Yoann Padioleau
Yoann Padioleau
I think it's nice if we can reuse the boolean logic composition of patterns to describe precisely a source/sink/sanitizer, here for example ``` sanitizers: - pattern-inside: sanitize_method(..., $SOURCE) - pattern:...
@IagoAbal can we strike a few more erwan's cases?
Yep, in both case they should really match the entire path.
Do you have a semgrep.dev example of what you would like? Just so I can use that later as a set of tests.
Ok I'll have a try at it next week.
Here are results on develop with the latest fix: https://semgrep.dev/s/D8Do/?version=develop Note that $X contains the right thing internally (if you look at the value binded to $X internally), but in...
Still, there's progress, we now bind the fully qualified name in Python.
And now we bind the fully qualified name in Java
seems related to #5570