mcp-server-semgrep 1.0.0 → 1.0.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +58 -0
- package/Dockerfile +29 -14
- package/README.md +37 -16
- package/README_PL.md +15 -7
- package/SECURITY.md +44 -0
- package/USAGE.md +13 -5
- package/build/index.js +241 -278
- package/package.json +38 -18
- package/CLAUDE.md +0 -24
- package/build/config.js +0 -19
- package/semgrep-rules/CODE_OF_CONDUCT.md +0 -76
- package/semgrep-rules/LICENSE +0 -1
- package/semgrep-rules/Makefile +0 -65
- package/semgrep-rules/Pipfile +0 -17
- package/semgrep-rules/README.md +0 -50
- package/semgrep-rules/SECURITY.md +0 -9
- package/semgrep-rules/ai/csharp/detect-openai.cs +0 -11
- package/semgrep-rules/ai/csharp/detect-openai.yaml +0 -18
- package/semgrep-rules/ai/dart/detect-gemini.dart +0 -12
- package/semgrep-rules/ai/dart/detect-gemini.yaml +0 -17
- package/semgrep-rules/ai/generic/detect-generic-ai-anthprop.txt +0 -18
- package/semgrep-rules/ai/generic/detect-generic-ai-anthprop.yaml +0 -18
- package/semgrep-rules/ai/generic/detect-generic-ai-api.js +0 -18
- package/semgrep-rules/ai/generic/detect-generic-ai-api.yaml +0 -17
- package/semgrep-rules/ai/generic/detect-generic-ai-gem.html +0 -20
- package/semgrep-rules/ai/generic/detect-generic-ai-gem.yaml +0 -17
- package/semgrep-rules/ai/generic/detect-generic-ai-oai.txt +0 -7
- package/semgrep-rules/ai/generic/detect-generic-ai-oai.yaml +0 -17
- package/semgrep-rules/ai/go/detect-gemini.go +0 -14
- package/semgrep-rules/ai/go/detect-gemini.yaml +0 -17
- package/semgrep-rules/ai/go/detect-openai.go +0 -163
- package/semgrep-rules/ai/go/detect-openai.yaml +0 -17
- package/semgrep-rules/ai/kotlin/detect-gemini.kt +0 -79
- package/semgrep-rules/ai/kotlin/detect-gemini.yaml +0 -17
- package/semgrep-rules/ai/python/detect-anthropic.py +0 -18
- package/semgrep-rules/ai/python/detect-anthropic.yaml +0 -20
- package/semgrep-rules/ai/python/detect-gemini.py +0 -7
- package/semgrep-rules/ai/python/detect-gemini.yaml +0 -16
- package/semgrep-rules/ai/python/detect-huggingface.py +0 -5
- package/semgrep-rules/ai/python/detect-huggingface.yaml +0 -16
- package/semgrep-rules/ai/python/detect-langchain.py +0 -22
- package/semgrep-rules/ai/python/detect-langchain.yaml +0 -25
- package/semgrep-rules/ai/python/detect-mistral.py +0 -19
- package/semgrep-rules/ai/python/detect-mistral.yaml +0 -18
- package/semgrep-rules/ai/python/detect-openai.py +0 -12
- package/semgrep-rules/ai/python/detect-openai.yaml +0 -19
- package/semgrep-rules/ai/python/detect-pytorch.py +0 -5
- package/semgrep-rules/ai/python/detect-pytorch.yaml +0 -17
- package/semgrep-rules/ai/python/detect-tensorflow.py +0 -8
- package/semgrep-rules/ai/python/detect-tensorflow.yaml +0 -16
- package/semgrep-rules/ai/swift/detect-apple-core-ml.swift +0 -357
- package/semgrep-rules/ai/swift/detect-apple-core-ml.yaml +0 -17
- package/semgrep-rules/ai/swift/detect-gemini.swift +0 -12
- package/semgrep-rules/ai/swift/detect-gemini.yaml +0 -17
- package/semgrep-rules/ai/typescript/detect-anthropic.ts +0 -15
- package/semgrep-rules/ai/typescript/detect-anthropic.yaml +0 -20
- package/semgrep-rules/ai/typescript/detect-gemini.ts +0 -9
- package/semgrep-rules/ai/typescript/detect-gemini.yaml +0 -20
- package/semgrep-rules/ai/typescript/detect-mistral.ts +0 -15
- package/semgrep-rules/ai/typescript/detect-mistral.yaml +0 -20
- package/semgrep-rules/ai/typescript/detect-openai.ts +0 -15
- package/semgrep-rules/ai/typescript/detect-openai.yaml +0 -20
- package/semgrep-rules/ai/typescript/detect-promptfoo.ts +0 -5
- package/semgrep-rules/ai/typescript/detect-promptfoo.yaml +0 -18
- package/semgrep-rules/ai/typescript/detect-vercel-ai.ts +0 -49
- package/semgrep-rules/ai/typescript/detect-vercel-ai.yaml +0 -20
- package/semgrep-rules/apex/lang/best-practice/ncino/accessModifiers/GlobalAccessModifiers.cls +0 -49
- package/semgrep-rules/apex/lang/best-practice/ncino/accessModifiers/GlobalAccessModifiers.yaml +0 -25
- package/semgrep-rules/apex/lang/best-practice/ncino/urls/AbsoluteUrls.cls +0 -51
- package/semgrep-rules/apex/lang/best-practice/ncino/urls/AbsoluteUrls.yaml +0 -23
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidNativeDmlInLoops.cls +0 -146
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidNativeDmlInLoops.yaml +0 -47
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidOperationsWithLimitsInLoops.cls +0 -121
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidOperationsWithLimitsInLoops.yaml +0 -43
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidSoqlInLoops.cls +0 -37
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidSoqlInLoops.yaml +0 -34
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidSoslInLoops.cls +0 -45
- package/semgrep-rules/apex/lang/performance/ncino/operationsInLoops/AvoidSoslInLoops.yaml +0 -37
- package/semgrep-rules/apex/lang/security/ncino/dml/ApexCSRFConstructor.cls +0 -55
- package/semgrep-rules/apex/lang/security/ncino/dml/ApexCSRFConstructor.yaml +0 -51
- package/semgrep-rules/apex/lang/security/ncino/dml/ApexCSRFStaticConstructor.cls +0 -30
- package/semgrep-rules/apex/lang/security/ncino/dml/ApexCSRFStaticConstructor.yaml +0 -44
- package/semgrep-rules/apex/lang/security/ncino/dml/DmlNativeStatements.cls +0 -205
- package/semgrep-rules/apex/lang/security/ncino/dml/DmlNativeStatements.yaml +0 -35
- package/semgrep-rules/apex/lang/security/ncino/encryption/BadCrypto.cls +0 -77
- package/semgrep-rules/apex/lang/security/ncino/encryption/BadCrypto.yaml +0 -34
- package/semgrep-rules/apex/lang/security/ncino/endpoints/InsecureHttpRequest.cls +0 -54
- package/semgrep-rules/apex/lang/security/ncino/endpoints/InsecureHttpRequest.yaml +0 -30
- package/semgrep-rules/apex/lang/security/ncino/endpoints/NamedCredentialsConstantMatch.cls +0 -28
- package/semgrep-rules/apex/lang/security/ncino/endpoints/NamedCredentialsConstantMatch.yaml +0 -32
- package/semgrep-rules/apex/lang/security/ncino/endpoints/NamedCredentialsStringMatch.cls +0 -26
- package/semgrep-rules/apex/lang/security/ncino/endpoints/NamedCredentialsStringMatch.yaml +0 -26
- package/semgrep-rules/apex/lang/security/ncino/injection/ApexSOQLInjectionFromUnescapedURLParam.cls +0 -39
- package/semgrep-rules/apex/lang/security/ncino/injection/ApexSOQLInjectionFromUnescapedURLParam.yaml +0 -41
- package/semgrep-rules/apex/lang/security/ncino/injection/ApexSOQLInjectionUnescapedParam.cls +0 -63
- package/semgrep-rules/apex/lang/security/ncino/injection/ApexSOQLInjectionUnescapedParam.yaml +0 -43
- package/semgrep-rules/apex/lang/security/ncino/sharing/SpecifySharingLevel.cls +0 -54
- package/semgrep-rules/apex/lang/security/ncino/sharing/SpecifySharingLevel.yaml +0 -32
- package/semgrep-rules/apex/lang/security/ncino/system/SystemDebug.cls +0 -13
- package/semgrep-rules/apex/lang/security/ncino/system/SystemDebug.yaml +0 -30
- package/semgrep-rules/bash/curl/security/curl-eval.bash +0 -23
- package/semgrep-rules/bash/curl/security/curl-eval.yaml +0 -33
- package/semgrep-rules/bash/curl/security/curl-pipe-bash.bash +0 -20
- package/semgrep-rules/bash/curl/security/curl-pipe-bash.yaml +0 -35
- package/semgrep-rules/bash/lang/best-practice/iteration-over-ls-output.bash +0 -13
- package/semgrep-rules/bash/lang/best-practice/iteration-over-ls-output.yaml +0 -21
- package/semgrep-rules/bash/lang/best-practice/useless-cat.bash +0 -42
- package/semgrep-rules/bash/lang/best-practice/useless-cat.yaml +0 -27
- package/semgrep-rules/bash/lang/correctness/unquoted-expansion.bash +0 -104
- package/semgrep-rules/bash/lang/correctness/unquoted-expansion.yaml +0 -54
- package/semgrep-rules/bash/lang/security/ifs-tampering.bash +0 -5
- package/semgrep-rules/bash/lang/security/ifs-tampering.yaml +0 -28
- package/semgrep-rules/c/lang/correctness/c-string-equality.c +0 -34
- package/semgrep-rules/c/lang/correctness/c-string-equality.fixed.c +0 -34
- package/semgrep-rules/c/lang/correctness/c-string-equality.yaml +0 -18
- package/semgrep-rules/c/lang/correctness/goto-fail.c +0 -28
- package/semgrep-rules/c/lang/correctness/goto-fail.yaml +0 -13
- package/semgrep-rules/c/lang/correctness/incorrect-use-ato-fn.c +0 -25
- package/semgrep-rules/c/lang/correctness/incorrect-use-ato-fn.yaml +0 -19
- package/semgrep-rules/c/lang/correctness/incorrect-use-sscanf-fn.c +0 -78
- package/semgrep-rules/c/lang/correctness/incorrect-use-sscanf-fn.yaml +0 -21
- package/semgrep-rules/c/lang/security/double-free.c +0 -27
- package/semgrep-rules/c/lang/security/double-free.yaml +0 -44
- package/semgrep-rules/c/lang/security/function-use-after-free.c +0 -68
- package/semgrep-rules/c/lang/security/function-use-after-free.yaml +0 -44
- package/semgrep-rules/c/lang/security/info-leak-on-non-formatted-string.c +0 -8
- package/semgrep-rules/c/lang/security/info-leak-on-non-formatted-string.yaml +0 -22
- package/semgrep-rules/c/lang/security/insecure-use-gets-fn.c +0 -19
- package/semgrep-rules/c/lang/security/insecure-use-gets-fn.yaml +0 -21
- package/semgrep-rules/c/lang/security/insecure-use-memset.c +0 -19
- package/semgrep-rules/c/lang/security/insecure-use-memset.fixed.c +0 -19
- package/semgrep-rules/c/lang/security/insecure-use-memset.yaml +0 -35
- package/semgrep-rules/c/lang/security/insecure-use-printf-fn.c +0 -64
- package/semgrep-rules/c/lang/security/insecure-use-printf-fn.yaml +0 -44
- package/semgrep-rules/c/lang/security/insecure-use-scanf-fn.c +0 -19
- package/semgrep-rules/c/lang/security/insecure-use-scanf-fn.yaml +0 -22
- package/semgrep-rules/c/lang/security/insecure-use-strcat-fn.c +0 -20
- package/semgrep-rules/c/lang/security/insecure-use-strcat-fn.yaml +0 -25
- package/semgrep-rules/c/lang/security/insecure-use-string-copy-fn.c +0 -20
- package/semgrep-rules/c/lang/security/insecure-use-string-copy-fn.yaml +0 -29
- package/semgrep-rules/c/lang/security/insecure-use-strtok-fn.c +0 -23
- package/semgrep-rules/c/lang/security/insecure-use-strtok-fn.yaml +0 -24
- package/semgrep-rules/c/lang/security/random-fd-exhaustion.c +0 -62
- package/semgrep-rules/c/lang/security/random-fd-exhaustion.yaml +0 -39
- package/semgrep-rules/c/lang/security/use-after-free.c +0 -189
- package/semgrep-rules/c/lang/security/use-after-free.yaml +0 -39
- package/semgrep-rules/clojure/lang/security/command-injection-shell-call.clj +0 -29
- package/semgrep-rules/clojure/lang/security/command-injection-shell-call.yaml +0 -40
- package/semgrep-rules/clojure/lang/security/documentbuilderfactory-xxe.clj +0 -41
- package/semgrep-rules/clojure/lang/security/documentbuilderfactory-xxe.yaml +0 -68
- package/semgrep-rules/clojure/lang/security/use-of-md5.clj +0 -20
- package/semgrep-rules/clojure/lang/security/use-of-md5.yaml +0 -35
- package/semgrep-rules/clojure/lang/security/use-of-sha1.clj +0 -56
- package/semgrep-rules/clojure/lang/security/use-of-sha1.yaml +0 -35
- package/semgrep-rules/clojure/security/clojure-read-string/read-string-unsafe.clj +0 -19
- package/semgrep-rules/clojure/security/clojure-read-string/read-string-unsafe.yaml +0 -41
- package/semgrep-rules/csharp/dotnet/security/audit/ldap-injection.cs +0 -51
- package/semgrep-rules/csharp/dotnet/security/audit/ldap-injection.yaml +0 -43
- package/semgrep-rules/csharp/dotnet/security/audit/mass-assignment.cs +0 -22
- package/semgrep-rules/csharp/dotnet/security/audit/mass-assignment.yaml +0 -50
- package/semgrep-rules/csharp/dotnet/security/audit/misconfigured-lockout-option.cs +0 -69
- package/semgrep-rules/csharp/dotnet/security/audit/misconfigured-lockout-option.yaml +0 -35
- package/semgrep-rules/csharp/dotnet/security/audit/missing-or-broken-authorization.cs +0 -28
- package/semgrep-rules/csharp/dotnet/security/audit/missing-or-broken-authorization.yaml +0 -59
- package/semgrep-rules/csharp/dotnet/security/audit/open-directory-listing.cs +0 -28
- package/semgrep-rules/csharp/dotnet/security/audit/open-directory-listing.yaml +0 -35
- package/semgrep-rules/csharp/dotnet/security/audit/razor-use-of-htmlstring.cshtml +0 -29
- package/semgrep-rules/csharp/dotnet/security/audit/razor-use-of-htmlstring.yaml +0 -35
- package/semgrep-rules/csharp/dotnet/security/audit/xpath-injection.cs +0 -30
- package/semgrep-rules/csharp/dotnet/security/audit/xpath-injection.yaml +0 -36
- package/semgrep-rules/csharp/dotnet/security/mvc-missing-antiforgery.cs +0 -63
- package/semgrep-rules/csharp/dotnet/security/mvc-missing-antiforgery.yaml +0 -50
- package/semgrep-rules/csharp/dotnet/security/net-webconfig-debug.web.config +0 -20
- package/semgrep-rules/csharp/dotnet/security/net-webconfig-debug.yaml +0 -34
- package/semgrep-rules/csharp/dotnet/security/net-webconfig-trace-enabled.web.config +0 -30
- package/semgrep-rules/csharp/dotnet/security/net-webconfig-trace-enabled.yaml +0 -32
- package/semgrep-rules/csharp/dotnet/security/razor-template-injection.cs +0 -36
- package/semgrep-rules/csharp/dotnet/security/razor-template-injection.yaml +0 -37
- package/semgrep-rules/csharp/dotnet/security/use_deprecated_cipher_algorithm.cs +0 -55
- package/semgrep-rules/csharp/dotnet/security/use_deprecated_cipher_algorithm.yaml +0 -31
- package/semgrep-rules/csharp/dotnet/security/use_ecb_mode.cs +0 -127
- package/semgrep-rules/csharp/dotnet/security/use_ecb_mode.yaml +0 -39
- package/semgrep-rules/csharp/dotnet/security/use_weak_rng_for_keygeneration.cs +0 -71
- package/semgrep-rules/csharp/dotnet/security/use_weak_rng_for_keygeneration.yaml +0 -48
- package/semgrep-rules/csharp/dotnet/security/use_weak_rsa_encryption_padding.cs +0 -65
- package/semgrep-rules/csharp/dotnet/security/use_weak_rsa_encryption_padding.yaml +0 -28
- package/semgrep-rules/csharp/dotnet/security/web-config-insecure-cookie-settings.web.config +0 -87
- package/semgrep-rules/csharp/dotnet/security/web-config-insecure-cookie-settings.yaml +0 -42
- package/semgrep-rules/csharp/lang/best-practice/structured-logging.cs +0 -83
- package/semgrep-rules/csharp/lang/best-practice/structured-logging.yaml +0 -49
- package/semgrep-rules/csharp/lang/correctness/double/double-epsilon-equality.cs +0 -67
- package/semgrep-rules/csharp/lang/correctness/double/double-epsilon-equality.yaml +0 -34
- package/semgrep-rules/csharp/lang/correctness/regioninfo/regioninfo-interop.cs +0 -24
- package/semgrep-rules/csharp/lang/correctness/regioninfo/regioninfo-interop.yaml +0 -37
- package/semgrep-rules/csharp/lang/correctness/sslcertificatetrust/sslcertificatetrust-handshake-no-trust.cs +0 -31
- package/semgrep-rules/csharp/lang/correctness/sslcertificatetrust/sslcertificatetrust-handshake-no-trust.fixed.cs +0 -31
- package/semgrep-rules/csharp/lang/correctness/sslcertificatetrust/sslcertificatetrust-handshake-no-trust.yaml +0 -23
- package/semgrep-rules/csharp/lang/security/ad/jwt-tokenvalidationparameters-no-expiry-validation.cs +0 -41
- package/semgrep-rules/csharp/lang/security/ad/jwt-tokenvalidationparameters-no-expiry-validation.yaml +0 -44
- package/semgrep-rules/csharp/lang/security/cryptography/X509-subject-name-validation.cs +0 -81
- package/semgrep-rules/csharp/lang/security/cryptography/X509-subject-name-validation.yaml +0 -73
- package/semgrep-rules/csharp/lang/security/cryptography/X509Certificate2-privkey.cs +0 -32
- package/semgrep-rules/csharp/lang/security/cryptography/X509Certificate2-privkey.yaml +0 -38
- package/semgrep-rules/csharp/lang/security/cryptography/unsigned-security-token.cs +0 -22
- package/semgrep-rules/csharp/lang/security/cryptography/unsigned-security-token.yaml +0 -31
- package/semgrep-rules/csharp/lang/security/filesystem/unsafe-path-combine.cs +0 -58
- package/semgrep-rules/csharp/lang/security/filesystem/unsafe-path-combine.yaml +0 -60
- package/semgrep-rules/csharp/lang/security/http/http-listener-wildcard-bindings.cs +0 -36
- package/semgrep-rules/csharp/lang/security/http/http-listener-wildcard-bindings.yaml +0 -34
- package/semgrep-rules/csharp/lang/security/injections/os-command.cs +0 -180
- package/semgrep-rules/csharp/lang/security/injections/os-command.yaml +0 -93
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/binary-formatter.cs +0 -24
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/binary-formatter.yaml +0 -34
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/data-contract-resolver.cs +0 -11
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/data-contract-resolver.yaml +0 -29
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/fast-json.cs +0 -20
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/fast-json.yaml +0 -36
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/fs-pickler.cs +0 -22
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/fs-pickler.yaml +0 -33
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/insecure-typefilterlevel-full.cs +0 -21
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/insecure-typefilterlevel-full.yaml +0 -48
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/javascript-serializer.cs +0 -26
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/javascript-serializer.yaml +0 -33
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/los-formatter.cs +0 -21
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/los-formatter.yaml +0 -35
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/net-data-contract.cs +0 -24
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/net-data-contract.yaml +0 -35
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/newtonsoft.cs +0 -60
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/newtonsoft.yaml +0 -45
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/soap-formatter.cs +0 -23
- package/semgrep-rules/csharp/lang/security/insecure-deserialization/soap-formatter.yaml +0 -35
- package/semgrep-rules/csharp/lang/security/memory/memory-marshal-create-span.cs +0 -17
- package/semgrep-rules/csharp/lang/security/memory/memory-marshal-create-span.yaml +0 -29
- package/semgrep-rules/csharp/lang/security/missing-hsts-header.cs +0 -83
- package/semgrep-rules/csharp/lang/security/missing-hsts-header.yaml +0 -52
- package/semgrep-rules/csharp/lang/security/open-redirect.cs +0 -78
- package/semgrep-rules/csharp/lang/security/open-redirect.yaml +0 -47
- package/semgrep-rules/csharp/lang/security/regular-expression-dos/regular-expression-dos-infinite-timeout.cs +0 -22
- package/semgrep-rules/csharp/lang/security/regular-expression-dos/regular-expression-dos-infinite-timeout.yaml +0 -39
- package/semgrep-rules/csharp/lang/security/regular-expression-dos/regular-expression-dos.cs +0 -52
- package/semgrep-rules/csharp/lang/security/regular-expression-dos/regular-expression-dos.yaml +0 -53
- package/semgrep-rules/csharp/lang/security/sqli/csharp-sqli.cs +0 -198
- package/semgrep-rules/csharp/lang/security/sqli/csharp-sqli.yaml +0 -60
- package/semgrep-rules/csharp/lang/security/ssrf/http-client.cs +0 -230
- package/semgrep-rules/csharp/lang/security/ssrf/http-client.yaml +0 -66
