Skip to content

Release v0.5.0
Compare
Choose a tag to compare
@github-actions github-actions released this 28 Apr 18:15
· 6930 commits to develop since this release
v0.5.0
9d82b4d

Changed

  • Rename executable to semgrep
  • Deep expression matching in conditionals requires different syntax: 
    if <... $X = True ...>:
    ...
    will now match 
    if foo == bar and baz == True:
    return 1
  • Deduplicate semgrep output in cases where there are multiple ways
    a rule matches section of code
  • Deep statement matchings goes into functions and classes: 
    $X = ...
...
bar($X)
    now matches with 
    QUX = "qux"

function baz() {
    function foo() {
        bar(QUX)
    }
}

Added

  • python2 is a valid supported language

Fixed

  • Expression will right hand side of assignment/variable definition in javascript. See #429 
    foo();
    will now match 
    var x = foo();
  • Regression where "..." was matching empty list 
    foo("...")
    does not match 
    foo()
Assets 6
Loading