Currently, the SemGrep producer only supports local rules, provided as YAML, via the producer-semgrep-rules-yaml parameter. This way we're unable to use SemGrep registry rules (such as p/python or even auto). We should fix that.
Expected Behaviour
parameter: producer-semgrep-rules-yaml (exists)
parameter: producer-semgrep-config-value which gets passed directly to the semgrep CLI
Currently, the SemGrep producer only supports local rules, provided as YAML, via the
producer-semgrep-rules-yamlparameter. This way we're unable to use SemGrep registry rules (such asp/pythonor evenauto). We should fix that.Expected Behaviour
producer-semgrep-rules-yaml(exists)producer-semgrep-config-valuewhich gets passed directly to the semgrep CLIActual Behaviour
Only supports
producer-semgrep-rules-yaml