- package/semgrep-rules/csharp/lang/security/ssrf/rest-client.cs +0 -135
- package/semgrep-rules/csharp/lang/security/ssrf/rest-client.yaml +0 -44
- package/semgrep-rules/csharp/lang/security/ssrf/web-client.cs +0 -466
- package/semgrep-rules/csharp/lang/security/ssrf/web-client.yaml +0 -84
- package/semgrep-rules/csharp/lang/security/ssrf/web-request.cs +0 -93
- package/semgrep-rules/csharp/lang/security/ssrf/web-request.yaml +0 -59
- package/semgrep-rules/csharp/lang/security/stacktrace-disclosure.cs +0 -33
- package/semgrep-rules/csharp/lang/security/stacktrace-disclosure.yaml +0 -32
- package/semgrep-rules/csharp/lang/security/xxe/xmldocument-unsafe-parser-override.cs +0 -35
- package/semgrep-rules/csharp/lang/security/xxe/xmldocument-unsafe-parser-override.yaml +0 -43
- package/semgrep-rules/csharp/lang/security/xxe/xmlreadersettings-unsafe-parser-override.cs +0 -116
- package/semgrep-rules/csharp/lang/security/xxe/xmlreadersettings-unsafe-parser-override.yaml +0 -43
- package/semgrep-rules/csharp/lang/security/xxe/xmltextreader-unsafe-defaults.cs +0 -51
- package/semgrep-rules/csharp/lang/security/xxe/xmltextreader-unsafe-defaults.yaml +0 -44
- package/semgrep-rules/csharp/razor/security/html-raw-json.cshtml +0 -20
- package/semgrep-rules/csharp/razor/security/html-raw-json.yaml +0 -33
- package/semgrep-rules/dockerfile/audit/dockerfile-source-not-pinned.dockerfile +0 -20
- package/semgrep-rules/dockerfile/audit/dockerfile-source-not-pinned.yaml +0 -26
- package/semgrep-rules/dockerfile/best-practice/avoid-apk-upgrade.dockerfile +0 -16
- package/semgrep-rules/dockerfile/best-practice/avoid-apk-upgrade.yaml +0 -17
- package/semgrep-rules/dockerfile/best-practice/avoid-apt-get-upgrade.dockerfile +0 -16
- package/semgrep-rules/dockerfile/best-practice/avoid-apt-get-upgrade.yaml +0 -17
- package/semgrep-rules/dockerfile/best-practice/avoid-dnf-update.dockerfile +0 -11
- package/semgrep-rules/dockerfile/best-practice/avoid-dnf-update.yaml +0 -16
- package/semgrep-rules/dockerfile/best-practice/avoid-latest-version.dockerfile +0 -23
- package/semgrep-rules/dockerfile/best-practice/avoid-latest-version.yaml +0 -16
- package/semgrep-rules/dockerfile/best-practice/avoid-platform-with-from.dockerfile +0 -25
- package/semgrep-rules/dockerfile/best-practice/avoid-platform-with-from.yaml +0 -20
- package/semgrep-rules/dockerfile/best-practice/avoid-yum-update.dockerfile +0 -11
- package/semgrep-rules/dockerfile/best-practice/avoid-yum-update.yaml +0 -16
- package/semgrep-rules/dockerfile/best-practice/avoid-zypper-update.dockerfile +0 -15
- package/semgrep-rules/dockerfile/best-practice/avoid-zypper-update.yaml +0 -16
- package/semgrep-rules/dockerfile/best-practice/maintainer-is-deprecated.dockerfile +0 -6
- package/semgrep-rules/dockerfile/best-practice/maintainer-is-deprecated.fixed.dockerfile +0 -6
- package/semgrep-rules/dockerfile/best-practice/maintainer-is-deprecated.yaml +0 -15
- package/semgrep-rules/dockerfile/best-practice/missing-apk-no-cache.dockerfile +0 -35
- package/semgrep-rules/dockerfile/best-practice/missing-apk-no-cache.yaml +0 -22
- package/semgrep-rules/dockerfile/best-practice/missing-dnf-assume-yes-switch.dockerfile +0 -33
- package/semgrep-rules/dockerfile/best-practice/missing-dnf-assume-yes-switch.yaml +0 -21
- package/semgrep-rules/dockerfile/best-practice/missing-dnf-clean-all.dockerfile +0 -16
- package/semgrep-rules/dockerfile/best-practice/missing-dnf-clean-all.yaml +0 -17
- package/semgrep-rules/dockerfile/best-practice/missing-image-version.dockerfile +0 -57
- package/semgrep-rules/dockerfile/best-practice/missing-image-version.yaml +0 -23
- package/semgrep-rules/dockerfile/best-practice/missing-no-install-recommends.dockerfile +0 -66
- package/semgrep-rules/dockerfile/best-practice/missing-no-install-recommends.yaml +0 -20
- package/semgrep-rules/dockerfile/best-practice/missing-pip-no-cache-dir.dockerfile +0 -68
- package/semgrep-rules/dockerfile/best-practice/missing-pip-no-cache-dir.yaml +0 -34
- package/semgrep-rules/dockerfile/best-practice/missing-yum-assume-yes-switch.dockerfile +0 -33
- package/semgrep-rules/dockerfile/best-practice/missing-yum-assume-yes-switch.yaml +0 -21
- package/semgrep-rules/dockerfile/best-practice/missing-zypper-clean.dockerfile +0 -10
- package/semgrep-rules/dockerfile/best-practice/missing-zypper-clean.yaml +0 -17
- package/semgrep-rules/dockerfile/best-practice/nonsensical-command.dockerfile +0 -25
- package/semgrep-rules/dockerfile/best-practice/nonsensical-command.yaml +0 -19
- package/semgrep-rules/dockerfile/best-practice/prefer-apt-get.dockerfile +0 -9
- package/semgrep-rules/dockerfile/best-practice/prefer-apt-get.yaml +0 -16
- package/semgrep-rules/dockerfile/best-practice/prefer-copy-over-add.dockerfile +0 -31
- package/semgrep-rules/dockerfile/best-practice/prefer-copy-over-add.yaml +0 -23
- package/semgrep-rules/dockerfile/best-practice/prefer-json-notation.dockerfile +0 -20
- package/semgrep-rules/dockerfile/best-practice/prefer-json-notation.yaml +0 -22
- package/semgrep-rules/dockerfile/best-practice/remove-package-cache.dockerfile +0 -33
- package/semgrep-rules/dockerfile/best-practice/remove-package-cache.yaml +0 -18
- package/semgrep-rules/dockerfile/best-practice/remove-package-lists.dockerfile +0 -38
- package/semgrep-rules/dockerfile/best-practice/remove-package-lists.yaml +0 -21
- package/semgrep-rules/dockerfile/best-practice/set-pipefail.dockerfile +0 -17
- package/semgrep-rules/dockerfile/best-practice/set-pipefail.yaml +0 -27
- package/semgrep-rules/dockerfile/best-practice/use-either-wget-or-curl.dockerfile +0 -6
- package/semgrep-rules/dockerfile/best-practice/use-either-wget-or-curl.yaml +0 -22
- package/semgrep-rules/dockerfile/best-practice/use-shell-instruction.dockerfile +0 -16
- package/semgrep-rules/dockerfile/best-practice/use-shell-instruction.fixed.dockerfile +0 -16
- package/semgrep-rules/dockerfile/best-practice/use-shell-instruction.yaml +0 -16
- package/semgrep-rules/dockerfile/best-practice/use-workdir.dockerfile +0 -16
- package/semgrep-rules/dockerfile/best-practice/use-workdir.yaml +0 -27
- package/semgrep-rules/dockerfile/correctness/invalid-port.dockerfile +0 -15
- package/semgrep-rules/dockerfile/correctness/invalid-port.yaml +0 -19
- package/semgrep-rules/dockerfile/correctness/missing-assume-yes-switch.dockerfile +0 -66
- package/semgrep-rules/dockerfile/correctness/missing-assume-yes-switch.yaml +0 -26
- package/semgrep-rules/dockerfile/correctness/multiple-entrypoint-instructions.dockerfile +0 -7
- package/semgrep-rules/dockerfile/correctness/multiple-entrypoint-instructions.yaml +0 -28
- package/semgrep-rules/dockerfile/security/dockerd-socket-mount.dockerfile +0 -11
- package/semgrep-rules/dockerfile/security/dockerd-socket-mount.yaml +0 -36
- package/semgrep-rules/dockerfile/security/last-user-is-root.dockerfile +0 -12
- package/semgrep-rules/dockerfile/security/last-user-is-root.yaml +0 -38
- package/semgrep-rules/dockerfile/security/missing-user-entrypoint.dockerfile +0 -13
- package/semgrep-rules/dockerfile/security/missing-user-entrypoint.fixed.dockerfile +0 -15
- package/semgrep-rules/dockerfile/security/missing-user-entrypoint.yaml +0 -32
- package/semgrep-rules/dockerfile/security/missing-user.dockerfile +0 -16
- package/semgrep-rules/dockerfile/security/missing-user.fixed.dockerfile +0 -19
- package/semgrep-rules/dockerfile/security/missing-user.yaml +0 -32
- package/semgrep-rules/dockerfile/security/no-sudo-in-dockerfile.dockerfile +0 -21
- package/semgrep-rules/dockerfile/security/no-sudo-in-dockerfile.yaml +0 -27
- package/semgrep-rules/dockerfile/security/secret-in-build-arg.dockerfile +0 -45
- package/semgrep-rules/dockerfile/security/secret-in-build-arg.yaml +0 -34
- package/semgrep-rules/elixir/lang/best-practice/deprecated-bnot-operator.exs +0 -5
- package/semgrep-rules/elixir/lang/best-practice/deprecated-bnot-operator.fixed.exs +0 -5
- package/semgrep-rules/elixir/lang/best-practice/deprecated-bnot-operator.yaml +0 -15
- package/semgrep-rules/elixir/lang/best-practice/deprecated-bxor-operator.exs +0 -2
- package/semgrep-rules/elixir/lang/best-practice/deprecated-bxor-operator.fixed.exs +0 -2
- package/semgrep-rules/elixir/lang/best-practice/deprecated-bxor-operator.yaml +0 -15
- package/semgrep-rules/elixir/lang/best-practice/deprecated-calendar-iso-day-of-week-3.exs +0 -2
- package/semgrep-rules/elixir/lang/best-practice/deprecated-calendar-iso-day-of-week-3.fixed.exs +0 -2
- package/semgrep-rules/elixir/lang/best-practice/deprecated-calendar-iso-day-of-week-3.yaml +0 -16
- package/semgrep-rules/elixir/lang/best-practice/deprecated-use-bitwise.exs +0 -2
- package/semgrep-rules/elixir/lang/best-practice/deprecated-use-bitwise.fixed.exs +0 -2
- package/semgrep-rules/elixir/lang/best-practice/deprecated-use-bitwise.yaml +0 -15
- package/semgrep-rules/elixir/lang/best-practice/enum-map-into.exs +0 -11
- package/semgrep-rules/elixir/lang/best-practice/enum-map-into.fixed.exs +0 -11
- package/semgrep-rules/elixir/lang/best-practice/enum-map-into.yaml +0 -26
- package/semgrep-rules/elixir/lang/best-practice/enum-map-join.exs +0 -11
- package/semgrep-rules/elixir/lang/best-practice/enum-map-join.fixed.exs +0 -11
- package/semgrep-rules/elixir/lang/best-practice/enum-map-join.yaml +0 -26
- package/semgrep-rules/elixir/lang/correctness/atom-exhaustion.exs +0 -4
- package/semgrep-rules/elixir/lang/correctness/atom-exhaustion.fixed.exs +0 -4
- package/semgrep-rules/elixir/lang/correctness/atom-exhaustion.yaml +0 -19
- package/semgrep-rules/generic/bicep/security/secure-parameter-for-secrets.bicep +0 -12
- package/semgrep-rules/generic/bicep/security/secure-parameter-for-secrets.yaml +0 -35
- package/semgrep-rules/generic/ci/audit/changed-semgrepignore.yaml +0 -24
- package/semgrep-rules/generic/ci/security/bash-reverse-shell.generic +0 -11
- package/semgrep-rules/generic/ci/security/bash-reverse-shell.yaml +0 -31
- package/semgrep-rules/generic/ci/security/use-frozen-lockfile.fixed.generic +0 -48
- package/semgrep-rules/generic/dockerfile/best-practice/missing-yum-clean-all.dockerfile +0 -14
- package/semgrep-rules/generic/dockerfile/best-practice/missing-yum-clean-all.yaml +0 -22
- package/semgrep-rules/generic/dockerfile/best-practice/use-absolute-workdir.dockerfile +0 -15
- package/semgrep-rules/generic/dockerfile/best-practice/use-absolute-workdir.yaml +0 -35
- package/semgrep-rules/generic/dockerfile/correctness/alias-must-be-unique.dockerfile +0 -15
- package/semgrep-rules/generic/dockerfile/correctness/alias-must-be-unique.yaml +0 -40
- package/semgrep-rules/generic/dockerfile/correctness/copy-from-own-alias.dockerfile +0 -13
- package/semgrep-rules/generic/dockerfile/correctness/copy-from-own-alias.yaml +0 -33
- package/semgrep-rules/generic/dockerfile/correctness/multiple-cmd-instructions-ok.dockerfile +0 -14
- package/semgrep-rules/generic/dockerfile/correctness/multiple-cmd-instructions.dockerfile +0 -6
- package/semgrep-rules/generic/dockerfile/correctness/multiple-cmd-instructions.yaml +0 -54
- package/semgrep-rules/generic/dockerfile/missing-zypper-no-confirm-switch.dockerfile +0 -8
- package/semgrep-rules/generic/dockerfile/missing-zypper-no-confirm-switch.yaml +0 -25
- package/semgrep-rules/generic/gradle/security/build-gradle-password-hardcoded.build.gradle +0 -108
- package/semgrep-rules/generic/gradle/security/build-gradle-password-hardcoded.yaml +0 -38
- package/semgrep-rules/generic/html-templates/security/unquoted-attribute-var.html +0 -85
- package/semgrep-rules/generic/html-templates/security/unquoted-attribute-var.yaml +0 -40
- package/semgrep-rules/generic/html-templates/security/var-in-href.html +0 -59
- package/semgrep-rules/generic/html-templates/security/var-in-href.mustache +0 -62
- package/semgrep-rules/generic/html-templates/security/var-in-href.yaml +0 -52
- package/semgrep-rules/generic/html-templates/security/var-in-script-src.html +0 -50
- package/semgrep-rules/generic/html-templates/security/var-in-script-src.yaml +0 -45
- package/semgrep-rules/generic/html-templates/security/var-in-script-tag.html +0 -20
- package/semgrep-rules/generic/html-templates/security/var-in-script-tag.mustache +0 -70
- package/semgrep-rules/generic/html-templates/security/var-in-script-tag.yaml +0 -46
- package/semgrep-rules/generic/hugo/best-practice/invalid-base-url.toml +0 -24
- package/semgrep-rules/generic/hugo/best-practice/invalid-base-url.yaml +0 -16
- package/semgrep-rules/generic/hugo/best-practice/localhost-base-url.toml +0 -18
- package/semgrep-rules/generic/hugo/best-practice/localhost-base-url.yaml +0 -14
- package/semgrep-rules/generic/nginx/security/alias-path-traversal.conf +0 -29
- package/semgrep-rules/generic/nginx/security/alias-path-traversal.yaml +0 -50
- package/semgrep-rules/generic/nginx/security/dynamic-proxy-host.conf +0 -41
- package/semgrep-rules/generic/nginx/security/dynamic-proxy-host.yaml +0 -35
- package/semgrep-rules/generic/nginx/security/dynamic-proxy-scheme.conf +0 -31
- package/semgrep-rules/generic/nginx/security/dynamic-proxy-scheme.yaml +0 -33
- package/semgrep-rules/generic/nginx/security/header-injection.conf +0 -16
- package/semgrep-rules/generic/nginx/security/header-injection.yaml +0 -38
- package/semgrep-rules/generic/nginx/security/header-redefinition.conf +0 -18
- package/semgrep-rules/generic/nginx/security/header-redefinition.yaml +0 -46
- package/semgrep-rules/generic/nginx/security/insecure-redirect.sites-available.conf +0 -68
- package/semgrep-rules/generic/nginx/security/insecure-redirect.yaml +0 -38
- package/semgrep-rules/generic/nginx/security/insecure-ssl-version.conf +0 -31
- package/semgrep-rules/generic/nginx/security/insecure-ssl-version.yaml +0 -38
- package/semgrep-rules/generic/nginx/security/missing-internal.conf +0 -29
- package/semgrep-rules/generic/nginx/security/missing-internal.yaml +0 -52
- package/semgrep-rules/generic/nginx/security/missing-ssl-version.conf +0 -40
- package/semgrep-rules/generic/nginx/security/missing-ssl-version.yaml +0 -36
- package/semgrep-rules/generic/nginx/security/possible-h2c-smuggling.conf +0 -19
- package/semgrep-rules/generic/nginx/security/possible-h2c-smuggling.yaml +0 -60
- package/semgrep-rules/generic/nginx/security/request-host-used.conf +0 -19
- package/semgrep-rules/generic/nginx/security/request-host-used.yaml +0 -35
- package/semgrep-rules/generic/secrets/gitleaks/adafruit-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/adafruit-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/adobe-client-id.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/adobe-client-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/adobe-client-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/adobe-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/age-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/age-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/airtable-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/airtable-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/algolia-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/algolia-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/alibaba-access-key-id.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/alibaba-access-key-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/alibaba-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/alibaba-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/asana-client-id.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/asana-client-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/asana-client-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/asana-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/atlassian-api-token.go +0 -4
- package/semgrep-rules/generic/secrets/gitleaks/atlassian-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/authress-service-client-access-key.txt +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/authress-service-client-access-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/aws-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/aws-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/beamer-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/beamer-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/bitbucket-client-id.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/bitbucket-client-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/bitbucket-client-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/bitbucket-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/bittrex-access-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/bittrex-access-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/bittrex-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/bittrex-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/clojars-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/clojars-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/cloudflare-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/cloudflare-global-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/cloudflare-origin-ca-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/codecov-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/codecov-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/coinbase-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/coinbase-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/confluent-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/confluent-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/confluent-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/confluent-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/contentful-delivery-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/contentful-delivery-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/databricks-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/databricks-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/datadog-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/datadog-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/defined-networking-api-token.txt +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/defined-networking-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/digitalocean-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/digitalocean-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/digitalocean-pat.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/digitalocean-pat.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/digitalocean-refresh-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/digitalocean-refresh-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/discord-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/discord-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/discord-client-id.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/discord-client-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/discord-client-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/discord-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/doppler-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/doppler-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/droneci-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/droneci-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/dropbox-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/dropbox-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/dropbox-long-lived-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/dropbox-long-lived-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/dropbox-short-lived-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/dropbox-short-lived-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/duffel-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/duffel-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/dynatrace-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/dynatrace-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/easypost-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/easypost-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/easypost-test-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/easypost-test-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/etsy-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/etsy-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/facebook-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/facebook-page-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/facebook-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/facebook.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/facebook.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/fastly-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/fastly-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/finicity-api-token.go +0 -3
