Emma Jin

Would you be able to share an example of the intolerance of missing quotes? If it's easy to handle, we may try (unfortunately, with yaml there are so many variants...

Indeed the problem is with `secret: {cipher}awgawga`. The problem isn't quite what you identified, @IagoAbal, but > Plain scalars must not begin with most [indicators](https://yaml.org/spec/1.2.2/#indicator-characters), as this would cause ambiguity...

hmm I'm not a generic expert. @mjambon Do you have any tips?

Wait can you explain why ``` """ hi """ ``` matches? I'm fine with the comment within the array, that makes sense

> Then pattern: ... matches all the code in the file, but ... is language-aware so it doesn't match the header comment # hi. Sorry, I'm still confused. Why doesn't...

@efortuna I don't quite understand what's being matched in your example. Can you add a playground link?

Ah, got it. That makes a lot of sense. Can I replace your original text with this example?

How hard would it be to migrate to parsing patterns with tree-sitter? I think that would be nicer anyway, since there will probably be pfff bugs that have already been...

If it's only one Dockerfile causing problems, you can add it to your `.semgrepignore` so it'll stop being scanned, and thus stop crashing the pipeline. Also, if you're not on...

One thing you can do is run `semgrep scan --max-target-bytes 0 --config 'r/java.' akp.java --debug -d`. This will output the `semgrep-core` command that `semgrep` invokes under the hood. If you...