returntocorp/semgrep issues and pull requests

#9129 - Start ci scans with a single request

Pull Request - State: open - Opened by jbergler about 1 year ago - 1 comment

#9128 - Add 'make pro' for checking compatibility with semgrep-pro

Pull Request - State: open - Opened by mjambon about 1 year ago - 1 comment

#9127 - use latest semgrep-interfaces

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9126 - Cron - update semgrep-rules

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 1 comment

#9125 - feat: Secrets ignores semgrepignore

Pull Request - State: open - Opened by akuhlens about 1 year ago - 11 comments

#9124 - Fix --sarif in the presence of errors

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9123 - Fix --severity regression

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9122 - Commutativity support for comparison operators EQ and NOT_EQ

Pull Request - State: closed - Opened by ihji about 1 year ago - 3 comments

#9121 - Cron - update semgrep-rules

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 1 comment

#9120 - The 'osemfail' test marker replaces 'osempass'

Pull Request - State: closed - Opened by mjambon about 1 year ago - 2 comments

#9119 - Update test snapshot (how did it get in?)

Pull Request - State: closed - Opened by mjambon about 1 year ago - 1 comment

#9118 - fix: readme typos

Pull Request - State: closed - Opened by milanwilliams about 1 year ago - 1 comment

#9117 - cli: Skip showing rules and products for pattern mode

Pull Request - State: closed - Opened by zzeleznick about 1 year ago - 2 comments

#9116 - Improved handling of unused lambdas to reduce false positives

Pull Request - State: open - Opened by ihji about 1 year ago - 5 comments

#9115 - fix(sca): use only line dependency was found in

Pull Request - State: closed - Opened by brendongo about 1 year ago - 4 comments
Labels: wait-for-me

#9114 - fix: Better error message when semgrep-core-proprietary is missing

Pull Request - State: closed - Opened by nmote about 1 year ago - 2 comments

#9113 - fix(ls): Use libev to better handle FDs

Pull Request - State: closed - Opened by ajbt200128 about 1 year ago - 4 comments
Labels: Do not merge

#9112 - fix(tests): Disable HTTP tests

Pull Request - State: closed - Opened by ajbt200128 about 1 year ago - 1 comment

#9111 - AST_to_IL: rust: Translate unsafe blocks to IL

Pull Request - State: closed - Opened by IagoAbal about 1 year ago - 2 comments

#9110 - osemgrep: use more typed responses from backend

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9109 - ellipsis metavariable not matching with pattern-inside

Issue - State: open - Opened by iacore about 1 year ago
Labels: bug, lang:c, alpha

#9108 - Please make it possible to opt-out of dotfiles filter

Issue - State: open - Opened by dekimsey about 1 year ago - 1 comment
Labels: enhancement, osemgrep

#9107 - devops: check whether semgrep pro compiles with semgrep in PR

Pull Request - State: open - Opened by aryx about 1 year ago - 3 comments

#9106 - osemgrep: use ATD for deployment_config type, and use typed response

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9105 - osemgrep: fix TODO in osemgrep ci for commit_timestamp

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9104 - Fix Tok.end_pos_of_loc to handle trailing newlines

Pull Request - State: closed - Opened by IagoAbal about 1 year ago - 4 comments

#9103 - pysemgrep: remove useless accessor in scans.py (cleanup part1)

Pull Request - State: open - Opened by aryx about 1 year ago - 1 comment

#9102 - Use latest semgrep-interface

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9101 - Revert "feat(rust): proper parsing for macro args (#8928)"

Pull Request - State: closed - Opened by aryx about 1 year ago - 2 comments

#9100 - fix: link C# definitions with later initializations

Pull Request - State: closed - Opened by emjin about 1 year ago - 3 comments

#9099 - Add secrets validation error [SCRT-211]

Pull Request - State: closed - Opened by leifdreizler about 1 year ago - 6 comments

#9098 - chore: repin benchmarks (this time because of a speedup)