- package/semgrep-rules/generic/secrets/gitleaks/finicity-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/finicity-client-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/finicity-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/finnhub-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/finnhub-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/flickr-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/flickr-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/flutterwave-encryption-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/flutterwave-encryption-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/flutterwave-public-key.go +0 -4
- package/semgrep-rules/generic/secrets/gitleaks/flutterwave-public-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/flutterwave-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/flutterwave-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/frameio-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/frameio-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/freshbooks-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/freshbooks-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/gcp-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/gcp-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/generic-api-key.txt +0 -228
- package/semgrep-rules/generic/secrets/gitleaks/generic-api-key.yaml +0 -75
- package/semgrep-rules/generic/secrets/gitleaks/github-app-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/github-app-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/github-fine-grained-pat.go +0 -6
- package/semgrep-rules/generic/secrets/gitleaks/github-fine-grained-pat.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/github-oauth.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/github-oauth.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/github-pat.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/github-pat.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/github-refresh-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/github-refresh-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/gitlab-pat.go +0 -4
- package/semgrep-rules/generic/secrets/gitleaks/gitlab-pat.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/gitlab-ptt.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/gitlab-ptt.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/gitlab-rrt.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/gitlab-rrt.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/gitter-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/gitter-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/gocardless-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/gocardless-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/grafana-api-key.go +0 -3
- package/semgrep-rules/generic/secrets/gitleaks/grafana-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/grafana-cloud-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/grafana-cloud-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/grafana-service-account-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/grafana-service-account-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/harness-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/hashicorp-tf-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/hashicorp-tf-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/hashicorp-tf-password.txt +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/hashicorp-tf-password.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/heroku-api-key.js +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/heroku-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/hubspot-api-key.js +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/hubspot-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/huggingface-access-token.txt +0 -3
- package/semgrep-rules/generic/secrets/gitleaks/huggingface-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/huggingface-organization-api-token.txt +0 -21
- package/semgrep-rules/generic/secrets/gitleaks/huggingface-organization-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/infracost-api-token.txt +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/infracost-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/intercom-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/intercom-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/intra42-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/jfrog-api-key.txt +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/jfrog-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/jfrog-identity-token.txt +0 -8
- package/semgrep-rules/generic/secrets/gitleaks/jfrog-identity-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/jwt-base64.txt +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/jwt-base64.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/jwt.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/jwt.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/kraken-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/kraken-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/kucoin-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/kucoin-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/kucoin-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/kucoin-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/launchdarkly-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/launchdarkly-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/linear-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/linear-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/linear-client-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/linear-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/linkedin-client-id.go +0 -3
- package/semgrep-rules/generic/secrets/gitleaks/linkedin-client-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/linkedin-client-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/linkedin-client-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/lob-api-key.go +0 -3
- package/semgrep-rules/generic/secrets/gitleaks/lob-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/lob-pub-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/lob-pub-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/mailchimp-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/mailchimp-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/mailgun-private-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/mailgun-private-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/mailgun-pub-key.go +0 -4
- package/semgrep-rules/generic/secrets/gitleaks/mailgun-pub-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/mailgun-signing-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/mailgun-signing-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/mapbox-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/mapbox-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/mattermost-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/mattermost-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/messagebird-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/messagebird-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/messagebird-client-id.js +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/messagebird-client-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/microsoft-teams-webhook.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/microsoft-teams-webhook.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/netlify-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/netlify-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/new-relic-browser-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/new-relic-browser-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/new-relic-insert-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/new-relic-user-api-id.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/new-relic-user-api-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/new-relic-user-api-key.go +0 -4
- package/semgrep-rules/generic/secrets/gitleaks/new-relic-user-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/npm-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/npm-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/nytimes-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/nytimes-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/okta-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/okta-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/openai-api-key.txt +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/openai-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/plaid-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/plaid-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/plaid-client-id.go +0 -4
- package/semgrep-rules/generic/secrets/gitleaks/plaid-client-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/plaid-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/plaid-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/planetscale-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/planetscale-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/planetscale-oauth-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/planetscale-oauth-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/planetscale-password.go +0 -4
- package/semgrep-rules/generic/secrets/gitleaks/planetscale-password.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/postman-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/postman-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/prefect-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/prefect-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/private-key.go +0 -12
- package/semgrep-rules/generic/secrets/gitleaks/private-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/pulumi-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/pulumi-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/pypi-upload-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/pypi-upload-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/rapidapi-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/rapidapi-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/readme-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/readme-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/rubygems-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/rubygems-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/scalingo-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/scalingo-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sendbird-access-id.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sendbird-access-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sendbird-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sendbird-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sendgrid-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sendgrid-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sendinblue-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sendinblue-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sentry-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sentry-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/shippo-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/shippo-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/shopify-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/shopify-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/shopify-custom-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/shopify-custom-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/shopify-private-app-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/shopify-private-app-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/shopify-shared-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/shopify-shared-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sidekiq-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sidekiq-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sidekiq-sensitive-url.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sidekiq-sensitive-url.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/slack-app-token.txt +0 -8
- package/semgrep-rules/generic/secrets/gitleaks/slack-app-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-bot-token.txt +0 -8
- package/semgrep-rules/generic/secrets/gitleaks/slack-bot-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-config-access-token.txt +0 -8
- package/semgrep-rules/generic/secrets/gitleaks/slack-config-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-config-refresh-token.txt +0 -6
- package/semgrep-rules/generic/secrets/gitleaks/slack-config-refresh-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-legacy-bot-token.txt +0 -22
- package/semgrep-rules/generic/secrets/gitleaks/slack-legacy-bot-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-legacy-token.txt +0 -14
- package/semgrep-rules/generic/secrets/gitleaks/slack-legacy-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-legacy-workspace-token.txt +0 -10
- package/semgrep-rules/generic/secrets/gitleaks/slack-legacy-workspace-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-user-token.txt +0 -14
- package/semgrep-rules/generic/secrets/gitleaks/slack-user-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/slack-web-hook.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/slack-webhook-url.txt +0 -20
- package/semgrep-rules/generic/secrets/gitleaks/slack-webhook-url.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/snyk-api-token.txt +0 -18
- package/semgrep-rules/generic/secrets/gitleaks/snyk-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/square-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/square-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/squarespace-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/squarespace-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/stripe-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/stripe-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sumologic-access-id.go +0 -10
- package/semgrep-rules/generic/secrets/gitleaks/sumologic-access-id.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/sumologic-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/sumologic-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/telegram-bot-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/telegram-bot-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/travisci-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/travisci-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/twilio-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/twilio-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/twitch-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/twitch-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/twitter-access-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/twitter-access-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/twitter-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/twitter-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/twitter-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/twitter-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/twitter-api-secret.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/twitter-api-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/twitter-bearer-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/twitter-bearer-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/typeform-api-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/typeform-api-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/vault-batch-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/vault-batch-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/vault-service-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/vault-service-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/yandex-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/yandex-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/yandex-api-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/yandex-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/yandex-aws-access-token.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/yandex-aws-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/gitleaks/zendesk-secret-key.go +0 -2
- package/semgrep-rules/generic/secrets/gitleaks/zendesk-secret-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-amazon-mws-auth-token.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-amazon-mws-auth-token.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-artifactory-password.txt +0 -130
- package/semgrep-rules/generic/secrets/security/detected-artifactory-password.yaml +0 -46
