-
```
[pad@thinkstation semgrep (precommit_jsonnet)]$ pre-commit run --verbose --hook-stage manual semgrep-docker-develop --all
Semgrep Develop Python..................................................…
-
**Describe the bug**
I am currently attempting to write a rule that detects single characters that are not standard a-z 123 or commonly used symbols in programming. However, I would also like for the…
-
**Describe the bug**
`generic.secrets.security.detected-username-and-password-in-uri.detected-username-and-password-in-uri` rule is generating hundreds of findings for all repos that use npm inside t…
-
I am trying to write the following rule:
`patterns: | #CWE-285
- pattern: |
...
$THIS = $LOC.objects.filter(...)[$NUM]
if $THIS:
$X = $Y.objects.f…
-
**Describe the bug**
Semgrep 0.108.0 installation from PyPi on a M1 Silicon Macbook results in error when invoking `semgrep scan` or `semgrep ci`.
This issue is gone when installed from homebrew.
…
-
最新版本代码,编译r2s时提示:
```
GEN arch/arm64/include/generated/asm/cpucaps.h
CC scripts/mod/empty.o
DTC arch/arm64/boot/dts/rockchip/rk3328-doornet1.dtb
HOSTCC scripts/mod/mk_elfconf…
ghost updated
2 years ago
-
**Is your feature request related to a problem? Please describe.**
When a test fails and there are numerous expected lines to be detected, the output is really not helpful and it's hard to quickly se…
-
**Describe the bug**
Inline join with a taint rule do not work anymore in 0.107 as Semgrep produces an error on them:
```
missing field 'path' in JSON object of type 'Location'
Traceback (most r…
-
**Describe the bug**
It seems that method chaining using the `object. ... .method()` syntax is not currently supported for Kotlin.
**To Reproduce**
I wrote the following semgrep rule:
```
- i…
-
This isn't necessarily a bug, because generally, tree sitter parsers don't have any specific responsibility to reject invalid code. However, this particular behavior is causing us some grief, so I'm h…