UX is what we've spent a lot of deliberate effort on.
That's why people are switching.
January 31, 2025 at 7:32 PM
Customer success stories like this make all of it worth it. ❤️
Building code quality tools is not about *just static analysis*. It doesn't matter if developers don't fix the issues — the UX is what we've spent a lot of deliberate effort on.
That's why people are switching.
Building code quality tools is not about *just static analysis*. It doesn't matter if developers don't fix the issues — the UX is what we've spent a lot of deliberate effort on.
That's why people are switching.
Engineering Manager from a $200M+ ARR company.
With DeepSource SCA, we'll be a single platform for all source code and third-party dependency scanning.
AND IT WILL BE GLORIOUS! ✨
With DeepSource SCA, we'll be a single platform for all source code and third-party dependency scanning.
AND IT WILL BE GLORIOUS! ✨
January 28, 2025 at 8:38 PM
Engineering Manager from a $200M+ ARR company.
With DeepSource SCA, we'll be a single platform for all source code and third-party dependency scanning.
AND IT WILL BE GLORIOUS! ✨
With DeepSource SCA, we'll be a single platform for all source code and third-party dependency scanning.
AND IT WILL BE GLORIOUS! ✨