- package/semgrep-rules/generic/secrets/security/detected-artifactory-token.txt +0 -28
- package/semgrep-rules/generic/secrets/security/detected-artifactory-token.yaml +0 -43
- package/semgrep-rules/generic/secrets/security/detected-aws-access-key-id-value.txt +0 -11
- package/semgrep-rules/generic/secrets/security/detected-aws-access-key-id-value.yaml +0 -28
- package/semgrep-rules/generic/secrets/security/detected-aws-account-id.txt +0 -56
- package/semgrep-rules/generic/secrets/security/detected-aws-account-id.yaml +0 -57
- package/semgrep-rules/generic/secrets/security/detected-aws-appsync-graphql-key.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-aws-appsync-graphql-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-aws-secret-access-key.txt +0 -23
- package/semgrep-rules/generic/secrets/security/detected-aws-secret-access-key.yaml +0 -29
- package/semgrep-rules/generic/secrets/security/detected-aws-session-token.txt +0 -11
- package/semgrep-rules/generic/secrets/security/detected-aws-session-token.yaml +0 -30
- package/semgrep-rules/generic/secrets/security/detected-bcrypt-hash.txt +0 -7
- package/semgrep-rules/generic/secrets/security/detected-bcrypt-hash.yaml +0 -24
- package/semgrep-rules/generic/secrets/security/detected-codeclimate.txt +0 -9
- package/semgrep-rules/generic/secrets/security/detected-codeclimate.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-etc-shadow.txt +0 -21
- package/semgrep-rules/generic/secrets/security/detected-etc-shadow.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-facebook-access-token.txt +0 -22
- package/semgrep-rules/generic/secrets/security/detected-facebook-access-token.yaml +0 -28
- package/semgrep-rules/generic/secrets/security/detected-facebook-oauth.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-facebook-oauth.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-generic-api-key.txt +0 -21
- package/semgrep-rules/generic/secrets/security/detected-generic-api-key.yaml +0 -28
- package/semgrep-rules/generic/secrets/security/detected-generic-secret.txt +0 -8
- package/semgrep-rules/generic/secrets/security/detected-generic-secret.yaml +0 -29
- package/semgrep-rules/generic/secrets/security/detected-github-token.txt +0 -14
- package/semgrep-rules/generic/secrets/security/detected-github-token.yaml +0 -46
- package/semgrep-rules/generic/secrets/security/detected-google-api-key.txt +0 -14
- package/semgrep-rules/generic/secrets/security/detected-google-api-key.yaml +0 -28
- package/semgrep-rules/generic/secrets/security/detected-google-cloud-api-key.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-google-cloud-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-google-gcm-service-account.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-google-gcm-service-account.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-google-oauth-access-token.txt +0 -6
- package/semgrep-rules/generic/secrets/security/detected-google-oauth-access-token.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-google-oauth.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-google-oauth.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-heroku-api-key.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-heroku-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-hockeyapp.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-hockeyapp.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-jwt-token.txt +0 -23
- package/semgrep-rules/generic/secrets/security/detected-jwt-token.yaml +0 -24
- package/semgrep-rules/generic/secrets/security/detected-kolide-api-key.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-kolide-api-key.yaml +0 -24
- package/semgrep-rules/generic/secrets/security/detected-mailchimp-api-key.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-mailchimp-api-key.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-mailgun-api-key.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-mailgun-api-key.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-npm-registry-auth-token.npmrc +0 -19
- package/semgrep-rules/generic/secrets/security/detected-npm-registry-auth-token.yaml +0 -32
- package/semgrep-rules/generic/secrets/security/detected-onfido-live-api-token.txt +0 -8
- package/semgrep-rules/generic/secrets/security/detected-onfido-live-api-token.yaml +0 -20
- package/semgrep-rules/generic/secrets/security/detected-outlook-team.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-outlook-team.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-paypal-braintree-access-token.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-paypal-braintree-access-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-pgp-private-key-block.txt +0 -58
- package/semgrep-rules/generic/secrets/security/detected-pgp-private-key-block.yaml +0 -27
- package/semgrep-rules/generic/secrets/security/detected-picatic-api-key.jsx +0 -24
- package/semgrep-rules/generic/secrets/security/detected-picatic-api-key.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-private-key.txt +0 -27
- package/semgrep-rules/generic/secrets/security/detected-private-key.yaml +0 -38
- package/semgrep-rules/generic/secrets/security/detected-sauce-token.txt +0 -14
- package/semgrep-rules/generic/secrets/security/detected-sauce-token.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-sendgrid-api-key.txt +0 -20
- package/semgrep-rules/generic/secrets/security/detected-sendgrid-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-slack-token.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-slack-token.yaml +0 -27
- package/semgrep-rules/generic/secrets/security/detected-slack-webhook.txt +0 -8
- package/semgrep-rules/generic/secrets/security/detected-slack-webhook.yaml +0 -27
- package/semgrep-rules/generic/secrets/security/detected-snyk-api-key.txt +0 -17
- package/semgrep-rules/generic/secrets/security/detected-snyk-api-key.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-softlayer-api-key.txt +0 -17
- package/semgrep-rules/generic/secrets/security/detected-softlayer-api-key.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-sonarqube-docs-api-key.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-sonarqube-docs-api-key.yaml +0 -39
- package/semgrep-rules/generic/secrets/security/detected-square-access-token.txt +0 -2
- package/semgrep-rules/generic/secrets/security/detected-square-access-token.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-square-oauth-secret.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-square-oauth-secret.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-ssh-password.txt +0 -8
- package/semgrep-rules/generic/secrets/security/detected-ssh-password.yaml +0 -26
- package/semgrep-rules/generic/secrets/security/detected-stripe-api-key.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-stripe-api-key.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-stripe-restricted-api-key.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-stripe-restricted-api-key.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-telegram-bot-api-key.php +0 -12
- package/semgrep-rules/generic/secrets/security/detected-telegram-bot-api-key.yaml +0 -29
- package/semgrep-rules/generic/secrets/security/detected-twilio-api-key.txt +0 -5
- package/semgrep-rules/generic/secrets/security/detected-twilio-api-key.yaml +0 -25
- package/semgrep-rules/generic/secrets/security/detected-username-and-password-in-uri.txt +0 -94
- package/semgrep-rules/generic/secrets/security/detected-username-and-password-in-uri.yaml +0 -34
- package/semgrep-rules/generic/secrets/security/google-maps-apikeyleak.generic +0 -2
- package/semgrep-rules/generic/secrets/security/google-maps-apikeyleak.yaml +0 -25
- package/semgrep-rules/generic/unicode/security/bidi.py +0 -48
- package/semgrep-rules/generic/unicode/security/bidi.yml +0 -57
- package/semgrep-rules/generic/visualforce/security/ncino/html/UseSRIForCDNs.page +0 -61
- package/semgrep-rules/generic/visualforce/security/ncino/html/UseSRIForCDNs.yaml +0 -49
- package/semgrep-rules/generic/visualforce/security/ncino/vf/XSSFromUnescapedURLParam.page +0 -14
- package/semgrep-rules/generic/visualforce/security/ncino/vf/XSSFromUnescapedURLParam.yaml +0 -47
- package/semgrep-rules/generic/visualforce/security/ncino/xml/CSPHeaderAttribute.page +0 -54
- package/semgrep-rules/generic/visualforce/security/ncino/xml/CSPHeaderAttribute.yaml +0 -35
- package/semgrep-rules/generic/visualforce/security/ncino/xml/VisualForceAPIVersion.page-meta.xml +0 -85
- package/semgrep-rules/generic/visualforce/security/ncino/xml/VisualForceAPIVersion.yaml +0 -35
- package/semgrep-rules/go/aws-lambda/security/database-sqli.go +0 -120
- package/semgrep-rules/go/aws-lambda/security/database-sqli.yaml +0 -62
- package/semgrep-rules/go/aws-lambda/security/tainted-sql-string.go +0 -101
- package/semgrep-rules/go/aws-lambda/security/tainted-sql-string.yaml +0 -68
- package/semgrep-rules/go/gorilla/security/audit/handler-assignment-from-multiple-sources.go +0 -104
- package/semgrep-rules/go/gorilla/security/audit/handler-assignment-from-multiple-sources.yaml +0 -48
- package/semgrep-rules/go/gorilla/security/audit/session-cookie-missing-httponly.go +0 -94
- package/semgrep-rules/go/gorilla/security/audit/session-cookie-missing-httponly.yaml +0 -39
- package/semgrep-rules/go/gorilla/security/audit/session-cookie-missing-secure.go +0 -94
- package/semgrep-rules/go/gorilla/security/audit/session-cookie-missing-secure.yaml +0 -38
- package/semgrep-rules/go/gorilla/security/audit/session-cookie-samesitenone.go +0 -40
- package/semgrep-rules/go/gorilla/security/audit/session-cookie-samesitenone.yaml +0 -36
- package/semgrep-rules/go/gorilla/security/audit/websocket-missing-origin-check.go +0 -49
- package/semgrep-rules/go/gorilla/security/audit/websocket-missing-origin-check.yaml +0 -39
- package/semgrep-rules/go/gorm/security/audit/gorm-dangerous-methods-usage.go +0 -81
- package/semgrep-rules/go/gorm/security/audit/gorm-dangerous-methods-usage.yaml +0 -69
- package/semgrep-rules/go/grpc/security/grpc-client-insecure-connection.go +0 -24
- package/semgrep-rules/go/grpc/security/grpc-client-insecure-connection.yaml +0 -33
- package/semgrep-rules/go/grpc/security/grpc-server-insecure-connection.go +0 -89
- package/semgrep-rules/go/grpc/security/grpc-server-insecure-connection.yaml +0 -43
- package/semgrep-rules/go/jwt-go/security/audit/jwt-parse-unverified.go +0 -37
- package/semgrep-rules/go/jwt-go/security/audit/jwt-parse-unverified.yaml +0 -32
- package/semgrep-rules/go/jwt-go/security/jwt-none-alg.go +0 -31
- package/semgrep-rules/go/jwt-go/security/jwt-none-alg.yaml +0 -39
- package/semgrep-rules/go/jwt-go/security/jwt.go +0 -96
- package/semgrep-rules/go/jwt-go/security/jwt.yaml +0 -42
- package/semgrep-rules/go/lang/best-practice/channel-guarded-with-mutex.go +0 -33
- package/semgrep-rules/go/lang/best-practice/channel-guarded-with-mutex.yaml +0 -22
- package/semgrep-rules/go/lang/best-practice/hidden-goroutine.go +0 -26
- package/semgrep-rules/go/lang/best-practice/hidden-goroutine.yaml +0 -27
- package/semgrep-rules/go/lang/correctness/dos/zip_bomb.go +0 -38
- package/semgrep-rules/go/lang/correctness/dos/zlib_bomb.go +0 -22
- package/semgrep-rules/go/lang/correctness/looppointer.go +0 -39
- package/semgrep-rules/go/lang/correctness/looppointer.yaml +0 -29
- package/semgrep-rules/go/lang/correctness/overflow/overflow.go +0 -53
- package/semgrep-rules/go/lang/correctness/overflow/overflow.yaml +0 -39
- package/semgrep-rules/go/lang/correctness/permissions/file_permission.fixed.go +0 -73
- package/semgrep-rules/go/lang/correctness/permissions/file_permission.go +0 -73
- package/semgrep-rules/go/lang/correctness/permissions/file_permission.yaml +0 -31
- package/semgrep-rules/go/lang/correctness/use-filepath-join.go +0 -40
- package/semgrep-rules/go/lang/correctness/use-filepath-join.yaml +0 -50
- package/semgrep-rules/go/lang/correctness/useless-eqeq.go +0 -16
- package/semgrep-rules/go/lang/correctness/useless-eqeq.yaml +0 -31
- package/semgrep-rules/go/lang/maintainability/useless-ifelse.go +0 -33
- package/semgrep-rules/go/lang/maintainability/useless-ifelse.yaml +0 -33
- package/semgrep-rules/go/lang/security/audit/crypto/bad_imports.go +0 -64
- package/semgrep-rules/go/lang/security/audit/crypto/bad_imports.yaml +0 -32
- package/semgrep-rules/go/lang/security/audit/crypto/insecure_ssh.go +0 -23
- package/semgrep-rules/go/lang/security/audit/crypto/insecure_ssh.yaml +0 -29
- package/semgrep-rules/go/lang/security/audit/crypto/math_random.fixed.go +0 -46
- package/semgrep-rules/go/lang/security/audit/crypto/math_random.go +0 -46
- package/semgrep-rules/go/lang/security/audit/crypto/math_random.yaml +0 -40
- package/semgrep-rules/go/lang/security/audit/crypto/missing-ssl-minversion.fixed.go +0 -68
- package/semgrep-rules/go/lang/security/audit/crypto/missing-ssl-minversion.go +0 -70
- package/semgrep-rules/go/lang/security/audit/crypto/missing-ssl-minversion.yaml +0 -38
- package/semgrep-rules/go/lang/security/audit/crypto/sha224-hash.go +0 -43
- package/semgrep-rules/go/lang/security/audit/crypto/sha224-hash.yaml +0 -44
- package/semgrep-rules/go/lang/security/audit/crypto/ssl.go +0 -69
- package/semgrep-rules/go/lang/security/audit/crypto/ssl.yaml +0 -30
- package/semgrep-rules/go/lang/security/audit/crypto/tls.go +0 -32
- package/semgrep-rules/go/lang/security/audit/crypto/tls.yaml +0 -60
- package/semgrep-rules/go/lang/security/audit/crypto/use_of_weak_crypto.go +0 -79
- package/semgrep-rules/go/lang/security/audit/crypto/use_of_weak_crypto.yaml +0 -128
- package/semgrep-rules/go/lang/security/audit/crypto/use_of_weak_rsa_key.fixed.go +0 -24
- package/semgrep-rules/go/lang/security/audit/crypto/use_of_weak_rsa_key.go +0 -24
- package/semgrep-rules/go/lang/security/audit/crypto/use_of_weak_rsa_key.yaml +0 -35
- package/semgrep-rules/go/lang/security/audit/dangerous-command-write.go +0 -30
- package/semgrep-rules/go/lang/security/audit/dangerous-command-write.yaml +0 -48
- package/semgrep-rules/go/lang/security/audit/dangerous-exec-cmd.go +0 -89
- package/semgrep-rules/go/lang/security/audit/dangerous-exec-cmd.yaml +0 -85
- package/semgrep-rules/go/lang/security/audit/dangerous-exec-command.go +0 -133
- package/semgrep-rules/go/lang/security/audit/dangerous-exec-command.yaml +0 -61
- package/semgrep-rules/go/lang/security/audit/dangerous-syscall-exec.go +0 -80
- package/semgrep-rules/go/lang/security/audit/dangerous-syscall-exec.yaml +0 -97
- package/semgrep-rules/go/lang/security/audit/database/string-formatted-query.go +0 -277
- package/semgrep-rules/go/lang/security/audit/database/string-formatted-query.yaml +0 -107
- package/semgrep-rules/go/lang/security/audit/md5-used-as-password.go +0 -42
- package/semgrep-rules/go/lang/security/audit/md5-used-as-password.yaml +0 -43
- package/semgrep-rules/go/lang/security/audit/net/bind_all.go +0 -33
- package/semgrep-rules/go/lang/security/audit/net/bind_all.yaml +0 -30
- package/semgrep-rules/go/lang/security/audit/net/bind_all_default.go +0 -15
- package/semgrep-rules/go/lang/security/audit/net/cookie-missing-httponly.go +0 -68
- package/semgrep-rules/go/lang/security/audit/net/cookie-missing-httponly.yaml +0 -40
- package/semgrep-rules/go/lang/security/audit/net/cookie-missing-secure.go +0 -68
- package/semgrep-rules/go/lang/security/audit/net/cookie-missing-secure.yaml +0 -39
- package/semgrep-rules/go/lang/security/audit/net/dynamic-httptrace-clienttrace-ok.go +0 -343
- package/semgrep-rules/go/lang/security/audit/net/dynamic-httptrace-clienttrace.go +0 -13
- package/semgrep-rules/go/lang/security/audit/net/dynamic-httptrace-clienttrace.yaml +0 -38
- package/semgrep-rules/go/lang/security/audit/net/formatted-template-string.go +0 -75
- package/semgrep-rules/go/lang/security/audit/net/formatted-template-string.yaml +0 -55
- package/semgrep-rules/go/lang/security/audit/net/fs-directory-listing.go +0 -49
- package/semgrep-rules/go/lang/security/audit/net/fs-directory-listing.yaml +0 -48
- package/semgrep-rules/go/lang/security/audit/net/pprof.go +0 -43
- package/semgrep-rules/go/lang/security/audit/net/pprof.yaml +0 -40
- package/semgrep-rules/go/lang/security/audit/net/pprof_good.go +0 -18
- package/semgrep-rules/go/lang/security/audit/net/pprof_good2.go +0 -17
- package/semgrep-rules/go/lang/security/audit/net/unescaped-data-in-htmlattr.go +0 -15
- package/semgrep-rules/go/lang/security/audit/net/unescaped-data-in-htmlattr.yaml +0 -53
- package/semgrep-rules/go/lang/security/audit/net/unescaped-data-in-js.go +0 -15
- package/semgrep-rules/go/lang/security/audit/net/unescaped-data-in-js.yaml +0 -53
- package/semgrep-rules/go/lang/security/audit/net/unescaped-data-in-url.go +0 -16
- package/semgrep-rules/go/lang/security/audit/net/unescaped-data-in-url.yaml +0 -54
- package/semgrep-rules/go/lang/security/audit/net/use-tls.fixed.go +0 -17
- package/semgrep-rules/go/lang/security/audit/net/use-tls.go +0 -17
- package/semgrep-rules/go/lang/security/audit/net/use-tls.yaml +0 -25
- package/semgrep-rules/go/lang/security/audit/net/wip-xss-using-responsewriter-and-printf.go +0 -65
- package/semgrep-rules/go/lang/security/audit/net/wip-xss-using-responsewriter-and-printf.yaml +0 -72
- package/semgrep-rules/go/lang/security/audit/reflect-makefunc.go +0 -831
- package/semgrep-rules/go/lang/security/audit/reflect-makefunc.yaml +0 -26
- package/semgrep-rules/go/lang/security/audit/sqli/gosql-sqli.go +0 -72
- package/semgrep-rules/go/lang/security/audit/sqli/gosql-sqli.yaml +0 -63
- package/semgrep-rules/go/lang/security/audit/sqli/pg-orm-sqli.go +0 -149
- package/semgrep-rules/go/lang/security/audit/sqli/pg-orm-sqli.yaml +0 -87
- package/semgrep-rules/go/lang/security/audit/sqli/pg-sqli.go +0 -111
- package/semgrep-rules/go/lang/security/audit/sqli/pg-sqli.yaml +0 -66
- package/semgrep-rules/go/lang/security/audit/sqli/pgx-sqli.go +0 -121
- package/semgrep-rules/go/lang/security/audit/sqli/pgx-sqli.yaml +0 -70
- package/semgrep-rules/go/lang/security/audit/unsafe-reflect-by-name.go +0 -43
- package/semgrep-rules/go/lang/security/audit/unsafe-reflect-by-name.yaml +0 -42
- package/semgrep-rules/go/lang/security/audit/unsafe.go +0 -25
- package/semgrep-rules/go/lang/security/audit/unsafe.yaml +0 -24
- package/semgrep-rules/go/lang/security/audit/xss/import-text-template.fixed.go +0 -53
- package/semgrep-rules/go/lang/security/audit/xss/import-text-template.go +0 -53
- package/semgrep-rules/go/lang/security/audit/xss/import-text-template.yaml +0 -42
- package/semgrep-rules/go/lang/security/audit/xss/no-direct-write-to-responsewriter.go +0 -77
- package/semgrep-rules/go/lang/security/audit/xss/no-direct-write-to-responsewriter.yaml +0 -46
- package/semgrep-rules/go/lang/security/audit/xss/no-fprintf-to-responsewriter.go +0 -52
