Pieter De Cremer (Semgrep)

icon indicating an email [email protected]

icon company @semgrep icon location Senior Security Researcher at Semgrep

Results 8 issues of Pieter De Cremer (Semgrep)

Autofix tests for all rules with autofixes

7 comment

Sorry for the big PR!

do not merge please, this is for CI testing

Tests do not return results when only true negative test cases are present

2 comment

**Describe the bug** When the test file only contains negative test cases (the `ok: ` syntax). The results of this test are not returned if these tests pass. Also, if...

priority:low
user:r2c
feature:test

Trigger updated argo workflow for PRs

1 comment

Fix false positive in bug report

3 comment

Fix for bug reported here: https://github.com/returntocorp/semgrep-rules/issues/2407

Ruby Rails tainted SQL String rule has wrong metadata

https://github.com/returntocorp/semgrep-rules/blob/384221e9e42d3a491b470ec84a4d00eba2cbebfa/ruby/rails/security/injection/tainted-sql-string.yaml#L13

[Docker] environment variables can not be matched using metavariables in the ENV statement

8 comment

**Describe the bug** I want to find the value of a environment variable declared with ENV ``` pattern: ENV ... ``` matches the line on my local version, but not...

bug
priority:low
user:internal
lang:dockerfile

Set samesite flag in cookies

2 comment

We are researchers at Semgrep, an open-source a static analysis tool. We regularly test new rules for this tool on open source code. During this testing we identified some cookie...