Questions about semgrep
Read more about semgrep
python (65.2k questions)
javascript (44.3k questions)
reactjs (22.7k questions)
java (20.8k questions)
c# (17.4k questions)
html (16.3k questions)
r (13.7k questions)
android (13k questions)
Semgrep not finding two lines of code with a 'patterns' section
I have a Semgrep rule:
rules:
- id: create-chat-client
patterns:
- pattern: var $X = GrpcChannel.ForAddress(...);
- pattern: var $Y = new ChatService.ChatServiceClient($X);
lang...
Shawn Wildermuth
Votes: 0
Answers: 1
Why is GitLab CI SAST not exluding directories that I ask it to exclude?
I have enabled SAST scanning in GitLab CI (GitLab Community Edition) 14.5.2. The SAST runs tools like semgrep and ESLint run over the source code and scan for vulnerabilities. This works... except it'...
locka
Votes: 0
Answers: 2
Running Semgrep on Windows and run Pygoat
I installed Semgrep on Windows with pip install semgrep and it worked. Now, I want to run the entire semgrep registry on pygoat. I downloaded the code from here and have it in a folder on my laptop. H...
Nitisha V
Votes: 0
Answers: 1
Semgrep: Is it possible to match a function based on its body, instead of its name?
The question is in the title.
As an example, say I am interested in catching all calls of functions that use a certain global variable (foo here).
I tried the following:
rules:
- id: dont-call-funct...
Pamplemousse
Votes: 0
Answers: 1