Currently, the SemGrep producer only supports local rules, provided as YAML, via the producer-semgrep-rules-yaml parameter. This way we're unable to use SemGrep registry rules (such as p/python or even auto). We should fix that.
Expected Behaviour
parameter: producer-semgrep-rules-yaml (exists)
parameter: producer-semgrep-config-value which gets passed directly to the semgrep CLI
Currently, the SemGrep producer only supports local rules, provided as YAML, via the
producer-semgrep-rules-yaml
parameter. This way we're unable to use SemGrep registry rules (such asp/python
or evenauto
). We should fix that.Expected Behaviour
producer-semgrep-rules-yaml
(exists)producer-semgrep-config-value
which gets passed directly to the semgrep CLIActual Behaviour
Only supports
producer-semgrep-rules-yaml