Pull Request - State: closed - Opened by emjin about 1 year ago - 1 comment

#9097 - chore: mask extra in benchmarks

Pull Request - State: closed - Opened by emjin about 1 year ago - 4 comments

#9096 - tainting: Add `exact` option to sources and sanitizers

Pull Request - State: closed - Opened by IagoAbal about 1 year ago - 3 comments

#9095 - Refactor so can reuse code in semgrep-server

Pull Request - State: closed - Opened by aryx about 1 year ago - 2 comments

#9094 - Add support for ci scan results as output

Pull Request - State: closed - Opened by jarrydlee about 1 year ago - 4 comments

#9093 - fix(sca): correctly parse toolchain directive in go.mod

Pull Request - State: closed - Opened by brendongo about 1 year ago - 6 comments

#9092 - fix(ci): run OSS engine when running only supply chain rules

Pull Request - State: closed - Opened by brendongo about 1 year ago - 7 comments

#9091 - Semgrep v1.46.0 `--sarif` flag error `Object of type ErrorType is not JSON serializable`

Issue - State: closed - Opened by picatz about 1 year ago - 6 comments
Labels: bug, priority:high, feature:sarif

#9090 - feat(js)!: unix.js

Pull Request - State: closed - Opened by brandonspark about 1 year ago - 2 comments

#9089 - Add comments on debugging semgrep ci failures and metrics

Pull Request - State: closed - Opened by aryx about 1 year ago - 3 comments

#9088 - meta: Implement repo_id and org_id for github in osemgrep and pysemgrep

Pull Request - State: closed - Opened by aryx about 1 year ago - 5 comments

#9087 - devops: switch nightly.yml to jsonnet

Pull Request - State: closed - Opened by aryx about 1 year ago - 2 comments

#9086 - devops: use slackapi/slack-github-action@ instead of curl

Pull Request - State: open - Opened by aryx about 1 year ago - 7 comments
Labels: Do not merge

#9085 - Fix test-semgrep-e2e-ci notify failure list

Pull Request - State: closed - Opened by aryx about 1 year ago - 2 comments

#9084 - Fix testing for Apex rules

Pull Request - State: closed - Opened by mjambon about 1 year ago - 3 comments

#9083 - feat: tainting: labels: Prefer sources without 'requires' for taint traces

Pull Request - State: closed - Opened by ihji about 1 year ago - 5 comments

#9082 - Metavariable's range of multi-line string in yaml is incorrect.

Issue - State: open - Opened by Isaac0616 about 1 year ago
Labels: bug, priority:high, lang:yaml

#9081 - fix(cli): Drop 3.7, See #8698

Pull Request - State: closed - Opened by ajbt200128 about 1 year ago - 26 comments

#9080 - Unrevert "fix: Refuse to run out of date semgrep-core-proprietary"

Pull Request - State: closed - Opened by nmote about 1 year ago - 3 comments

#9079 - fix(ls): Don't scan every file on startup, and don't use pro engine rules

Pull Request - State: closed - Opened by ajbt200128 about 1 year ago - 4 comments

#9078 - Add support for ci scan results as output

Pull Request - State: closed - Opened by jarrydlee about 1 year ago - 15 comments

#9077 - fix sarif output error: Update sarif.py

Pull Request - State: closed - Opened by 51nn about 1 year ago - 3 comments

#9076 - fix: Allow manual installation of Pro Engine when logged out

Pull Request - State: closed - Opened by nmote about 1 year ago - 3 comments

#9075 - chore: Delete test-semgrep-pro-latest CI job

Pull Request - State: closed - Opened by nmote about 1 year ago - 5 comments

#9074 - Release Version 1.46.0

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 2 comments

#9073 - Add comment on test-e2e-semgrep-ci workflow

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9072 - Field "fix" is not dumped in SARIF reports

Issue - State: open - Opened by sebasrevuelta about 1 year ago - 1 comment
Labels: feature:sarif

#9071 - chore: bump semgrep-interfaces

Pull Request - State: closed - Opened by gautambhat about 1 year ago - 1 comment

#9070 - Revert "fix: Refuse to run out of date semgrep-core-proprietary"

Pull Request - State: closed - Opened by nmote about 1 year ago - 1 comment

#9069 - Cron - update semgrep-rules

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 1 comment

#9068 - feat!(secrets): rename allow-untrusted-postprocessors

Pull Request - State: closed - Opened by kopecs about 1 year ago - 1 comment
Labels: wait-for-me

#9067 - fix: make pre-commit fail if ocamlformat not installed.