- package/semgrep-rules/go/lang/security/audit/xss/no-fprintf-to-responsewriter.yaml +0 -40
- package/semgrep-rules/go/lang/security/audit/xss/no-interpolation-in-tag.html +0 -27
- package/semgrep-rules/go/lang/security/audit/xss/no-interpolation-in-tag.yaml +0 -38
- package/semgrep-rules/go/lang/security/audit/xss/no-interpolation-js-template-string.html +0 -23
- package/semgrep-rules/go/lang/security/audit/xss/no-interpolation-js-template-string.yaml +0 -42
- package/semgrep-rules/go/lang/security/audit/xss/no-io-writestring-to-responsewriter.go +0 -31
- package/semgrep-rules/go/lang/security/audit/xss/no-io-writestring-to-responsewriter.yaml +0 -41
- package/semgrep-rules/go/lang/security/audit/xss/no-printf-in-responsewriter.go +0 -66
- package/semgrep-rules/go/lang/security/audit/xss/no-printf-in-responsewriter.yaml +0 -40
- package/semgrep-rules/go/lang/security/audit/xss/template-html-does-not-escape.go +0 -101
- package/semgrep-rules/go/lang/security/audit/xss/template-html-does-not-escape.yaml +0 -41
- package/semgrep-rules/go/lang/security/audit/xxe/parsing-external-entities-enabled.go +0 -30
- package/semgrep-rules/go/lang/security/audit/xxe/parsing-external-entities-enabled.yaml +0 -33
- package/semgrep-rules/go/lang/security/bad_tmp.go +0 -21
- package/semgrep-rules/go/lang/security/bad_tmp.yaml +0 -24
- package/semgrep-rules/go/lang/security/decompression_bomb.go +0 -101
- package/semgrep-rules/go/lang/security/decompression_bomb.yaml +0 -62
- package/semgrep-rules/go/lang/security/filepath-clean-misuse.fixed.go +0 -103
- package/semgrep-rules/go/lang/security/filepath-clean-misuse.go +0 -103
- package/semgrep-rules/go/lang/security/filepath-clean-misuse.yaml +0 -58
- package/semgrep-rules/go/lang/security/injection/open-redirect.go +0 -48
- package/semgrep-rules/go/lang/security/injection/open-redirect.yaml +0 -58
- package/semgrep-rules/go/lang/security/injection/raw-html-format.go +0 -129
- package/semgrep-rules/go/lang/security/injection/raw-html-format.yaml +0 -54
- package/semgrep-rules/go/lang/security/injection/tainted-sql-string.go +0 -145
- package/semgrep-rules/go/lang/security/injection/tainted-sql-string.yaml +0 -83
- package/semgrep-rules/go/lang/security/injection/tainted-url-host.go +0 -387
- package/semgrep-rules/go/lang/security/injection/tainted-url-host.yaml +0 -80
- package/semgrep-rules/go/lang/security/reverseproxy-director.go +0 -65
- package/semgrep-rules/go/lang/security/reverseproxy-director.yaml +0 -33
- package/semgrep-rules/go/lang/security/shared-url-struct-mutation.go +0 -118
- package/semgrep-rules/go/lang/security/shared-url-struct-mutation.yaml +0 -52
- package/semgrep-rules/go/lang/security/zip.go +0 -75
- package/semgrep-rules/go/lang/security/zip.yaml +0 -32
- package/semgrep-rules/go/otto/security/audit/dangerous-execution.go +0 -28
- package/semgrep-rules/go/otto/security/audit/dangerous-execution.yaml +0 -33
- package/semgrep-rules/go/template/security/insecure-types.go +0 -31
- package/semgrep-rules/go/template/security/insecure-types.yaml +0 -37
- package/semgrep-rules/go/template/security/ssti.go +0 -86
- package/semgrep-rules/go/template/security/ssti.yaml +0 -56
- package/semgrep-rules/html/best-practice/robots-denied.html +0 -58
- package/semgrep-rules/html/best-practice/robots-denied.yaml +0 -12
- package/semgrep-rules/html/correctness/https-equiv.html +0 -28
- package/semgrep-rules/html/correctness/https-equiv.yaml +0 -17
- package/semgrep-rules/html/security/audit/eval-detected.html +0 -21
- package/semgrep-rules/html/security/audit/eval-detected.yaml +0 -45
- package/semgrep-rules/html/security/audit/insecure-document-method.html +0 -22
- package/semgrep-rules/html/security/audit/insecure-document-method.yaml +0 -43
- package/semgrep-rules/html/security/audit/missing-integrity.html +0 -47
- package/semgrep-rules/html/security/audit/missing-integrity.yaml +0 -50
- package/semgrep-rules/html/security/plaintext-http-link.html +0 -29
- package/semgrep-rules/html/security/plaintext-http-link.yaml +0 -27
- package/semgrep-rules/java/android/best-practice/manifest-security-features.xml +0 -90
- package/semgrep-rules/java/android/best-practice/manifest-security-features.yaml +0 -52
- package/semgrep-rules/java/android/best-practice/network-security-config.xml +0 -129
- package/semgrep-rules/java/android/best-practice/network-security-config.yml +0 -161
- package/semgrep-rules/java/android/security/exported_activity.AndroidManifest.xml +0 -49
- package/semgrep-rules/java/android/security/exported_activity.yaml +0 -38
- package/semgrep-rules/java/aws-lambda/security/tainted-sql-string.java +0 -77
- package/semgrep-rules/java/aws-lambda/security/tainted-sql-string.yaml +0 -68
- package/semgrep-rules/java/aws-lambda/security/tainted-sqli.java +0 -68
- package/semgrep-rules/java/aws-lambda/security/tainted-sqli.yaml +0 -72
- package/semgrep-rules/java/java-jwt/security/audit/jwt-decode-without-verify.java +0 -61
- package/semgrep-rules/java/java-jwt/security/audit/jwt-decode-without-verify.yaml +0 -37
- package/semgrep-rules/java/java-jwt/security/jwt-hardcode.java +0 -59
- package/semgrep-rules/java/java-jwt/security/jwt-hardcode.yaml +0 -53
- package/semgrep-rules/java/java-jwt/security/jwt-none-alg.java +0 -51
- package/semgrep-rules/java/java-jwt/security/jwt-none-alg.yaml +0 -46
- package/semgrep-rules/java/jax-rs/security/insecure-resteasy.java +0 -68
- package/semgrep-rules/java/jax-rs/security/insecure-resteasy.yaml +0 -80
- package/semgrep-rules/java/jax-rs/security/jax-rs-path-traversal.java +0 -46
- package/semgrep-rules/java/jax-rs/security/jax-rs-path-traversal.yaml +0 -44
- package/semgrep-rules/java/jboss/security/seam-log-injection.java +0 -48
- package/semgrep-rules/java/jboss/security/seam-log-injection.yaml +0 -39
- package/semgrep-rules/java/jboss/security/session_sqli.java +0 -70
- package/semgrep-rules/java/jboss/security/session_sqli.yaml +0 -49
- package/semgrep-rules/java/jjwt/security/jwt-none-alg.java +0 -33
- package/semgrep-rules/java/jjwt/security/jwt-none-alg.yaml +0 -41
- package/semgrep-rules/java/lang/correctness/assignment-comparison.java +0 -17
- package/semgrep-rules/java/lang/correctness/assignment-comparison.yaml +0 -12
- package/semgrep-rules/java/lang/correctness/eqeq.java +0 -23
- package/semgrep-rules/java/lang/correctness/eqeq.yaml +0 -20
- package/semgrep-rules/java/lang/correctness/hardcoded-conditional.java +0 -48
- package/semgrep-rules/java/lang/correctness/hardcoded-conditional.yaml +0 -19
- package/semgrep-rules/java/lang/correctness/no-string-eqeq.java +0 -14
- package/semgrep-rules/java/lang/correctness/no-string-eqeq.yaml +0 -15
- package/semgrep-rules/java/lang/security/audit/anonymous-ldap-bind.java +0 -13
- package/semgrep-rules/java/lang/security/audit/anonymous-ldap-bind.yaml +0 -33
- package/semgrep-rules/java/lang/security/audit/bad-hexa-conversion.java +0 -39
- package/semgrep-rules/java/lang/security/audit/bad-hexa-conversion.yaml +0 -32
- package/semgrep-rules/java/lang/security/audit/blowfish-insufficient-key-size.java +0 -25
- package/semgrep-rules/java/lang/security/audit/blowfish-insufficient-key-size.yaml +0 -38
- package/semgrep-rules/java/lang/security/audit/cbc-padding-oracle.fixed.java +0 -31
- package/semgrep-rules/java/lang/security/audit/cbc-padding-oracle.java +0 -31
- package/semgrep-rules/java/lang/security/audit/cbc-padding-oracle.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/command-injection-formatted-runtime-call.java +0 -62
- package/semgrep-rules/java/lang/security/audit/command-injection-formatted-runtime-call.yaml +0 -89
- package/semgrep-rules/java/lang/security/audit/command-injection-process-builder.java +0 -51
- package/semgrep-rules/java/lang/security/audit/command-injection-process-builder.yaml +0 -147
- package/semgrep-rules/java/lang/security/audit/cookie-missing-httponly.java +0 -116
- package/semgrep-rules/java/lang/security/audit/cookie-missing-httponly.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/cookie-missing-secure-flag.java +0 -114
- package/semgrep-rules/java/lang/security/audit/cookie-missing-secure-flag.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/crlf-injection-logs.java +0 -92
- package/semgrep-rules/java/lang/security/audit/crlf-injection-logs.yaml +0 -85
- package/semgrep-rules/java/lang/security/audit/crypto/des-is-deprecated.fixed.java +0 -38
- package/semgrep-rules/java/lang/security/audit/crypto/des-is-deprecated.java +0 -38
- package/semgrep-rules/java/lang/security/audit/crypto/des-is-deprecated.yaml +0 -47
- package/semgrep-rules/java/lang/security/audit/crypto/desede-is-deprecated.java +0 -131
- package/semgrep-rules/java/lang/security/audit/crypto/desede-is-deprecated.yaml +0 -34
- package/semgrep-rules/java/lang/security/audit/crypto/ecb-cipher.java +0 -15
- package/semgrep-rules/java/lang/security/audit/crypto/ecb-cipher.yaml +0 -36
- package/semgrep-rules/java/lang/security/audit/crypto/gcm-detection.java +0 -72
- package/semgrep-rules/java/lang/security/audit/crypto/gcm-detection.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/crypto/gcm-nonce-reuse.java +0 -73
- package/semgrep-rules/java/lang/security/audit/crypto/gcm-nonce-reuse.yaml +0 -28
- package/semgrep-rules/java/lang/security/audit/crypto/no-null-cipher.java +0 -39
- package/semgrep-rules/java/lang/security/audit/crypto/no-null-cipher.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/crypto/no-static-initialization-vector.java +0 -47
- package/semgrep-rules/java/lang/security/audit/crypto/no-static-initialization-vector.yaml +0 -49
- package/semgrep-rules/java/lang/security/audit/crypto/rsa-no-padding.java +0 -16
- package/semgrep-rules/java/lang/security/audit/crypto/rsa-no-padding.yaml +0 -34
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/avoid-implementing-custom-digests.java +0 -15
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/avoid-implementing-custom-digests.yaml +0 -35
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/defaulthttpclient-is-deprecated.java +0 -31
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/defaulthttpclient-is-deprecated.yaml +0 -34
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/insecure-hostname-verifier.java +0 -31
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/insecure-hostname-verifier.yaml +0 -43
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/insecure-trust-manager.java +0 -124
- package/semgrep-rules/java/lang/security/audit/crypto/ssl/insecure-trust-manager.yaml +0 -57
- package/semgrep-rules/java/lang/security/audit/crypto/unencrypted-socket.java +0 -70
- package/semgrep-rules/java/lang/security/audit/crypto/unencrypted-socket.yaml +0 -36
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-aes-ecb.java +0 -16
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-aes-ecb.yaml +0 -31
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-blowfish.java +0 -16
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-blowfish.yaml +0 -31
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-default-aes.java +0 -69
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-default-aes.yaml +0 -61
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-md5-digest-utils.fixed.java +0 -25
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-md5-digest-utils.java +0 -25
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-md5-digest-utils.yaml +0 -40
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-md5.fixed.java +0 -48
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-md5.java +0 -48
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-md5.yaml +0 -36
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-rc2.java +0 -16
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-rc2.yaml +0 -31
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-rc4.java +0 -16
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-rc4.yaml +0 -31
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-sha1.java +0 -49
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-sha1.yaml +0 -42
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-sha224.java +0 -56
- package/semgrep-rules/java/lang/security/audit/crypto/use-of-sha224.yaml +0 -47
- package/semgrep-rules/java/lang/security/audit/crypto/weak-random.java +0 -218
- package/semgrep-rules/java/lang/security/audit/crypto/weak-random.yaml +0 -30
- package/semgrep-rules/java/lang/security/audit/crypto/weak-rsa.java +0 -16
- package/semgrep-rules/java/lang/security/audit/crypto/weak-rsa.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/dangerous-groovy-shell.java +0 -70
- package/semgrep-rules/java/lang/security/audit/dangerous-groovy-shell.yaml +0 -45
- package/semgrep-rules/java/lang/security/audit/el-injection.java +0 -57
- package/semgrep-rules/java/lang/security/audit/el-injection.yaml +0 -136
- package/semgrep-rules/java/lang/security/audit/formatted-sql-string.java +0 -145
- package/semgrep-rules/java/lang/security/audit/formatted-sql-string.yaml +0 -89
- package/semgrep-rules/java/lang/security/audit/http-response-splitting.java +0 -40
- package/semgrep-rules/java/lang/security/audit/http-response-splitting.yaml +0 -43
- package/semgrep-rules/java/lang/security/audit/insecure-smtp-connection.java +0 -31
- package/semgrep-rules/java/lang/security/audit/insecure-smtp-connection.yaml +0 -33
- package/semgrep-rules/java/lang/security/audit/java-reverse-shell.java +0 -3
- package/semgrep-rules/java/lang/security/audit/java-reverse-shell.yaml +0 -42
- package/semgrep-rules/java/lang/security/audit/jdbc-sql-formatted-string.java +0 -64
- package/semgrep-rules/java/lang/security/audit/jdbc-sql-formatted-string.yaml +0 -119
- package/semgrep-rules/java/lang/security/audit/ldap-entry-poisoning.java +0 -26
- package/semgrep-rules/java/lang/security/audit/ldap-entry-poisoning.yaml +0 -40
- package/semgrep-rules/java/lang/security/audit/ldap-injection.java +0 -142
- package/semgrep-rules/java/lang/security/audit/ldap-injection.yaml +0 -81
- package/semgrep-rules/java/lang/security/audit/md5-used-as-password.java +0 -68
- package/semgrep-rules/java/lang/security/audit/md5-used-as-password.yaml +0 -43
- package/semgrep-rules/java/lang/security/audit/object-deserialization.java +0 -26
- package/semgrep-rules/java/lang/security/audit/object-deserialization.yaml +0 -33
- package/semgrep-rules/java/lang/security/audit/ognl-injection.java +0 -43
- package/semgrep-rules/java/lang/security/audit/ognl-injection.yaml +0 -838
- package/semgrep-rules/java/lang/security/audit/overly-permissive-file-permission.java +0 -44
- package/semgrep-rules/java/lang/security/audit/overly-permissive-file-permission.yaml +0 -48
- package/semgrep-rules/java/lang/security/audit/permissive-cors.java +0 -147
- package/semgrep-rules/java/lang/security/audit/permissive-cors.yaml +0 -76
- package/semgrep-rules/java/lang/security/audit/script-engine-injection.java +0 -31
- package/semgrep-rules/java/lang/security/audit/script-engine-injection.yaml +0 -65
- package/semgrep-rules/java/lang/security/audit/sqli/hibernate-sqli.java +0 -46
- package/semgrep-rules/java/lang/security/audit/sqli/hibernate-sqli.yaml +0 -89
- package/semgrep-rules/java/lang/security/audit/sqli/jdbc-sqli.java +0 -91
- package/semgrep-rules/java/lang/security/audit/sqli/jdbc-sqli.yaml +0 -62
- package/semgrep-rules/java/lang/security/audit/sqli/jdo-sqli.java +0 -102
- package/semgrep-rules/java/lang/security/audit/sqli/jdo-sqli.yaml +0 -95
- package/semgrep-rules/java/lang/security/audit/sqli/jpa-sqli.java +0 -61
- package/semgrep-rules/java/lang/security/audit/sqli/jpa-sqli.yaml +0 -62
- package/semgrep-rules/java/lang/security/audit/sqli/tainted-sql-from-http-request.java +0 -289
- package/semgrep-rules/java/lang/security/audit/sqli/tainted-sql-from-http-request.yaml +0 -77
- package/semgrep-rules/java/lang/security/audit/sqli/turbine-sqli.java +0 -83
- package/semgrep-rules/java/lang/security/audit/sqli/turbine-sqli.yaml +0 -94
- package/semgrep-rules/java/lang/security/audit/sqli/vertx-sqli.java +0 -39
- package/semgrep-rules/java/lang/security/audit/sqli/vertx-sqli.yaml +0 -69
- package/semgrep-rules/java/lang/security/audit/tainted-cmd-from-http-request.java +0 -328
- package/semgrep-rules/java/lang/security/audit/tainted-cmd-from-http-request.yaml +0 -73
- package/semgrep-rules/java/lang/security/audit/tainted-env-from-http-request.java +0 -122
- package/semgrep-rules/java/lang/security/audit/tainted-env-from-http-request.yaml +0 -45
- package/semgrep-rules/java/lang/security/audit/tainted-ldapi-from-http-request.java +0 -377
- package/semgrep-rules/java/lang/security/audit/tainted-ldapi-from-http-request.yaml +0 -41
- package/semgrep-rules/java/lang/security/audit/tainted-session-from-http-request.java +0 -172
- package/semgrep-rules/java/lang/security/audit/tainted-session-from-http-request.yaml +0 -69
- package/semgrep-rules/java/lang/security/audit/tainted-xpath-from-http-request.java +0 -252
- package/semgrep-rules/java/lang/security/audit/tainted-xpath-from-http-request.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/unsafe-reflection.java +0 -27
- package/semgrep-rules/java/lang/security/audit/unsafe-reflection.yaml +0 -38
- package/semgrep-rules/java/lang/security/audit/unvalidated-redirect.java +0 -54
- package/semgrep-rules/java/lang/security/audit/unvalidated-redirect.yaml +0 -126
- package/semgrep-rules/java/lang/security/audit/url-rewriting.java +0 -45
- package/semgrep-rules/java/lang/security/audit/url-rewriting.yaml +0 -81
- package/semgrep-rules/java/lang/security/audit/weak-ssl-context.java +0 -52
- package/semgrep-rules/java/lang/security/audit/weak-ssl-context.yaml +0 -33
- package/semgrep-rules/java/lang/security/audit/xml-decoder.java +0 -50
- package/semgrep-rules/java/lang/security/audit/xml-decoder.yaml +0 -52
- package/semgrep-rules/java/lang/security/audit/xss/jsf/autoescape-disabled.xhtml +0 -4
- package/semgrep-rules/java/lang/security/audit/xss/jsf/autoescape-disabled.yaml +0 -29
- package/semgrep-rules/java/lang/security/audit/xss/jsp/no-scriptlets.jsp +0 -27
- package/semgrep-rules/java/lang/security/audit/xss/jsp/no-scriptlets.yaml +0 -30
- package/semgrep-rules/java/lang/security/audit/xss/jsp/use-escapexml.jsp +0 -9
- package/semgrep-rules/java/lang/security/audit/xss/jsp/use-escapexml.yaml +0 -32
- package/semgrep-rules/java/lang/security/audit/xss/jsp/use-jstl-escaping.jsp +0 -9
- package/semgrep-rules/java/lang/security/audit/xss/jsp/use-jstl-escaping.yaml +0 -33
- package/semgrep-rules/java/lang/security/audit/xss/no-direct-response-writer.java +0 -340
- package/semgrep-rules/java/lang/security/audit/xss/no-direct-response-writer.yaml +0 -73
- package/semgrep-rules/java/lang/security/audit/xssrequestwrapper-is-insecure.java +0 -170
