Issues: semgrep/semgrep-rules
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Milestones
Assignee
Sort
Issues list
Semgrep rules javascript express vm2 misses real vuln. code
bug
Something isn't working
#3350
opened Apr 10, 2024 by
OrenGitHub
Duplicate rules for Slack webhook URL
bug
Something isn't working
#3345
opened Mar 28, 2024 by
Sjord
False Positive javascript.express_xss
bug
Something isn't working
#3339
opened Mar 12, 2024 by
aviramshm
1 task
False positives in gorm-hardcoded-secret and gorm-empty-password
bug
Something isn't working
#3316
opened Mar 4, 2024 by
lfama
1 of 3 tasks
False positive in java.lang.security.system.system-setproperty-hardcoded-secret
bug
Something isn't working
#3312
opened Feb 23, 2024 by
Sjord
java/jax-rs/security/insecure-resteasy.yaml no longer relevant?
bug
Something isn't working
#3294
opened Jan 29, 2024 by
JLLeitschuh
1 of 3 tasks
False positive on unquoted-attribute-var for Angular
bug
Something isn't working
#3205
opened Oct 31, 2023 by
Sjord
Issue with detect-child-process rule
bug
Something isn't working
#3105
opened Sep 11, 2023 by
joshbouncesecurity
1 of 3 tasks
detected-twitter-oauth rule triggers on minimized CSS files
bug
Something isn't working
#3104
opened Sep 11, 2023 by
mtausig
1 of 3 tasks
False positive in javascript.lang.correctness.useless-assign.useless-assignment
bug
Something isn't working
#3036
opened Aug 10, 2023 by
Sjord
[Rule] Dependency confusion
enhancement
New feature or request
lang:dockerfile
priority:low
#3032
opened Aug 8, 2023 by
Sjord
A false negative (miss) in asyncpg-sqli ruleset
false-negative
False negative (FN) findings
lang:python
priority:low
#3027
opened Aug 4, 2023 by
kholia
c/lang/security/double-free.yaml false positive
bug
Something isn't working
#2995
opened Jul 4, 2023 by
kostya253
1 task
Ruby check-unsafe-reflection-methods false positive for "some_value.tap"
bug
Something isn't working
#2915
opened May 11, 2023 by
nightpool
1 task done
Express "tainted-sql-injection" is too broad in the strings it matches
bug
Something isn't working
#2898
opened May 1, 2023 by
ollien
1 of 3 tasks
JavaScript rule Something isn't working
lang:javascript
lang:typescript
priority:low
useless-assign reports false positive with require and object destructuring
bug
#2862
opened Apr 9, 2023 by
aarongoldenthal
1 of 3 tasks
Remove inferior OWASP XXE DocumentBuilderFactory rules / Add SAXParserFactory
bug
Something isn't working
priority:low
#2848
opened Apr 4, 2023 by
coheigea
HTML rules should scan HTML templates with different extensions
bug
Something isn't working
enhancement
New feature or request
#2508
opened Oct 28, 2022 by
Sjord
python/lang/security/audit/insecure-transport/requests/request-with-http.yaml does not filter localhost URLs
blocked
bug
Something isn't working
#2461
opened Oct 10, 2022 by
clintgibler
1 of 3 tasks
[Rule] Go: replace looppointer rule with exportloopref
bug
Something isn't working
#2385
opened Sep 12, 2022 by
arieltorti
1 of 3 tasks
Source not available for rules in registry
bug
Something isn't working
priority:low
#2356
opened Aug 26, 2022 by
Sjord
Previous Next
ProTip!
Adding no:label will show everything without a label.