New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Semgrep 0.72.0 tries to analyze .png files and crashes #4258
Labels
Comments
IagoAbal
added
bug
Something isn't working
priority:high
Issue requires immediate attention
labels
Nov 11, 2021
IagoAbal
added a commit
to semgrep/semgrep-action
that referenced
this issue
Nov 11, 2021
There is a serious bug in 0.72.0 that causes Semgrep to analyze .png and other binary files, and crash with Pcre.Error(BadUTF8). This is affects paying customers. Rolling back to 0.71.0 until this is fixed. Related-to: semgrep/semgrep#4258
1 task
IagoAbal
added a commit
to semgrep/semgrep-action
that referenced
this issue
Nov 11, 2021
There is a serious bug in 0.72.0 that causes Semgrep to analyze .png and other binary files, and crash with Pcre.Error(BadUTF8). This affects paying customers. Rolling back to 0.71.0 until this is fixed. Related-to: semgrep/semgrep#4258
cc @mjambon |
cc @brendongo @mmcqd |
3 tasks
I encountered this on 0.72 with zips, tar.gz, .eot, .ttf, .woff(2). I was able to workaround it with both |
This happens using the |
3 tasks
IagoAbal
added a commit
that referenced
this issue
Nov 12, 2021
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
Semgrep 0.72.0 tries to analyze .png and other binary files and then crashes with
Pcre.Error(BadUTF8)
:https://r2c-community.slack.com/archives/C0242656NQ2/p1636567860034600. Affects paying customers.
To Reproduce
This can be reproduced on this public repo https://github.com/RecordReplay/devtools/, see https://github.com/RecordReplay/devtools/runs/4169052484?check_suite_focus=true#step:4:19
What is the priority of the bug to you?
The text was updated successfully, but these errors were encountered: