Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Semgrep as static analyser for CI #3961

Open
2 of 3 tasks
JorTurFer opened this issue Dec 6, 2022 · 4 comments
Open
2 of 3 tasks

Add Semgrep as static analyser for CI #3961

JorTurFer opened this issue Dec 6, 2022 · 4 comments
Assignees
@JorTurFer
Labels
automation feature All issues for new features that have been committed to

Comments

@JorTurFer
Copy link
Member

JorTurFer commented Dec 6, 2022
edited
Loading

Proposal

We are already using go linters and also CodeQL for detecting code smells and potential code vulnerabilities. Semgrep is another interesting tool that can help us with this job as it has some interesting rules that we can extend.

Use-Case

No response

Anything else?

No response
@JorTurFer JorTurFer added needs-discussion feature-request All issues for new features that have not been committed to labels Dec 6, 2022
This was referenced Dec 6, 2022
Merged
Merged
Merged
@tomkerkhove tomkerkhove mentioned this issue Dec 7, 2022
Merged
1 task
This was referenced Dec 8, 2022
Merged
Merged
Merged
@JorTurFer JorTurFer self-assigned this Dec 9, 2022
This was referenced Dec 9, 2022
Merged
Merged
This was referenced Feb 2, 2023
Merged
Merged
@stale
Copy link

stale bot commented Feb 8, 2023

This issue has been automatically marked as stale because it has not had recent activity. It will be closed in 7 days if no further activity occurs. Thank you for your contributions.

@stale stale bot added the stale All issues that are marked as stale due to inactivity label Feb 8, 2023
@JorTurFer
Copy link
Member Author

This is still in progress ( and I hope that it will be finished soon)

@stale stale bot removed the stale All issues that are marked as stale due to inactivity label Feb 8, 2023
@JorTurFer JorTurFer mentioned this issue Feb 10, 2023
Merged
1 task
@stale
Copy link

stale bot commented Apr 9, 2023

This issue has been automatically marked as stale because it has not had recent activity. It will be closed in 7 days if no further activity occurs. Thank you for your contributions.

@stale stale bot added the stale All issues that are marked as stale due to inactivity label Apr 9, 2023
@JorTurFer JorTurFer added stale-bot-ignore All issues that should not be automatically closed by our stale bot and removed stale All issues that are marked as stale due to inactivity labels Apr 9, 2023
@tomkerkhove tomkerkhove added feature All issues for new features that have been committed to automation help wanted Looking for support from community and removed needs-discussion feature-request All issues for new features that have not been committed to stale-bot-ignore All issues that should not be automatically closed by our stale bot labels Apr 13, 2023
@JorTurFer JorTurFer removed the help wanted Looking for support from community label Apr 13, 2023
@JorTurFer
Copy link
Member Author

We are blocked by semgrep/semgrep#7121

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@JorTurFer JorTurFer

Labels
automation feature All issues for new features that have been committed to
Projects
Roadmap - KEDA Core
Status: To Do
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tomkerkhove @JorTurFer