- package/semgrep-rules/java/lang/security/audit/xssrequestwrapper-is-insecure.yaml +0 -39
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-disallow-doctype-decl-false.java +0 -73
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-disallow-doctype-decl-false.yaml +0 -73
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-disallow-doctype-decl-missing.fixed.java +0 -169
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-disallow-doctype-decl-missing.java +0 -165
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-disallow-doctype-decl-missing.yaml +0 -161
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-external-general-entities-true.java +0 -38
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-external-general-entities-true.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-external-parameter-entities-true.java +0 -38
- package/semgrep-rules/java/lang/security/audit/xxe/documentbuilderfactory-external-parameter-entities-true.yaml +0 -37
- package/semgrep-rules/java/lang/security/audit/xxe/saxparserfactory-disallow-doctype-decl-missing.java +0 -165
- package/semgrep-rules/java/lang/security/audit/xxe/saxparserfactory-disallow-doctype-decl-missing.yaml +0 -164
- package/semgrep-rules/java/lang/security/audit/xxe/transformerfactory-dtds-not-disabled.java +0 -52
- package/semgrep-rules/java/lang/security/audit/xxe/transformerfactory-dtds-not-disabled.yaml +0 -190
- package/semgrep-rules/java/lang/security/do-privileged-use.java +0 -47
- package/semgrep-rules/java/lang/security/do-privileged-use.yaml +0 -34
- package/semgrep-rules/java/lang/security/httpservlet-path-traversal.java +0 -121
- package/semgrep-rules/java/lang/security/httpservlet-path-traversal.yaml +0 -63
- package/semgrep-rules/java/lang/security/insecure-jms-deserialization.java +0 -74
- package/semgrep-rules/java/lang/security/insecure-jms-deserialization.yaml +0 -49
- package/semgrep-rules/java/lang/security/jackson-unsafe-deserialization.java +0 -107
- package/semgrep-rules/java/lang/security/jackson-unsafe-deserialization.yaml +0 -74
- package/semgrep-rules/java/lang/security/servletresponse-writer-xss.java +0 -37
- package/semgrep-rules/java/lang/security/servletresponse-writer-xss.yaml +0 -39
- package/semgrep-rules/java/lang/security/use-snakeyaml-constructor.java +0 -22
- package/semgrep-rules/java/lang/security/use-snakeyaml-constructor.yaml +0 -33
- package/semgrep-rules/java/lang/security/xmlinputfactory-external-entities-enabled.java +0 -47
- package/semgrep-rules/java/lang/security/xmlinputfactory-external-entities-enabled.yaml +0 -41
- package/semgrep-rules/java/lang/security/xmlinputfactory-possible-xxe.java +0 -65
- package/semgrep-rules/java/lang/security/xmlinputfactory-possible-xxe.yaml +0 -64
- package/semgrep-rules/java/mongodb/security/injection/audit/mongodb-nosqli.java +0 -530
- package/semgrep-rules/java/mongodb/security/injection/audit/mongodb-nosqli.yaml +0 -69
- package/semgrep-rules/java/rmi/security/server-dangerous-class-deserialization.java +0 -47
- package/semgrep-rules/java/rmi/security/server-dangerous-class-deserialization.yaml +0 -37
- package/semgrep-rules/java/rmi/security/server-dangerous-object-deserialization.java +0 -56
- package/semgrep-rules/java/rmi/security/server-dangerous-object-deserialization.yaml +0 -71
- package/semgrep-rules/java/servlets/security/cookie-issecure-false.java +0 -14
- package/semgrep-rules/java/servlets/security/cookie-issecure-false.yaml +0 -36
- package/semgrep-rules/java/servlets/security/cookie-setSecure.java +0 -16
- package/semgrep-rules/java/servlets/security/cookie-setSecure.yaml +0 -41
- package/semgrep-rules/java/spring/security/audit/spel-injection.java +0 -81
- package/semgrep-rules/java/spring/security/audit/spel-injection.yaml +0 -100
- package/semgrep-rules/java/spring/security/audit/spring-actuator-fully-enabled-yaml.test.yaml +0 -10
- package/semgrep-rules/java/spring/security/audit/spring-actuator-fully-enabled-yaml.yaml +0 -39
- package/semgrep-rules/java/spring/security/audit/spring-actuator-fully-enabled.properties +0 -4
- package/semgrep-rules/java/spring/security/audit/spring-actuator-fully-enabled.yaml +0 -31
- package/semgrep-rules/java/spring/security/audit/spring-actuator-non-health-enabled-yaml.test.yaml +0 -13
- package/semgrep-rules/java/spring/security/audit/spring-actuator-non-health-enabled-yaml.yaml +0 -42
- package/semgrep-rules/java/spring/security/audit/spring-actuator-non-health-enabled.properties +0 -8
- package/semgrep-rules/java/spring/security/audit/spring-actuator-non-health-enabled.yaml +0 -33
- package/semgrep-rules/java/spring/security/audit/spring-csrf-disabled.java +0 -50
- package/semgrep-rules/java/spring/security/audit/spring-csrf-disabled.yaml +0 -30
- package/semgrep-rules/java/spring/security/audit/spring-jsp-eval.jsp +0 -7
- package/semgrep-rules/java/spring/security/audit/spring-jsp-eval.yaml +0 -28
- package/semgrep-rules/java/spring/security/audit/spring-sqli.java +0 -211
- package/semgrep-rules/java/spring/security/audit/spring-sqli.yaml +0 -67
- package/semgrep-rules/java/spring/security/audit/spring-unvalidated-redirect.java +0 -52
- package/semgrep-rules/java/spring/security/audit/spring-unvalidated-redirect.yaml +0 -50
- package/semgrep-rules/java/spring/security/injection/tainted-file-path.java +0 -121
- package/semgrep-rules/java/spring/security/injection/tainted-file-path.yaml +0 -76
- package/semgrep-rules/java/spring/security/injection/tainted-html-string.java +0 -541
- package/semgrep-rules/java/spring/security/injection/tainted-html-string.yaml +0 -106
- package/semgrep-rules/java/spring/security/injection/tainted-sql-string.java +0 -222
- package/semgrep-rules/java/spring/security/injection/tainted-sql-string.yaml +0 -89
- package/semgrep-rules/java/spring/security/injection/tainted-system-command.java +0 -286
- package/semgrep-rules/java/spring/security/injection/tainted-system-command.yaml +0 -104
- package/semgrep-rules/java/spring/security/injection/tainted-url-host.java +0 -86
- package/semgrep-rules/java/spring/security/injection/tainted-url-host.yaml +0 -84
- package/semgrep-rules/java/spring/security/unrestricted-request-mapping.java +0 -38
- package/semgrep-rules/java/spring/security/unrestricted-request-mapping.yaml +0 -38
- package/semgrep-rules/javascript/ajv/security/audit/ajv-allerrors-true.js +0 -41
- package/semgrep-rules/javascript/ajv/security/audit/ajv-allerrors-true.yaml +0 -33
- package/semgrep-rules/javascript/angular/security/detect-angular-element-methods.js +0 -17
- package/semgrep-rules/javascript/angular/security/detect-angular-element-methods.yaml +0 -63
- package/semgrep-rules/javascript/angular/security/detect-angular-element-taint.js +0 -13
- package/semgrep-rules/javascript/angular/security/detect-angular-element-taint.yaml +0 -82
- package/semgrep-rules/javascript/angular/security/detect-angular-open-redirect.js +0 -18
- package/semgrep-rules/javascript/angular/security/detect-angular-open-redirect.yaml +0 -37
- package/semgrep-rules/javascript/angular/security/detect-angular-resource-loading.js +0 -32
- package/semgrep-rules/javascript/angular/security/detect-angular-resource-loading.yaml +0 -36
- package/semgrep-rules/javascript/angular/security/detect-angular-sce-disabled.js +0 -18
- package/semgrep-rules/javascript/angular/security/detect-angular-sce-disabled.yaml +0 -30
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-css.js +0 -17
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-css.yaml +0 -38
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-html-method.js +0 -17
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-html-method.yaml +0 -38
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-js-method.js +0 -17
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-js-method.yaml +0 -38
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-method.js +0 -24
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-method.yaml +0 -38
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-resourceurl-method.js +0 -17
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-resourceurl-method.yaml +0 -38
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-url-method.js +0 -17
- package/semgrep-rules/javascript/angular/security/detect-angular-trust-as-url-method.yaml +0 -38
- package/semgrep-rules/javascript/angular/security/detect-third-party-angular-translate.js +0 -10
- package/semgrep-rules/javascript/angular/security/detect-third-party-angular-translate.yaml +0 -35
- package/semgrep-rules/javascript/apollo/security/apollo-axios-ssrf.jsx +0 -89
- package/semgrep-rules/javascript/apollo/security/apollo-axios-ssrf.yaml +0 -46
- package/semgrep-rules/javascript/argon2/security/unsafe-argon2-config.js +0 -63
- package/semgrep-rules/javascript/argon2/security/unsafe-argon2-config.yaml +0 -47
- package/semgrep-rules/javascript/audit/detect-replaceall-sanitization.ts +0 -9
- package/semgrep-rules/javascript/audit/detect-replaceall-sanitization.yaml +0 -41
- package/semgrep-rules/javascript/aws-lambda/security/detect-child-process.js +0 -14
- package/semgrep-rules/javascript/aws-lambda/security/detect-child-process.yaml +0 -66
- package/semgrep-rules/javascript/aws-lambda/security/dynamodb-request-object.js +0 -81
- package/semgrep-rules/javascript/aws-lambda/security/dynamodb-request-object.yaml +0 -70
- package/semgrep-rules/javascript/aws-lambda/security/knex-sqli.js +0 -29
- package/semgrep-rules/javascript/aws-lambda/security/knex-sqli.yaml +0 -64
- package/semgrep-rules/javascript/aws-lambda/security/mysql-sqli.js +0 -55
- package/semgrep-rules/javascript/aws-lambda/security/mysql-sqli.yaml +0 -75
- package/semgrep-rules/javascript/aws-lambda/security/pg-sqli.js +0 -50
- package/semgrep-rules/javascript/aws-lambda/security/pg-sqli.yaml +0 -62
- package/semgrep-rules/javascript/aws-lambda/security/sequelize-sqli.js +0 -39
- package/semgrep-rules/javascript/aws-lambda/security/sequelize-sqli.yaml +0 -62
- package/semgrep-rules/javascript/aws-lambda/security/tainted-eval.js +0 -13
- package/semgrep-rules/javascript/aws-lambda/security/tainted-eval.yaml +0 -51
- package/semgrep-rules/javascript/aws-lambda/security/tainted-html-response.js +0 -20
- package/semgrep-rules/javascript/aws-lambda/security/tainted-html-response.yaml +0 -51
- package/semgrep-rules/javascript/aws-lambda/security/tainted-html-string.js +0 -29
- package/semgrep-rules/javascript/aws-lambda/security/tainted-html-string.yaml +0 -71
- package/semgrep-rules/javascript/aws-lambda/security/tainted-sql-string.js +0 -36
- package/semgrep-rules/javascript/aws-lambda/security/tainted-sql-string.yaml +0 -68
- package/semgrep-rules/javascript/aws-lambda/security/vm-runincontext-injection.js +0 -80
- package/semgrep-rules/javascript/aws-lambda/security/vm-runincontext-injection.yaml +0 -67
- package/semgrep-rules/javascript/bluebird/security/audit/tofastproperties-code-execution.js +0 -11
- package/semgrep-rules/javascript/bluebird/security/audit/tofastproperties-code-execution.yaml +0 -43
- package/semgrep-rules/javascript/browser/security/dom-based-xss.js +0 -5
- package/semgrep-rules/javascript/browser/security/dom-based-xss.yaml +0 -33
- package/semgrep-rules/javascript/browser/security/eval-detected.js +0 -41
- package/semgrep-rules/javascript/browser/security/eval-detected.yaml +0 -34
- package/semgrep-rules/javascript/browser/security/insecure-document-method.js +0 -28
- package/semgrep-rules/javascript/browser/security/insecure-document-method.yaml +0 -39
- package/semgrep-rules/javascript/browser/security/insecure-innerhtml.js +0 -28
- package/semgrep-rules/javascript/browser/security/insecure-innerhtml.yaml +0 -31
- package/semgrep-rules/javascript/browser/security/insufficient-postmessage-origin-validation.js +0 -69
- package/semgrep-rules/javascript/browser/security/insufficient-postmessage-origin-validation.yaml +0 -50
- package/semgrep-rules/javascript/browser/security/open-redirect-from-function.js +0 -18
- package/semgrep-rules/javascript/browser/security/open-redirect-from-function.yaml +0 -57
- package/semgrep-rules/javascript/browser/security/open-redirect.js +0 -27
- package/semgrep-rules/javascript/browser/security/open-redirect.yaml +0 -94
- package/semgrep-rules/javascript/browser/security/raw-html-concat.js +0 -191
- package/semgrep-rules/javascript/browser/security/raw-html-concat.yaml +0 -166
- package/semgrep-rules/javascript/browser/security/raw-html-join.js +0 -159
- package/semgrep-rules/javascript/browser/security/raw-html-join.yaml +0 -42
- package/semgrep-rules/javascript/browser/security/wildcard-postmessage-configuration.js +0 -11
- package/semgrep-rules/javascript/browser/security/wildcard-postmessage-configuration.yaml +0 -25
- package/semgrep-rules/javascript/chrome-remote-interface/security/audit/chrome-remote-interface-compilescript-injection.js +0 -112
- package/semgrep-rules/javascript/chrome-remote-interface/security/audit/chrome-remote-interface-compilescript-injection.yaml +0 -54
- package/semgrep-rules/javascript/deno/security/audit/deno-dangerous-run.js +0 -29
- package/semgrep-rules/javascript/deno/security/audit/deno-dangerous-run.yaml +0 -46
- package/semgrep-rules/javascript/express/security/audit/express-check-csurf-middleware-usage.js +0 -34
- package/semgrep-rules/javascript/express/security/audit/express-check-csurf-middleware-usage.yaml +0 -49
- package/semgrep-rules/javascript/express/security/audit/express-check-directory-listing.js +0 -26
- package/semgrep-rules/javascript/express/security/audit/express-check-directory-listing.yaml +0 -53
- package/semgrep-rules/javascript/express/security/audit/express-cookie-settings.js +0 -121
- package/semgrep-rules/javascript/express/security/audit/express-cookie-settings.yaml +0 -357
- package/semgrep-rules/javascript/express/security/audit/express-detect-notevil-usage.ts +0 -53
- package/semgrep-rules/javascript/express/security/audit/express-detect-notevil-usage.yaml +0 -54
- package/semgrep-rules/javascript/express/security/audit/express-jwt-not-revoked.js +0 -31
- package/semgrep-rules/javascript/express/security/audit/express-jwt-not-revoked.yaml +0 -43
- package/semgrep-rules/javascript/express/security/audit/express-libxml-noent.js +0 -18
- package/semgrep-rules/javascript/express/security/audit/express-libxml-noent.yaml +0 -90
- package/semgrep-rules/javascript/express/security/audit/express-libxml-vm-noent.js +0 -43
- package/semgrep-rules/javascript/express/security/audit/express-libxml-vm-noent.yaml +0 -52
- package/semgrep-rules/javascript/express/security/audit/express-open-redirect.js +0 -60
- package/semgrep-rules/javascript/express/security/audit/express-open-redirect.yaml +0 -113
- package/semgrep-rules/javascript/express/security/audit/express-path-join-resolve-traversal.js +0 -97
- package/semgrep-rules/javascript/express/security/audit/express-path-join-resolve-traversal.yaml +0 -96
- package/semgrep-rules/javascript/express/security/audit/express-res-sendfile.ts +0 -77
- package/semgrep-rules/javascript/express/security/audit/express-res-sendfile.yaml +0 -75
- package/semgrep-rules/javascript/express/security/audit/express-session-hardcoded-secret.ts +0 -47
- package/semgrep-rules/javascript/express/security/audit/express-session-hardcoded-secret.yaml +0 -56
- package/semgrep-rules/javascript/express/security/audit/express-ssrf.ts +0 -111
- package/semgrep-rules/javascript/express/security/audit/express-ssrf.yaml +0 -194
- package/semgrep-rules/javascript/express/security/audit/express-third-party-object-deserialization.ts +0 -18
- package/semgrep-rules/javascript/express/security/audit/express-third-party-object-deserialization.yaml +0 -89
- package/semgrep-rules/javascript/express/security/audit/express-xml2json-xxe-event.js +0 -57
- package/semgrep-rules/javascript/express/security/audit/express-xml2json-xxe-event.yaml +0 -72
- package/semgrep-rules/javascript/express/security/audit/possible-user-input-redirect.js +0 -31
- package/semgrep-rules/javascript/express/security/audit/possible-user-input-redirect.yaml +0 -41
- package/semgrep-rules/javascript/express/security/audit/remote-property-injection.js +0 -24
- package/semgrep-rules/javascript/express/security/audit/remote-property-injection.yaml +0 -74
- package/semgrep-rules/javascript/express/security/audit/res-render-injection.js +0 -24
- package/semgrep-rules/javascript/express/security/audit/res-render-injection.yaml +0 -68
- package/semgrep-rules/javascript/express/security/audit/xss/direct-response-write.js +0 -172
- package/semgrep-rules/javascript/express/security/audit/xss/direct-response-write.yaml +0 -238
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/explicit-unescape.ejs +0 -55
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/explicit-unescape.yaml +0 -37
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/var-in-href.ejs +0 -56
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/var-in-href.yaml +0 -37
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/var-in-script-src.ejs +0 -46
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/var-in-script-src.yaml +0 -42
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/var-in-script-tag.ejs +0 -65
- package/semgrep-rules/javascript/express/security/audit/xss/ejs/var-in-script-tag.yaml +0 -42
- package/semgrep-rules/javascript/express/security/audit/xss/mustache/escape-function-overwrite.js +0 -25
- package/semgrep-rules/javascript/express/security/audit/xss/mustache/escape-function-overwrite.yaml +0 -37
- package/semgrep-rules/javascript/express/security/audit/xss/mustache/explicit-unescape.mustache +0 -68
- package/semgrep-rules/javascript/express/security/audit/xss/mustache/explicit-unescape.yaml +0 -39
- package/semgrep-rules/javascript/express/security/audit/xss/mustache/var-in-script-tag.mustache +0 -67
- package/semgrep-rules/javascript/express/security/audit/xss/mustache/var-in-script-tag.yaml +0 -41
- package/semgrep-rules/javascript/express/security/audit/xss/pug/and-attributes.pug +0 -33
- package/semgrep-rules/javascript/express/security/audit/xss/pug/and-attributes.yaml +0 -33
- package/semgrep-rules/javascript/express/security/audit/xss/pug/explicit-unescape.pug +0 -35
- package/semgrep-rules/javascript/express/security/audit/xss/pug/explicit-unescape.yaml +0 -36
- package/semgrep-rules/javascript/express/security/audit/xss/pug/var-in-href.pug +0 -32
- package/semgrep-rules/javascript/express/security/audit/xss/pug/var-in-href.yaml +0 -36
- package/semgrep-rules/javascript/express/security/audit/xss/pug/var-in-script-tag.pug +0 -23
- package/semgrep-rules/javascript/express/security/audit/xss/pug/var-in-script-tag.yaml +0 -43
- package/semgrep-rules/javascript/express/security/cors-misconfiguration.js +0 -30
- package/semgrep-rules/javascript/express/security/cors-misconfiguration.yaml +0 -72
