-
⚠️ This AIP is now hosted on [community.airswap.io](https://community.airswap.io/t/aip-17-update-sast-staking-design/47) and is no longer kept up to date here.
**Summary**
Goal is to increase th…
-
Now that parser and scanner errors look snazzy, need to figure out a way to show line number at which the SAST balked.
-
## Problem statement
While running the SAST measurement for JS a number of errors were reported:
- [ ] P105: `JS/105_this_statement/105_this_statement.json` file not found
- [ ] P99: `JS/99_ge…
-
Implement security scanning for Golang code using GoSec, a security tool designed to analyze Go code and identify potential security vulnerabilities. The GoSec scan should be integrated into the CI pi…
-
**Describe what change you would like** :
It would be good to have a section on static analysis in the implementation section, and add semgrep to the new section
**Context** :
Section: 07-imp…
-
Сейчас на странице сразу не понять, какие инструменты работают с файлами моделей, а какие требуют запущенной модели.
-
Hi,
I'm running into an issue while trying to scan my project for a casa tiers 2 assesments.
SAST and SCA scan are working fine but APK scan is not.
I'm using the latest docker image on Mac OS.
…
-
```sass
@use './vars' as vars
.a-class
color: vars.$green
```
This is valid Sass and should get converted, but the site gives "malformed input" error.
As `@use './vars' as *` with unames…
-
**Describe the bug**
`semgrep ci --help` mentions
> Glob-style patterns follow the syntax supported by python, which is documented at https://docs.python.org/3/library/glob.html
but that's no…
-
Please enable CodeQL SAST scans and notifications by default on all GitHub repositories, like Dependabot. There are millions of projects with vulnerabilities that the owners and downstream users are u…