-
Check [this](https://github.com/Decurity/semgrep-smart-contracts) repository which introduces a workflow for scanning security issues from https://semgrep.dev/p/smart-contracts.
What should be done…
-
**Краткое описание:**
В снипет кода включается лишний текст из описания уязвимсоти.
`if (level === cadesplugin.LOG_LEVEL_DEBUG) **Rule name:** semgrep_public_rules.0xdea.generic.raptor-bad-words *…
-
**Describe the bug**
In semgrep release **v1.58.0**, the following 2 x BASH rules (using latest commit: 57cb8aa01da7bcc180e16193dd5e55ae15b15de3) fail with the following example line of bash script:
…
-
[Session Notes](https://docs.google.com/document/d/1Hr4oQjhYarD9v-XjE80VRIHoj_Qx-fhuoRKmF6MWQEk/edit?usp=sharing)
-
I'm trying to use a local configuration set in the extension settings. Local configuration file includes the below. When i access code files it semgrep automatically scans with hundreds of rules not …
-
I'm behind an inspecting proxy and having this issue running semgrep in VSCode and already have the `REQUESTS_CA_BUNDLE` exported, as well as `CERT_PATH`, `CERT_DIR`, `SSL_CERT_FILE`, `SSL_CERT_DIR` a…
-
**Is your feature request related to a problem? Please describe.**
Semgrep returns a false positive for the Slack webhook sample URL `https://hooks.slack.com/services/T00000000/B00000000/XXXXXXXXXXXX…
-
https://taskfile.dev/fr-fr/
Example:
```
version: '3'
#TODO: semgrep phones home (disconnect your network to see it) even if disabled!
#TODO: docker pull a sha256... use unpriv user and dro…
-
Hi,
When I'm using:
`semgrep --metrics=off --config ./semgrep-rules.yaml .`
Everything works as expected, folders into my `.semgrepignore` are ignored.
But if I use absolute paths, the `.sem…
-
**What happened**:
Began looking at using horusec, specifically for some of its Dart scanning, but found docs to be out of date and community pages offline. Only beta for the past few releases, ver…