semgrep-rules
semgrep-rules copied to clipboard
semgrep
Semgrep rules registry
Expanding the detection to support vulnerable parameter at any order. The previous pattern will only match if the vulnerable parameter is the first parameter in the function declaration. As the...
Added `` example for PHP to demonstrate that semgrep properly captures the short-hand echo as a sink
Add new rule 1. Insecure code loading (external file storage/memory) . 2. External Storage file interaction
**Describe the bug** Brakeman has a rule designed to catch the unsafe usage of `tap` using a "blockified" symbol generated from user input. For example, the following code is vulnerable,...
**Describe the bug** Reading through the documentation for `SerializableProvider` it seems that this functionality was disabled by default. https://docs.jboss.org/resteasy/docs/3.9.1.Final/javadocs/org/jboss/resteasy/plugins/providers/SerializableProvider.html Given this, is this rule no longer relevant and worth keeping...
Wahoo! New published rules with khanhldt.pnbj from @khanhldt. See [semgrep.dev/s/2ZJ3Y](https://semgrep.dev/s/2ZJ3Y) for more details. Thanks for your contribution! ❤️
Wahoo! New published rules with `uniswap.npm-package-in-action-not-pinned-to-commit-sha` from @[email protected]. See [semgrep.dev/s/RelOq](https://semgrep.dev/s/RelOq) for more details. Thanks for your contribution! ❤️
![semgrep-dev-pr-bot[bot] avatar](https://avatars.githubusercontent.com/in/60337?v=4 "semgrep-dev-pr-bot[bot] avatar"){kind=avatar}
**Is your feature request related to a problem? Please describe.** Currently issues are not being labeled when they are initially created. A reviewer reviews and manually adds labels as of...
Hello Semgrep team We would like to contribute the rules we are using internally for Rust! We would love to see the Rust support for the tool to grow. These...
