-
Notifications
You must be signed in to change notification settings - Fork 396
Pull requests: semgrep/semgrep-rules
Author
Label
Milestones
Reviews
Assignee
Sort
Pull requests list
[run-as-non-root-security-context-pod-level] runAsNonRoot does not necessarily comes directly after securityContext
#3511
opened Nov 5, 2024 by
SebGondron
Loading…
Bump aiohttp from 3.9.2 to 3.9.4 in /.github/rulerascal
dependencies
Pull requests that update a dependency file
python
Pull requests that update Python code
#3358
opened Apr 18, 2024 by
dependabot
bot
Loading…
[Security] Added edge cases for tainted pickle deserialization
#3355
opened Apr 16, 2024 by
theinfosecguy
Loading…
Bump idna from 3.4 to 3.7 in /.github/rulerascal
dependencies
Pull requests that update a dependency file
python
Pull requests that update Python code
#3352
opened Apr 12, 2024 by
dependabot
bot
Loading…
Remove rules that are for deprecated or removed services and update tokens for others
#3346
opened Mar 28, 2024 by
LewisArdern
•
Draft
New Published Rules - thanh.wp-sqli-tainted
#3320
opened Mar 7, 2024 by
semgrep-dev-pr-bot
bot
Loading…
New Published Rules - uniswap.npm-package-in-action-not-pinned-to-commit-sha
#3270
opened Jan 10, 2024 by
semgrep-dev-pr-bot
bot
Loading…
New Published Rules - cosmosofcyberspace_github_io.web_cache_deception_nodejs_express_framework
#3221
opened Nov 14, 2023 by
semgrep-dev-pr-bot
bot
Loading…
Reduce false positives in unquoted-attribute-var rule
#3214
opened Nov 7, 2023 by
philipturnbull
•
Draft
1 of 2 tasks
New Published Rules - frozen_solid.aws-opensearchserverless-is-public
#3133
opened Sep 27, 2023 by
semgrep-dev-pr-bot
bot
Loading…
New Published Rules - innopolis.flask-insecure-set_cookie
#3114
opened Sep 16, 2023 by
semgrep-dev-pr-bot
bot
Loading…
Rename some terraform AWS rules from "unencrypted" to "encrypted-with-cmk"
#3030
opened Aug 7, 2023 by
frozenSolid
Loading…
pattern-source - fix parameter order = Update ldap-injection.yaml
#3019
opened Jul 28, 2023 by
1lyasam
Loading…
ProTip!
Exclude everything labeled
bug
with -label:bug.