Pull Request - State: open - Opened by akuhlens about 1 year ago - 2 comments
Labels: Do not merge

#9066 - Disable secrets validation [SCRT-36]

Pull Request - State: closed - Opened by leifdreizler about 1 year ago - 3 comments

#9065 - remove oncall_email

Pull Request - State: closed - Opened by tpetr about 1 year ago - 1 comment

#9064 - osemgrep: add skip_libs parameter to setup_logging

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9063 - Cron - update semgrep-rules

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 1 comment

#9062 - In latest semgrep severity filter is broken

Issue - State: closed - Opened by matejsp about 1 year ago - 2 comments
Labels: bug, priority:high, cli

#9061 - add metrics for diff scans

Pull Request - State: closed - Opened by ihji about 1 year ago - 3 comments
Labels: wait-for-me

#9060 - fix: properly handle conditional stmt_exprs

Pull Request - State: closed - Opened by amchiclet about 1 year ago - 1 comment

#9059 - fix(ssc): handle optional newlines after section headers in pyproject.toml parser

Pull Request - State: closed - Opened by gautambhat about 1 year ago - 6 comments

#9058 - fix(readme): don't merge

Pull Request - State: closed - Opened by ajbt200128 about 1 year ago - 1 comment

#9057 - osemgrep: fully switch to the objects for meta, remove old code

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9056 - osemgrep: use objects for Github_metadata.ml (part 2)

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9055 - osemgrep: switch to objects for Git_meta.ml

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9054 - osemgrep: cleanup Git_xxx_metadata.ml

Pull Request - State: closed - Opened by aryx about 1 year ago - 2 comments

#9053 - fix(perf): reduce time spent on prefilter computation

Pull Request - State: closed - Opened by emjin about 1 year ago - 6 comments

#9052 - fix: Type error in pnpm-lock.yaml parser

Pull Request - State: closed - Opened by mmcqd about 1 year ago - 2 comments

#9051 - feat: `--custom-binary` flag for `install-semgrep-pro`

Pull Request - State: closed - Opened by nmote about 1 year ago - 2 comments

#9050 - Refactor and ATDify ProjectConfig

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9049 - pnpm dependency errors causes ci scans to crash and never report

Issue - State: open - Opened by tophersmith about 1 year ago - 2 comments
Labels: bug, parsing, ci

#9048 - osemgrep: use string wrap in semgrep_metrics.atd

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9047 - Variable name metavariables don't seem to match when they should for C++

Issue - State: open - Opened by agent00jackson about 1 year ago - 1 comment
Labels: bug, feature:matching, feature:metavariable, lang:c++

#9046 - Cron - update semgrep-rules

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 1 comment

#9045 - Log the source PCRE pattern in case of an error.

Pull Request - State: closed - Opened by mjambon about 1 year ago - 1 comment

#9044 - Use string wrap in semgrep_output_v1.atd for Rule_ID

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9043 - Release Version 1.45.0

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 1 comment

#9042 - chore: cleanup and add tests for prefilter

Pull Request - State: closed - Opened by emjin about 1 year ago - 3 comments

#9041 - Release Version 1.45.0

Pull Request - State: closed - Opened by semgrep-ci[bot] about 1 year ago - 1 comment

#9040 - Investigate speed of prefilter computation

Issue - State: closed - Opened by emjin about 1 year ago - 2 comments
Labels: priority:medium, performance

#9039 - use string wrap in semgrep_output_v1.atd part 3, fpath

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9038 - Use string wrap in semgrep_output_v1.atd part 2

Pull Request - State: closed - Opened by aryx about 1 year ago - 1 comment

#9037 - libs/path: remove Realpath module from paths library

Pull Request - State: closed - Opened by hannesm about 1 year ago - 1 comment

#9036 - Unhandled (but correct) Python `case` statement causes syntax error in _another_ function

Issue - State: open - Opened by sliedes about 1 year ago
Labels: lang:python, parsing

#9035 - Fix the String.rindex_from exn

Pull Request - State: closed - Opened by aryx about 1 year ago - 2 comments

#9034 - Reduced performance for complex rules since v1.42.0

Issue - State: closed - Opened by craigmarksmith about 1 year ago - 4 comments
Labels: priority:high, performance

GitHub / returntocorp/semgrep issues and pull requests