-
https://semgrep.dev/playground/s/sjord:taint-in-func?editorMode=advanced
```
id: taint-in-func
message: Semgrep found a match
languages: [python]
severity: WARNING
mode: taint
pattern-sources…
-
Hi @brendongo
We are facing issue while running NJSScan at our end after updating the same. An issue regarding this is already open with NJSScan
https://github.com/ajinabraham/njsscan/issues/95 (C…
-
If `semgrep` is run with `--verbose`, it prints a message about `.semgrepignore`:
```
$ semgrep -e print -l python --verbose hello.py
No .semgrepignore found. Using default .semgrepignore rules.…
-
反馈bug/问题模板,提建议请删除
## 1.关于你要提交的问题
Q:是否搜索了issue (使用 "x" 选择)
* [X] 没有类似的issue
## 2. 详细叙述
### (1) 具体问题
A:编译过程中出现找不到u-boot img导致失败
### (2) 路由器型号和固件版本
A:Rockchip RK3328 FriendlyArm Nan…
-
**Describe the bug**
It seems like semgrep matches a try-catch construct in Solidity even if the external call does not match.
**To Reproduce**
I wrote the following rule to reproduce this in…
-
反馈bug/问题模板,提建议请删除
## 1.关于你要提交的问题
Q:是否搜索了issue (使用 "x" 选择)
* [x] 没有类似的issue
## 2. 详细叙述
### (1) 具体问题
A:doornet2 编译报错
```
CONFIG_PACKAGE_kmod-mac80211=y
CONFIG_PACKAGE_kmod-rt2500-us…
-
I'm running into an issue where `ndfft_r2c` panics when called with parameters that seem valid. the size of the input(`frames`) in this instance is `[6248,512]`, the size of output(`spectrum_vector`) …
-
**Is your feature request related to a problem? Please describe.**
Sometimes metavariable ellipses (`$...ARGS`) match an empty string. When writing a fix, this is necessary to know. For example, when…
-
**Describe the bug**
After the release of semgrep **v0.112** we started getting false positives reported on one of our Go rules.
**To Reproduce**
Offending rule:
```yml
- id: helper-schema-…
-
**Describe the bug**
Running `semgrep` complains about `libpcre.1.dylib` not loaded. Looks to be same issue as #2624, but for macOS.
**To Reproduce**
```sh
# Install
$ python -m venv .venv
$ s…