Ajin Abraham

This is very much applicable to Hugo templates as well as suggested here: https://gohugo.io/about/security/#web-application-security

The intention of these rules is to catch accidental mistakes (Trust, but verify). It is a common to consider something as "safe" and end up passing untrusted user data which...

I agree, we do want to to promote best practices. Its just that we don't want to overwhelm users on basic docker usage. It would be nice to have a...

Thanks, will take a look.

@sohilshrestha0 Thanks for sharing this. It would be nice if you can write a blog or a Github Gist about this and link it in https://github.com/MobSF/docs/blob/master/extras.md Github issues are strictly...

The error suggests that there is no semgrep scan happening here. Can you share the semgrep rules that you are using with libsast? Does your semgrep rule syntax look something...

> semgrep rules on windows machine. libsast or the semgrep version it uses doesn't support Windows native. You need something like WSL or docker to run libsast/semgrep on windows.

Should be installed during this step https://github.com/MobSF/Mobile-Security-Framework-MobSF/blob/39ba3e64be165746219d128a0303ac8cdca0a85c/scripts/postgres_support.sh#L6 Let me take a look.

This is now addressed. See updated instructions for using postgres https://mobsf.github.io/docs/#/extras?id=using-postgres-db-instead-of-sqlite

It’s Apple proprietary. I don't know of any lib or utility that does this in non apple ecosystem, the last time I checked. Closing this since we cannot address this...