- package/semgrep-rules/javascript/express/security/express-data-exfiltration.js +0 -57
- package/semgrep-rules/javascript/express/security/express-data-exfiltration.yaml +0 -60
- package/semgrep-rules/javascript/express/security/express-expat-xxe.js +0 -57
- package/semgrep-rules/javascript/express/security/express-expat-xxe.yaml +0 -89
- package/semgrep-rules/javascript/express/security/express-insecure-template-usage.jsx +0 -46
- package/semgrep-rules/javascript/express/security/express-insecure-template-usage.yaml +0 -179
- package/semgrep-rules/javascript/express/security/express-jwt-hardcoded-secret.js +0 -41
- package/semgrep-rules/javascript/express/security/express-jwt-hardcoded-secret.yaml +0 -55
- package/semgrep-rules/javascript/express/security/express-phantom-injection.js +0 -73
- package/semgrep-rules/javascript/express/security/express-phantom-injection.yaml +0 -75
- package/semgrep-rules/javascript/express/security/express-puppeteer-injection.js +0 -98
- package/semgrep-rules/javascript/express/security/express-puppeteer-injection.yaml +0 -78
- package/semgrep-rules/javascript/express/security/express-sandbox-injection.js +0 -56
- package/semgrep-rules/javascript/express/security/express-sandbox-injection.yaml +0 -73
- package/semgrep-rules/javascript/express/security/express-vm-injection.js +0 -140
- package/semgrep-rules/javascript/express/security/express-vm-injection.yaml +0 -73
- package/semgrep-rules/javascript/express/security/express-vm2-injection.js +0 -162
- package/semgrep-rules/javascript/express/security/express-vm2-injection.yaml +0 -83
- package/semgrep-rules/javascript/express/security/express-wkhtml-injection.js +0 -32
- package/semgrep-rules/javascript/express/security/express-wkhtml-injection.yaml +0 -125
- package/semgrep-rules/javascript/express/security/express-xml2json-xxe.js +0 -45
- package/semgrep-rules/javascript/express/security/express-xml2json-xxe.yaml +0 -80
- package/semgrep-rules/javascript/express/security/injection/raw-html-format.js +0 -61
- package/semgrep-rules/javascript/express/security/injection/raw-html-format.yaml +0 -92
- package/semgrep-rules/javascript/express/security/injection/tainted-sql-string.js +0 -87
- package/semgrep-rules/javascript/express/security/injection/tainted-sql-string.yaml +0 -73
- package/semgrep-rules/javascript/express/security/require-request.js +0 -52
- package/semgrep-rules/javascript/express/security/require-request.yaml +0 -65
- package/semgrep-rules/javascript/express/security/x-frame-options-misconfiguration.js +0 -14
- package/semgrep-rules/javascript/express/security/x-frame-options-misconfiguration.yaml +0 -72
- package/semgrep-rules/javascript/fbjs/security/audit/insecure-createnodesfrommarkup.js +0 -14
- package/semgrep-rules/javascript/fbjs/security/audit/insecure-createnodesfrommarkup.yaml +0 -32
- package/semgrep-rules/javascript/grpc/security/grpc-nodejs-insecure-connection.js +0 -59
- package/semgrep-rules/javascript/grpc/security/grpc-nodejs-insecure-connection.yaml +0 -48
- package/semgrep-rules/javascript/intercom/security/audit/intercom-settings-user-identifier-without-user-hash.js +0 -95
- package/semgrep-rules/javascript/intercom/security/audit/intercom-settings-user-identifier-without-user-hash.yaml +0 -49
- package/semgrep-rules/javascript/jose/security/audit/jose-exposed-data.js +0 -204
- package/semgrep-rules/javascript/jose/security/audit/jose-exposed-data.yaml +0 -48
- package/semgrep-rules/javascript/jose/security/jwt-hardcode.js +0 -178
- package/semgrep-rules/javascript/jose/security/jwt-hardcode.yaml +0 -72
- package/semgrep-rules/javascript/jose/security/jwt-none-alg.js +0 -4
- package/semgrep-rules/javascript/jose/security/jwt-none-alg.yaml +0 -54
- package/semgrep-rules/javascript/jquery/security/audit/jquery-insecure-method.js +0 -73
- package/semgrep-rules/javascript/jquery/security/audit/jquery-insecure-method.yaml +0 -52
- package/semgrep-rules/javascript/jquery/security/audit/jquery-insecure-selector.js +0 -74
- package/semgrep-rules/javascript/jquery/security/audit/jquery-insecure-selector.yaml +0 -85
- package/semgrep-rules/javascript/jquery/security/audit/prohibit-jquery-html.js +0 -40
- package/semgrep-rules/javascript/jquery/security/audit/prohibit-jquery-html.yaml +0 -43
- package/semgrep-rules/javascript/jsonwebtoken/security/audit/example1.js +0 -23
- package/semgrep-rules/javascript/jsonwebtoken/security/audit/jwt-decode-without-verify.js +0 -24
- package/semgrep-rules/javascript/jsonwebtoken/security/audit/jwt-decode-without-verify.jsx +0 -16
- package/semgrep-rules/javascript/jsonwebtoken/security/audit/jwt-decode-without-verify.yaml +0 -45
- package/semgrep-rules/javascript/jsonwebtoken/security/audit/jwt-exposed-data.js +0 -25
- package/semgrep-rules/javascript/jsonwebtoken/security/audit/jwt-exposed-data.yaml +0 -40
- package/semgrep-rules/javascript/jsonwebtoken/security/example1.js +0 -26
- package/semgrep-rules/javascript/jsonwebtoken/security/example2.js +0 -21
- package/semgrep-rules/javascript/jsonwebtoken/security/example3.js +0 -21
- package/semgrep-rules/javascript/jsonwebtoken/security/example4.js +0 -16
- package/semgrep-rules/javascript/jsonwebtoken/security/jwt-hardcode.js +0 -48
- package/semgrep-rules/javascript/jsonwebtoken/security/jwt-hardcode.yaml +0 -70
- package/semgrep-rules/javascript/jsonwebtoken/security/jwt-none-alg.js +0 -13
- package/semgrep-rules/javascript/jsonwebtoken/security/jwt-none-alg.yaml +0 -39
- package/semgrep-rules/javascript/jsonwebtoken/security/simple-examples.js +0 -39
- package/semgrep-rules/javascript/jwt-simple/security/jwt-simple-noverify.js +0 -142
- package/semgrep-rules/javascript/jwt-simple/security/jwt-simple-noverify.yaml +0 -46
- package/semgrep-rules/javascript/lang/best-practice/assigned-undefined.js +0 -13
- package/semgrep-rules/javascript/lang/best-practice/assigned-undefined.yaml +0 -18
- package/semgrep-rules/javascript/lang/best-practice/lazy-load-module.js +0 -8
- package/semgrep-rules/javascript/lang/best-practice/lazy-load-module.yaml +0 -24
- package/semgrep-rules/javascript/lang/best-practice/leftover_debugging.js +0 -14
- package/semgrep-rules/javascript/lang/best-practice/leftover_debugging.yaml +0 -50
- package/semgrep-rules/javascript/lang/best-practice/zlib-async-loop.js +0 -21
- package/semgrep-rules/javascript/lang/best-practice/zlib-async-loop.yaml +0 -41
- package/semgrep-rules/javascript/lang/correctness/missing-template-string-indicator.js +0 -27
- package/semgrep-rules/javascript/lang/correctness/missing-template-string-indicator.yaml +0 -18
- package/semgrep-rules/javascript/lang/correctness/no-replaceall.js +0 -9
- package/semgrep-rules/javascript/lang/correctness/no-replaceall.yaml +0 -18
- package/semgrep-rules/javascript/lang/correctness/no-stringify-keys.jsx +0 -21
- package/semgrep-rules/javascript/lang/correctness/no-stringify-keys.yaml +0 -29
- package/semgrep-rules/javascript/lang/correctness/useless-assign.js +0 -39
- package/semgrep-rules/javascript/lang/correctness/useless-assign.yaml +0 -18
- package/semgrep-rules/javascript/lang/correctness/useless-eqeq.js +0 -9
- package/semgrep-rules/javascript/lang/correctness/useless-eqeq.yaml +0 -21
- package/semgrep-rules/javascript/lang/security/audit/code-string-concat.js +0 -19
- package/semgrep-rules/javascript/lang/security/audit/code-string-concat.yaml +0 -89
- package/semgrep-rules/javascript/lang/security/audit/dangerous-spawn-shell.js +0 -20
- package/semgrep-rules/javascript/lang/security/audit/dangerous-spawn-shell.yaml +0 -66
- package/semgrep-rules/javascript/lang/security/audit/detect-non-literal-fs-filename.js +0 -56
- package/semgrep-rules/javascript/lang/security/audit/detect-non-literal-fs-filename.ts +0 -56
- package/semgrep-rules/javascript/lang/security/audit/detect-non-literal-fs-filename.yaml +0 -271
- package/semgrep-rules/javascript/lang/security/audit/detect-non-literal-regexp.js +0 -18
- package/semgrep-rules/javascript/lang/security/audit/detect-non-literal-regexp.yaml +0 -44
- package/semgrep-rules/javascript/lang/security/audit/detect-non-literal-require.js +0 -39
- package/semgrep-rules/javascript/lang/security/audit/detect-non-literal-require.yaml +0 -33
- package/semgrep-rules/javascript/lang/security/audit/detect-redos.js +0 -19
- package/semgrep-rules/javascript/lang/security/audit/detect-redos.yaml +0 -42
- package/semgrep-rules/javascript/lang/security/audit/hardcoded-hmac-key.js +0 -17
- package/semgrep-rules/javascript/lang/security/audit/hardcoded-hmac-key.yaml +0 -38
- package/semgrep-rules/javascript/lang/security/audit/incomplete-sanitization.js +0 -24
- package/semgrep-rules/javascript/lang/security/audit/incomplete-sanitization.yaml +0 -31
- package/semgrep-rules/javascript/lang/security/audit/md5-used-as-password.js +0 -13
- package/semgrep-rules/javascript/lang/security/audit/md5-used-as-password.yaml +0 -39
- package/semgrep-rules/javascript/lang/security/audit/path-traversal/path-join-resolve-traversal.js +0 -80
- package/semgrep-rules/javascript/lang/security/audit/path-traversal/path-join-resolve-traversal.ts +0 -90
- package/semgrep-rules/javascript/lang/security/audit/path-traversal/path-join-resolve-traversal.yaml +0 -74
- package/semgrep-rules/javascript/lang/security/audit/path-traversal/real-example1.js +0 -35
- package/semgrep-rules/javascript/lang/security/audit/path-traversal/real-example2.js +0 -29
- package/semgrep-rules/javascript/lang/security/audit/prototype-pollution/prototype-pollution-assignment.js +0 -75
- package/semgrep-rules/javascript/lang/security/audit/prototype-pollution/prototype-pollution-assignment.yaml +0 -73
- package/semgrep-rules/javascript/lang/security/audit/prototype-pollution/prototype-pollution-loop.js +0 -87
- package/semgrep-rules/javascript/lang/security/audit/prototype-pollution/prototype-pollution-loop.yaml +0 -70
- package/semgrep-rules/javascript/lang/security/audit/spawn-shell-true.js +0 -13
- package/semgrep-rules/javascript/lang/security/audit/spawn-shell-true.yaml +0 -49
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-knex-sqli.js +0 -29
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-knex-sqli.yaml +0 -89
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-mssql-sqli.js +0 -77
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-mssql-sqli.yaml +0 -55
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-mysql-sqli.js +0 -63
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-mysql-sqli.yaml +0 -71
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-postgres-sqli.js +0 -156
- package/semgrep-rules/javascript/lang/security/audit/sqli/node-postgres-sqli.yaml +0 -62
- package/semgrep-rules/javascript/lang/security/audit/unknown-value-with-script-tag.js +0 -126
- package/semgrep-rules/javascript/lang/security/audit/unknown-value-with-script-tag.yaml +0 -36
- package/semgrep-rules/javascript/lang/security/audit/unsafe-dynamic-method.js +0 -51
- package/semgrep-rules/javascript/lang/security/audit/unsafe-dynamic-method.yaml +0 -54
- package/semgrep-rules/javascript/lang/security/audit/unsafe-formatstring.js +0 -46
- package/semgrep-rules/javascript/lang/security/audit/unsafe-formatstring.yaml +0 -50
- package/semgrep-rules/javascript/lang/security/detect-buffer-noassert.js +0 -11
- package/semgrep-rules/javascript/lang/security/detect-buffer-noassert.yaml +0 -32
- package/semgrep-rules/javascript/lang/security/detect-child-process.js +0 -40
- package/semgrep-rules/javascript/lang/security/detect-child-process.ts +0 -40
- package/semgrep-rules/javascript/lang/security/detect-child-process.yaml +0 -78
- package/semgrep-rules/javascript/lang/security/detect-disable-mustache-escape.js +0 -5
- package/semgrep-rules/javascript/lang/security/detect-disable-mustache-escape.yaml +0 -26
- package/semgrep-rules/javascript/lang/security/detect-eval-with-expression.js +0 -13
- package/semgrep-rules/javascript/lang/security/detect-eval-with-expression.yaml +0 -87
- package/semgrep-rules/javascript/lang/security/detect-insecure-websocket.js +0 -26
- package/semgrep-rules/javascript/lang/security/detect-insecure-websocket.yaml +0 -31
- package/semgrep-rules/javascript/lang/security/detect-no-csrf-before-method-override.js +0 -11
- package/semgrep-rules/javascript/lang/security/detect-no-csrf-before-method-override.yaml +0 -34
- package/semgrep-rules/javascript/lang/security/detect-pseudoRandomBytes.js +0 -5
- package/semgrep-rules/javascript/lang/security/detect-pseudoRandomBytes.yaml +0 -31
- package/semgrep-rules/javascript/lang/security/html-in-template-string.js +0 -25
- package/semgrep-rules/javascript/lang/security/html-in-template-string.yaml +0 -35
- package/semgrep-rules/javascript/lang/security/insecure-object-assign.js +0 -27
- package/semgrep-rules/javascript/lang/security/insecure-object-assign.yaml +0 -32
- package/semgrep-rules/javascript/lang/security/spawn-git-clone.js +0 -55
- package/semgrep-rules/javascript/lang/security/spawn-git-clone.yaml +0 -39
- package/semgrep-rules/javascript/monaco-editor/security/audit/monaco-hover-htmlsupport.js +0 -51
- package/semgrep-rules/javascript/monaco-editor/security/audit/monaco-hover-htmlsupport.yaml +0 -46
- package/semgrep-rules/javascript/node-crypto/security/aead-no-final.js +0 -114
- package/semgrep-rules/javascript/node-crypto/security/aead-no-final.yaml +0 -37
- package/semgrep-rules/javascript/node-crypto/security/create-de-cipher-no-iv.js +0 -53
- package/semgrep-rules/javascript/node-crypto/security/create-de-cipher-no-iv.yaml +0 -31
- package/semgrep-rules/javascript/node-crypto/security/gcm-no-tag-length.js +0 -84
- package/semgrep-rules/javascript/node-crypto/security/gcm-no-tag-length.yaml +0 -33
- package/semgrep-rules/javascript/node-expat/security/audit/expat-xxe.js +0 -35
- package/semgrep-rules/javascript/node-expat/security/audit/expat-xxe.yaml +0 -85
- package/semgrep-rules/javascript/passport-jwt/security/passport-hardcode.js +0 -103
- package/semgrep-rules/javascript/passport-jwt/security/passport-hardcode.yaml +0 -106
- package/semgrep-rules/javascript/phantom/security/audit/phantom-injection.js +0 -66
- package/semgrep-rules/javascript/phantom/security/audit/phantom-injection.yaml +0 -41
- package/semgrep-rules/javascript/playwright/security/audit/playwright-addinitscript-code-injection.js +0 -17
- package/semgrep-rules/javascript/playwright/security/audit/playwright-addinitscript-code-injection.yaml +0 -36
- package/semgrep-rules/javascript/playwright/security/audit/playwright-evaluate-arg-injection.js +0 -16
- package/semgrep-rules/javascript/playwright/security/audit/playwright-evaluate-arg-injection.yaml +0 -36
- package/semgrep-rules/javascript/playwright/security/audit/playwright-evaluate-code-injection.js +0 -16
- package/semgrep-rules/javascript/playwright/security/audit/playwright-evaluate-code-injection.yaml +0 -43
- package/semgrep-rules/javascript/playwright/security/audit/playwright-exposed-chrome-devtools.js +0 -26
- package/semgrep-rules/javascript/playwright/security/audit/playwright-exposed-chrome-devtools.yaml +0 -34
- package/semgrep-rules/javascript/playwright/security/audit/playwright-goto-injection.js +0 -22
- package/semgrep-rules/javascript/playwright/security/audit/playwright-goto-injection.yaml +0 -37
- package/semgrep-rules/javascript/playwright/security/audit/playwright-setcontent-injection.js +0 -15
- package/semgrep-rules/javascript/playwright/security/audit/playwright-setcontent-injection.yaml +0 -38
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-evaluate-arg-injection.js +0 -16
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-evaluate-arg-injection.yaml +0 -37
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-evaluate-code-injection.js +0 -16
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-evaluate-code-injection.yaml +0 -43
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-exposed-chrome-devtools.js +0 -26
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-exposed-chrome-devtools.yaml +0 -34
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-goto-injection.js +0 -22
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-goto-injection.yaml +0 -37
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-setcontent-injection.js +0 -15
- package/semgrep-rules/javascript/puppeteer/security/audit/puppeteer-setcontent-injection.yaml +0 -37
- package/semgrep-rules/javascript/react/correctness/hooks/set-state-no-op.jsx +0 -40
- package/semgrep-rules/javascript/react/correctness/hooks/set-state-no-op.yaml +0 -16
- package/semgrep-rules/javascript/sandbox/security/audit/sandbox-code-injection.js +0 -39
- package/semgrep-rules/javascript/sandbox/security/audit/sandbox-code-injection.yaml +0 -45
- package/semgrep-rules/javascript/sax/security/audit/sax-xxe.js +0 -49
- package/semgrep-rules/javascript/sax/security/audit/sax-xxe.yaml +0 -40
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-enforce-tls.js +0 -70
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-enforce-tls.yaml +0 -59
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-injection-express.ts +0 -38
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-injection-express.yaml +0 -81
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-raw-query.js +0 -24
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-raw-query.yaml +0 -54
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-tls-disabled-cert-validation.js +0 -65
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-tls-disabled-cert-validation.yaml +0 -51
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-weak-tls-version.js +0 -75
- package/semgrep-rules/javascript/sequelize/security/audit/sequelize-weak-tls-version.yaml +0 -55
- package/semgrep-rules/javascript/serialize-javascript/security/audit/unsafe-serialize-javascript.js +0 -31
- package/semgrep-rules/javascript/serialize-javascript/security/audit/unsafe-serialize-javascript.yaml +0 -31
- package/semgrep-rules/javascript/shelljs/security/shelljs-exec-injection.js +0 -23
- package/semgrep-rules/javascript/shelljs/security/shelljs-exec-injection.yaml +0 -37
- package/semgrep-rules/javascript/thenify/security/audit/multiargs-code-execution.js +0 -33
- package/semgrep-rules/javascript/thenify/security/audit/multiargs-code-execution.yaml +0 -45
- package/semgrep-rules/javascript/vm2/security/audit/vm2-code-injection.js +0 -94
- package/semgrep-rules/javascript/vm2/security/audit/vm2-code-injection.yaml +0 -65
- package/semgrep-rules/javascript/vm2/security/audit/vm2-context-injection.js +0 -54
- package/semgrep-rules/javascript/vm2/security/audit/vm2-context-injection.yaml +0 -349
- package/semgrep-rules/javascript/vue/security/audit/xss/templates/avoid-v-html.vue +0 -6
