semgrep-action
semgrep-action copied to clipboard
semgrep
This project is deprecated. Use https://github.com/returntocorp/semgrep instead
Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.4.0 to 4.14.0. Release notes Sourced from jsonschema's releases. v4.14.0 Full Changelog: https://github.com/python-jsonschema/jsonschema/compare/v4.13.0...v4.14.0 v4.13.0 Full Changelog: https://github.com/python-jsonschema/jsonschema/compare/v4.12.1...v4.13.0 v4.12.1 What's Changed Use rST markers in README by @hynek...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
**Is your feature request related to a problem? Please describe.** Maybe its something that is already built but i have not seen t documented anywhere. I would like to have...
I've scoured the docs, searched Google, looked through every issue in this repo and tried a bunch of things myself, and I can't seem to find anywhere that documents how...
We should use this github feature: https://docs.github.com/en/actions/learn-github-actions/workflow-commands-for-github-actions#grouping-log-lines
Generally, users still want scans to complete even if one rule is bad so that they aren't blocked. Need a solution that warns users sufficiently loudly but allows them to...
By default semgrep-action scans only the diff added in the PR. That's very neat optimization and it probably should stay that way by default. However for the projects just adopting...
 The agent build step shouldn't fail if there are no rules - instead we should have a clean pass with a clear message that there were no rules to...
Steps to repro: 1. Scan and get findings 2. Triage and ignore findings for a rule 3. Remove rule and scan again 4. Add rule back and scan again On...
Add `tests` to your .semgrepignore will ignore only files named `tests`. To ignore `module/tests/test.py`, you need to add `tests/` to the .semgrepignore instead. This is unexpected, and not consistent with...
Thanks to @devd for the idea. This should improve scanning reliability. How long does Semgrep App connection take by the way? Maybe we could also improve performance by: - immediately...