[pre-commit] Semgrep trying to scan not supported languages file with python rule #4310
Comments
|
which version of semgrep are you using? |
|
It's |
|
We're experiencing the same on # .semgrep/error/python.yml
rules:
- id: mutable-default-arguments
languages:
- python
message: Do not use mutable values as default arguments
pattern-either:
- pattern: |
def $FUNC(..., $ARG=[], ...):
...
- pattern: |
def $FUNC(..., $ARG={}, ...):
...
severity: ERRORWe're running Semgrep using pre-commit with the following command: - repo: https://github.com/returntocorp/semgrep
rev: 'v0.74.0'
hooks:
- id: semgrep
args: ['--config', '.semgrep/error', '--error']Error detailsSemgrep Core ERROR - Fatal error: When running mutable-default-arguments on path/to/one/of/our/scss/files.scss: (Failure "Lexer_python.top_mode: empty stack") -----[ BEGIN error trace ]----- Raised at Parse_target.run in file "src/parsing/Parse_target.ml", line 185, characters 17-26 Called from Parse_target.parse_and_resolve_name_use_pfff_or_treesitter in file "src/parsing/Parse_target.ml", line 349, characters 30-60 Called from Parse_with_caching.parse_generic.(fun) in file "src/runner/Parse_with_caching.ml", line 102, characters 12-80 Called from Parse_with_caching.cache_computation.(fun) in file "src/runner/Parse_with_caching.ml", line 55, characters 20-24 Called from Parse_with_caching.parse_generic in file "src/runner/Parse_with_caching.ml", line 86, characters 4-1023 Called from CamlinternalLazy.force_lazy_block in file "camlinternalLazy.ml", line 31, characters 17-27 Re-raised at CamlinternalLazy.force_lazy_block in file "camlinternalLazy.ml", line 36, characters 4-11 Called from Common.with_time in file "src/pfff/commons/Common.ml", line 215, characters 12-16 Called from Match_rules.matches_of_patterns in file "src/engine/Match_rules.ml", line 264, characters 8-67 Called from Match_rules.matches_of_xpatterns in file "src/engine/Match_rules.ml", line 601, characters 6-105 Called from Match_rules.matches_of_formula in file "src/engine/Match_rules.ml", line 931, characters 4-109 Called from Match_rules.check_rule in file "src/engine/Match_rules.ml", line 967, characters 4-71 Called from Match_rules.check.(fun) in file "src/engine/Match_rules.ml", line 999, characters 17-79 |
|
Ok looking |
|
@vedanandusekar are you also using semgrep via pre-commit? Or you run it on the command-line? Could you copy-paste this test.R file so I can try to reproduce. |
|
@daneah can you run the pre-commit command on the command-line that shows the error and also attach this file.scss? |
|
@aryx Interestingly, running The ////
/// Much of the styling here could be reduced to an `all: unset` rule
/// But `all`, `unset`, and `initial` are not supported in IE11
////
///
/// Reset Foundation style that applies to all images on the site
///
#jstor-logo img {
vertical-align: initial;
}
///
/// Reset Foundation's styling from overly-broad selectors
/// (e.g. [type="text"] rather than input[type="text"])
///
[type=submit],
[type=reset],
[type=button] {
appearance: none;
-webkit-appearance: none;
-moz-appearance: none;
@at-root button#{&} {
appearance: button;
}
}
pharos-text-input,
[data-pharos-component="PharosTextInput"],
.form-jstor pharos-text-input,
.form-jstor [data-pharos-component="PharosTextInput"],
pharos-input-group,
[data-pharos-component="PharosInputGroup"],
.form-jstor pharos-input-group,
.form-jstor [data-pharos-component="PharosInputGroup"] {
&[type="text"],
&[type="password"],
&[type="date"],
&[type="datetime"],
&[type="datetime-local"],
&[type="month"],
&[type="week"],
&[type="email"],
&[type="number"],
&[type="search"],
&[type="tel"],
&[type="time"],
&[type="url"],
&[type="color"] {
display: block;
box-sizing: border-box !important;
margin: 0 0 0 0;
padding: 0 !important;
border: none !important;
border-radius: 0 !important;
background-color: transparent !important;
box-shadow: none !important;
font-family: initial !important;
font-size: initial !important;
font-weight: initial !important;
line-height: initial !important;
color: initial !important;
transition: initial !important;
height: initial !important;
& input {
margin: 0;
}
}
}
///
/// Update Foundation's styling for layout classes to account for the change in base font size
///
.column, .columns {
padding-right: 0.9375rem;
padding-left: 0.9375rem;
}This leads me to suspect that when run as part of pre-commit's pre-commit hook, Semgrep is attempting to parse all changed files for each rule, whereas other modes of execution respect the paths:
exclude:
- "*.scss" |
|
Ok I was able to reproduce the error. Thx! |
aryx
changed the title
aryx
changed the title
|
Actually it was not introduced in 0.72. The bug has always been there it's just that it appears only when someone commit a file that will make the python lexer fails with a bad exception. |
|
There are 2 problems:
|
This will help semgrep/semgrep#4310 test plan: see related PR in semgrep
This will help #4310 test plan: test file included
* [Python] generate a proper lexical exn for unbalanced braces This will help #4310 test plan: test file included * changelog
|
Thank you for fixing this issue. |
We are currently running
semgrepwith the following rulesetsemgrep --config=p/r2c-security-audit --JSONin the repository which has mixed-language support.So ideally it should just ignore the language files which it doesn't support.
But instead of that, it is trying to run python-Django rule-set against R type file.
Here is the error :
line 967, characters 4-71\nCalled from Match_rules.check.(fun) in file \"src/engine/Match_rules.ml\", line 999, characters 17-79\n\n-----[ END error trace ]-----\n", "path": "test.R", "rule_id": "python.django.security.injection.path-traversal.path-traversal-file-name.path-traversal-file-name", "type": "Fatal error"}], "results": []}Let us know how we can fix it.
Any help would be appreciated.
The text was updated successfully, but these errors were encountered: