> ## Documentation Index
> Fetch the complete documentation index at: https://docs.semgrep.dev/llms.txt
> Use this file to discover all available pages before exploring further.

# Security Foundations

> This section includes conceptual guides on application security essentials. These fundamental concepts can help strengthen your organization's security posture and can be a helpful reference when educating teams on security principles.

## Featured Articles

* [Static Application Security Testing (SAST)](/learn/security-foundations/sast/overview): Identify vulnerabilities in applications before deployment with tools designed to analyze source code without executing it.

* [Supply Chain Security (SCA)](/learn/security-foundations/supply-chain-security): Understand vulnerable dependencies that your source code relies upon.

* [Secure Development Workflows](/learn/security-foundations/security-testing-workflow): Plan integration points for security testing into regular development workflows.

## Additional Resources

* [Vulnerabilities](/learn/vulnerabilities/overview): Descriptions for different classes of vulnerabilities you may encounter.

* [Application Security Blog](https://semgrep.dev/blog/app-sec/): Recent blog posts about application security published by the Semgrep team.
