search

infobyte / faraday

Open Source Vulnerability Management Platform
https://www.faradaysec.com
GNU General Public License v3.0
4.72k stars 875 forks source link

Semgrep plugin #467

Closed dwisiswant0 closed 1 year ago

dwisiswant0 commented 1 year ago

What's the problem this feature will solve?

Describe the solution you'd like

Alternative Solutions

Additional context

ezk06eer commented 1 year ago

@dwisiswant0 hi, we will think about it, i think it is a good tool and would be included in next releases, thinking about SAST / DAST solutions and integration with the model CI/CD and DevSecOps, i think will be great to include it. if you have it in hand a .json out sanitized will be great.

Thanks!

dwisiswant0 commented 1 year ago

@ezk06eer - Here I attach an example of the Semgrep findings with both JSON & (JUnit) XML formats: dvpwa-out.zip.

fedek commented 1 year ago

Hey @dwisiswant0

Just to let you know that the latest release of faraday-plugins supports Semgrep output.

Thanks for the feedback,

dwisiswant0 commented 1 year ago

Thank you guys! 🔥