-
[Session Notes](https://docs.google.com/document/d/1Hr4oQjhYarD9v-XjE80VRIHoj_Qx-fhuoRKmF6MWQEk/edit?usp=sharing)
-
**Краткое описание:**
В снипет кода включается лишний текст из описания уязвимсоти.
`if (level === cadesplugin.LOG_LEVEL_DEBUG) **Rule name:** semgrep_public_rules.0xdea.generic.raptor-bad-words *…
-
Hello @eddiez9 ,
I would have a loved to leave a comment on your blog post, in the absence of a comment form, I allow myself to go that way.
You wrote a great post with a lot to learn, Thank yo…
-
Check [this](https://github.com/Decurity/semgrep-smart-contracts) repository which introduces a workflow for scanning security issues from https://semgrep.dev/p/smart-contracts.
What should be done…
-
I'm behind an inspecting proxy and having this issue running semgrep in VSCode and already have the `REQUESTS_CA_BUNDLE` exported, as well as `CERT_PATH`, `CERT_DIR`, `SSL_CERT_FILE`, `SSL_CERT_DIR` a…
-
Is the intent to flag a vector of type const, or chained constants? the vector below will trip the rule.
const gr_fill_styles = ((/) = 9, (\) = 10, (|) = 7, (-) = 8, (+) = 11, (x) = 6)
I wouldn…
-
**Describe the bug**
In semgrep release **v1.58.0**, the following 2 x BASH rules (using latest commit: 57cb8aa01da7bcc180e16193dd5e55ae15b15de3) fail with the following example line of bash script:
…
-
I'm trying to use a local configuration set in the extension settings. Local configuration file includes the below. When i access code files it semgrep automatically scans with hundreds of rules not …
-
👋 This dashboard summarizes my activity on the repository, including available improvement opportunities.
## Recommendations
_Last analysis: Sep 17 | Next scheduled analysis: Sep 24_
### Open
- h…
-
Type: Bug
## Issue Description ##
The C# extension cannot handle code actions when there are diagnostics from the Semgrep Extension included in the request.
Hovering over a Semgrep diagnosti…