- package/semgrep-rules/javascript/vue/security/audit/xss/templates/avoid-v-html.yaml +0 -30
- package/semgrep-rules/javascript/wkhtmltoimage/security/audit/wkhtmltoimage-injection.js +0 -13
- package/semgrep-rules/javascript/wkhtmltoimage/security/audit/wkhtmltoimage-injection.yaml +0 -35
- package/semgrep-rules/javascript/wkhtmltopdf/security/audit/wkhtmltopdf-injection.js +0 -18
- package/semgrep-rules/javascript/wkhtmltopdf/security/audit/wkhtmltopdf-injection.yaml +0 -34
- package/semgrep-rules/javascript/xml2json/security/audit/xml2json-xxe.js +0 -21
- package/semgrep-rules/javascript/xml2json/security/audit/xml2json-xxe.yaml +0 -47
- package/semgrep-rules/json/aws/security/public-s3-bucket.json +0 -52
- package/semgrep-rules/json/aws/security/public-s3-bucket.yaml +0 -60
- package/semgrep-rules/json/aws/security/public-s3-policy-statement.json +0 -31
- package/semgrep-rules/json/aws/security/public-s3-policy-statement.yaml +0 -33
- package/semgrep-rules/json/aws/security/wildcard-assume-role.json +0 -37
- package/semgrep-rules/json/aws/security/wildcard-assume-role.yaml +0 -31
- package/semgrep-rules/json/npm/security/package-dependencies-check.package.json +0 -41
- package/semgrep-rules/json/npm/security/package-dependencies-check.yml +0 -53
- package/semgrep-rules/kotlin/gradle/security/build-gradle-password-hardcoded.build.gradle.kts +0 -206
- package/semgrep-rules/kotlin/gradle/security/build-gradle-password-hardcoded.yaml +0 -49
- package/semgrep-rules/kotlin/lang/security/anonymous-ldap-bind.kt +0 -13
- package/semgrep-rules/kotlin/lang/security/anonymous-ldap-bind.yaml +0 -33
- package/semgrep-rules/kotlin/lang/security/bad-hexa-conversion.kt +0 -39
- package/semgrep-rules/kotlin/lang/security/bad-hexa-conversion.yaml +0 -32
- package/semgrep-rules/kotlin/lang/security/command-injection-formatted-runtime-call.kt +0 -19
- package/semgrep-rules/kotlin/lang/security/command-injection-formatted-runtime-call.yaml +0 -36
- package/semgrep-rules/kotlin/lang/security/cookie-missing-httponly.kt +0 -30
- package/semgrep-rules/kotlin/lang/security/cookie-missing-httponly.yaml +0 -35
- package/semgrep-rules/kotlin/lang/security/cookie-missing-secure-flag.kt +0 -100
- package/semgrep-rules/kotlin/lang/security/cookie-missing-secure-flag.yaml +0 -35
- package/semgrep-rules/kotlin/lang/security/defaulthttpclient-is-deprecated.kt +0 -31
- package/semgrep-rules/kotlin/lang/security/defaulthttpclient-is-deprecated.yaml +0 -34
- package/semgrep-rules/kotlin/lang/security/ecb-cipher.kt +0 -23
- package/semgrep-rules/kotlin/lang/security/ecb-cipher.yaml +0 -38
- package/semgrep-rules/kotlin/lang/security/gcm-detection.kt +0 -74
- package/semgrep-rules/kotlin/lang/security/gcm-detection.yaml +0 -33
- package/semgrep-rules/kotlin/lang/security/no-null-cipher.kt +0 -18
- package/semgrep-rules/kotlin/lang/security/no-null-cipher.yaml +0 -32
- package/semgrep-rules/kotlin/lang/security/unencrypted-socket.kt +0 -74
- package/semgrep-rules/kotlin/lang/security/unencrypted-socket.yaml +0 -32
- package/semgrep-rules/kotlin/lang/security/use-of-md5.kt +0 -28
- package/semgrep-rules/kotlin/lang/security/use-of-md5.yaml +0 -29
- package/semgrep-rules/kotlin/lang/security/use-of-sha1.kt +0 -24
- package/semgrep-rules/kotlin/lang/security/use-of-sha1.yaml +0 -39
- package/semgrep-rules/kotlin/lang/security/weak-rsa.kt +0 -16
- package/semgrep-rules/kotlin/lang/security/weak-rsa.yaml +0 -36
- package/semgrep-rules/libsonnet/metadata/cwe.libsonnet +0 -4905
- package/semgrep-rules/metadata-schema.yaml.schm +0 -93
- package/semgrep-rules/ocaml/lang/best-practice/bool.ml +0 -14
- package/semgrep-rules/ocaml/lang/best-practice/bool.yaml +0 -25
- package/semgrep-rules/ocaml/lang/best-practice/exception.ml +0 -29
- package/semgrep-rules/ocaml/lang/best-practice/exception.yaml +0 -33
- package/semgrep-rules/ocaml/lang/best-practice/hashtbl.ml +0 -20
- package/semgrep-rules/ocaml/lang/best-practice/hashtbl.yaml +0 -22
- package/semgrep-rules/ocaml/lang/best-practice/ifs.ml +0 -11
- package/semgrep-rules/ocaml/lang/best-practice/ifs.yaml +0 -19
- package/semgrep-rules/ocaml/lang/best-practice/list.ml +0 -13
- package/semgrep-rules/ocaml/lang/best-practice/list.yaml +0 -14
- package/semgrep-rules/ocaml/lang/best-practice/ref.ml +0 -6
- package/semgrep-rules/ocaml/lang/best-practice/ref.yaml +0 -25
- package/semgrep-rules/ocaml/lang/best-practice/string.ml +0 -20
- package/semgrep-rules/ocaml/lang/best-practice/string.yaml +0 -39
- package/semgrep-rules/ocaml/lang/compatibility/deprecated.ml +0 -4
- package/semgrep-rules/ocaml/lang/compatibility/deprecated.yaml +0 -10
- package/semgrep-rules/ocaml/lang/correctness/physical-vs-structural.ml +0 -11
- package/semgrep-rules/ocaml/lang/correctness/physical-vs-structural.yaml +0 -23
- package/semgrep-rules/ocaml/lang/correctness/useless-compare.ml +0 -14
- package/semgrep-rules/ocaml/lang/correctness/useless-compare.yaml +0 -17
- package/semgrep-rules/ocaml/lang/correctness/useless-eq.ml +0 -5
- package/semgrep-rules/ocaml/lang/correctness/useless-eq.yaml +0 -10
- package/semgrep-rules/ocaml/lang/correctness/useless-if.ml +0 -5
- package/semgrep-rules/ocaml/lang/correctness/useless-if.yaml +0 -10
- package/semgrep-rules/ocaml/lang/correctness/useless-let.ml +0 -4
- package/semgrep-rules/ocaml/lang/correctness/useless-let.yaml +0 -10
- package/semgrep-rules/ocaml/lang/performance/list.ml +0 -11
- package/semgrep-rules/ocaml/lang/performance/list.yaml +0 -19
- package/semgrep-rules/ocaml/lang/portability/crlf-support.ml +0 -34
- package/semgrep-rules/ocaml/lang/portability/crlf-support.yaml +0 -49
- package/semgrep-rules/ocaml/lang/portability/slash-tmp.ml +0 -4
- package/semgrep-rules/ocaml/lang/portability/slash-tmp.yaml +0 -11
- package/semgrep-rules/ocaml/lang/security/digest.ml +0 -3
- package/semgrep-rules/ocaml/lang/security/digest.yaml +0 -25
- package/semgrep-rules/ocaml/lang/security/exec.ml +0 -12
- package/semgrep-rules/ocaml/lang/security/exec.yaml +0 -29
- package/semgrep-rules/ocaml/lang/security/filenameconcat.ml +0 -3
- package/semgrep-rules/ocaml/lang/security/filenameconcat.yaml +0 -18
- package/semgrep-rules/ocaml/lang/security/hashtable-dos.ml +0 -8
- package/semgrep-rules/ocaml/lang/security/hashtable-dos.yaml +0 -20
- package/semgrep-rules/ocaml/lang/security/marshal.ml +0 -3
- package/semgrep-rules/ocaml/lang/security/marshal.yaml +0 -22
- package/semgrep-rules/ocaml/lang/security/tempfile.ml +0 -3
- package/semgrep-rules/ocaml/lang/security/tempfile.yaml +0 -18
- package/semgrep-rules/ocaml/lang/security/unsafe.ml +0 -3
- package/semgrep-rules/ocaml/lang/security/unsafe.yaml +0 -49
- package/semgrep-rules/php/doctrine/security/audit/doctrine-dbal-dangerous-query.php +0 -49
- package/semgrep-rules/php/doctrine/security/audit/doctrine-dbal-dangerous-query.yaml +0 -42
- package/semgrep-rules/php/doctrine/security/audit/doctrine-orm-dangerous-query.php +0 -40
- package/semgrep-rules/php/doctrine/security/audit/doctrine-orm-dangerous-query.yaml +0 -70
- package/semgrep-rules/php/lang/correctness/empty-with-boolean-expression.php +0 -15
- package/semgrep-rules/php/lang/correctness/empty-with-boolean-expression.yaml +0 -16
- package/semgrep-rules/php/lang/security/assert-use.php +0 -23
- package/semgrep-rules/php/lang/security/assert-use.yaml +0 -41
- package/semgrep-rules/php/lang/security/audit/assert-use-audit.php +0 -43
- package/semgrep-rules/php/lang/security/audit/assert-use-audit.yaml +0 -29
- package/semgrep-rules/php/lang/security/audit/openssl-decrypt-validate.php +0 -70
- package/semgrep-rules/php/lang/security/audit/openssl-decrypt-validate.yaml +0 -74
- package/semgrep-rules/php/lang/security/audit/sha224-hash.php +0 -22
- package/semgrep-rules/php/lang/security/audit/sha224-hash.yaml +0 -32
- package/semgrep-rules/php/lang/security/backticks-use.php +0 -4
- package/semgrep-rules/php/lang/security/backticks-use.yaml +0 -24
- package/semgrep-rules/php/lang/security/base-convert-loses-precision.php +0 -80
- package/semgrep-rules/php/lang/security/base-convert-loses-precision.yaml +0 -50
- package/semgrep-rules/php/lang/security/curl-ssl-verifypeer-off.php +0 -12
- package/semgrep-rules/php/lang/security/curl-ssl-verifypeer-off.yaml +0 -33
- package/semgrep-rules/php/lang/security/deserialization.php +0 -26
- package/semgrep-rules/php/lang/security/deserialization.yaml +0 -35
- package/semgrep-rules/php/lang/security/eval-use.php +0 -7
- package/semgrep-rules/php/lang/security/eval-use.yaml +0 -28
- package/semgrep-rules/php/lang/security/exec-use.php +0 -25
- package/semgrep-rules/php/lang/security/exec-use.yaml +0 -28
- package/semgrep-rules/php/lang/security/file-inclusion.php +0 -46
- package/semgrep-rules/php/lang/security/file-inclusion.yaml +0 -51
- package/semgrep-rules/php/lang/security/ftp-use.php +0 -10
- package/semgrep-rules/php/lang/security/ftp-use.yaml +0 -28
- package/semgrep-rules/php/lang/security/injection/echoed-request.php +0 -113
- package/semgrep-rules/php/lang/security/injection/echoed-request.yaml +0 -62
- package/semgrep-rules/php/lang/security/injection/printed-request.php +0 -112
- package/semgrep-rules/php/lang/security/injection/printed-request.yaml +0 -62
- package/semgrep-rules/php/lang/security/injection/tainted-callable.php +0 -12
- package/semgrep-rules/php/lang/security/injection/tainted-callable.yaml +0 -115
- package/semgrep-rules/php/lang/security/injection/tainted-exec.php +0 -21
- package/semgrep-rules/php/lang/security/injection/tainted-exec.yaml +0 -51
- package/semgrep-rules/php/lang/security/injection/tainted-filename.php +0 -20
- package/semgrep-rules/php/lang/security/injection/tainted-filename.yaml +0 -175
- package/semgrep-rules/php/lang/security/injection/tainted-object-instantiation.php +0 -14
- package/semgrep-rules/php/lang/security/injection/tainted-object-instantiation.yaml +0 -36
- package/semgrep-rules/php/lang/security/injection/tainted-session.php +0 -27
- package/semgrep-rules/php/lang/security/injection/tainted-session.yaml +0 -75
- package/semgrep-rules/php/lang/security/injection/tainted-sql-string.php +0 -85
- package/semgrep-rules/php/lang/security/injection/tainted-sql-string.yaml +0 -61
- package/semgrep-rules/php/lang/security/injection/tainted-url-host.php +0 -73
- package/semgrep-rules/php/lang/security/injection/tainted-url-host.yaml +0 -64
- package/semgrep-rules/php/lang/security/ldap-bind-without-password.php +0 -36
- package/semgrep-rules/php/lang/security/ldap-bind-without-password.yaml +0 -33
- package/semgrep-rules/php/lang/security/mb-ereg-replace-eval.php +0 -10
- package/semgrep-rules/php/lang/security/mb-ereg-replace-eval.yaml +0 -28
- package/semgrep-rules/php/lang/security/mcrypt-use.php +0 -16
- package/semgrep-rules/php/lang/security/mcrypt-use.yaml +0 -26
- package/semgrep-rules/php/lang/security/md5-loose-equality.php +0 -25
- package/semgrep-rules/php/lang/security/md5-loose-equality.yaml +0 -48
- package/semgrep-rules/php/lang/security/md5-used-as-password.php +0 -19
- package/semgrep-rules/php/lang/security/md5-used-as-password.yaml +0 -41
- package/semgrep-rules/php/lang/security/openssl-cbc-static-iv.php +0 -62
- package/semgrep-rules/php/lang/security/openssl-cbc-static-iv.yaml +0 -30
- package/semgrep-rules/php/lang/security/php-permissive-cors.php +0 -17
- package/semgrep-rules/php/lang/security/php-permissive-cors.yaml +0 -32
- package/semgrep-rules/php/lang/security/php-ssrf.php +0 -60
- package/semgrep-rules/php/lang/security/php-ssrf.yaml +0 -49
- package/semgrep-rules/php/lang/security/phpinfo-use.php +0 -4
- package/semgrep-rules/php/lang/security/phpinfo-use.yaml +0 -24
- package/semgrep-rules/php/lang/security/redirect-to-request-uri.php +0 -34
- package/semgrep-rules/php/lang/security/redirect-to-request-uri.yaml +0 -35
- package/semgrep-rules/php/lang/security/tainted-exec.php +0 -38
- package/semgrep-rules/php/lang/security/tainted-exec.yaml +0 -41
- package/semgrep-rules/php/lang/security/unlink-use.php +0 -8
- package/semgrep-rules/php/lang/security/unlink-use.yaml +0 -30
- package/semgrep-rules/php/lang/security/unserialize-use.php +0 -8
- package/semgrep-rules/php/lang/security/unserialize-use.yaml +0 -30
- package/semgrep-rules/php/lang/security/weak-crypto.php +0 -31
- package/semgrep-rules/php/lang/security/weak-crypto.yaml +0 -33
- package/semgrep-rules/php/laravel/security/laravel-active-debug-code.php +0 -23
- package/semgrep-rules/php/laravel/security/laravel-active-debug-code.yaml +0 -35
- package/semgrep-rules/php/laravel/security/laravel-api-route-sql-injection.php +0 -26
- package/semgrep-rules/php/laravel/security/laravel-api-route-sql-injection.yaml +0 -40
- package/semgrep-rules/php/laravel/security/laravel-blade-form-missing-csrf.blade.php +0 -189
- package/semgrep-rules/php/laravel/security/laravel-blade-form-missing-csrf.yaml +0 -67
- package/semgrep-rules/php/laravel/security/laravel-cookie-http-only.session.php +0 -788
- package/semgrep-rules/php/laravel/security/laravel-cookie-http-only.yaml +0 -50
- package/semgrep-rules/php/laravel/security/laravel-cookie-long-timeout.session.php +0 -591
- package/semgrep-rules/php/laravel/security/laravel-cookie-long-timeout.yaml +0 -44
- package/semgrep-rules/php/laravel/security/laravel-cookie-null-domain.session.php +0 -787
- package/semgrep-rules/php/laravel/security/laravel-cookie-null-domain.yaml +0 -50
- package/semgrep-rules/php/laravel/security/laravel-cookie-same-site.session.php +0 -982
- package/semgrep-rules/php/laravel/security/laravel-cookie-same-site.yaml +0 -55
- package/semgrep-rules/php/laravel/security/laravel-cookie-secure-set.session.php +0 -788
- package/semgrep-rules/php/laravel/security/laravel-cookie-secure-set.yaml +0 -50
- package/semgrep-rules/php/laravel/security/laravel-dangerous-model-construction.php +0 -23
- package/semgrep-rules/php/laravel/security/laravel-dangerous-model-construction.yaml +0 -32
- package/semgrep-rules/php/laravel/security/laravel-sql-injection.php +0 -37
- package/semgrep-rules/php/laravel/security/laravel-sql-injection.yaml +0 -131
- package/semgrep-rules/php/laravel/security/laravel-unsafe-validator.php +0 -171
- package/semgrep-rules/php/laravel/security/laravel-unsafe-validator.yaml +0 -64
- package/semgrep-rules/php/symfony/security/audit/symfony-csrf-protection-disabled.php +0 -110
- package/semgrep-rules/php/symfony/security/audit/symfony-csrf-protection-disabled.yaml +0 -39
- package/semgrep-rules/php/symfony/security/audit/symfony-non-literal-redirect.php +0 -39
- package/semgrep-rules/php/symfony/security/audit/symfony-non-literal-redirect.yaml +0 -29
- package/semgrep-rules/php/symfony/security/audit/symfony-permissive-cors.php +0 -46
- package/semgrep-rules/php/symfony/security/audit/symfony-permissive-cors.yaml +0 -45
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-ajax-no-auth-and-auth-hooks-audit.php +0 -14
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-ajax-no-auth-and-auth-hooks-audit.yaml +0 -33
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-authorisation-checks-audit.php +0 -20
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-authorisation-checks-audit.yaml +0 -31
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-code-execution-audit.php +0 -13
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-code-execution-audit.yaml +0 -32
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-command-execution-audit.php +0 -14
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-command-execution-audit.yaml +0 -33
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-csrf-audit.php +0 -13
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-csrf-audit.yaml +0 -28
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-file-download-audit.php +0 -16
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-file-download-audit.yaml +0 -32
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-file-inclusion-audit.php +0 -25
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-file-inclusion-audit.yaml +0 -37
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-file-manipulation-audit.php +0 -13
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-file-manipulation-audit.yaml +0 -33
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-open-redirect-audit.php +0 -14
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-open-redirect-audit.yaml +0 -29
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-php-object-injection-audit.php +0 -18
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-php-object-injection-audit.yaml +0 -32
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-sql-injection-audit.php +0 -14
- package/semgrep-rules/php/wordpress-plugins/security/audit/wp-sql-injection-audit.yaml +0 -42
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/bypass-tls-verification.go +0 -124
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/bypass-tls-verification.yaml +0 -28
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/disallow-old-tls-versions.go +0 -127
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/disallow-old-tls-versions.yaml +0 -32
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/ftp-request.go +0 -68
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/ftp-request.yaml +0 -47
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/gorequest-http-request.go +0 -44
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/gorequest-http-request.yaml +0 -37
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/grequests-http-request.go +0 -41
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/grequests-http-request.yaml +0 -31
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/http-customized-request.go +0 -9
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/http-customized-request.yaml +0 -31
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/http-request.go +0 -54
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/http-request.yaml +0 -45
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/sling-http-request.go +0 -72
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/sling-http-request.yaml +0 -60
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/telnet-request.go +0 -15
- package/semgrep-rules/problem-based-packs/insecure-transport/go-stdlib/telnet-request.yaml +0 -24
- package/semgrep-rules/problem-based-packs/insecure-transport/java-spring/bypass-tls-verification.java +0 -50
- package/semgrep-rules/problem-based-packs/insecure-transport/java-spring/bypass-tls-verification.yaml +0 -47
- package/semgrep-rules/problem-based-packs/insecure-transport/java-spring/spring-ftp-request.java +0 -81
- package/semgrep-rules/problem-based-packs/insecure-transport/java-spring/spring-ftp-request.yaml +0 -42
- package/semgrep-rules/problem-based-packs/insecure-transport/java-spring/spring-http-request.java +0 -143
- package/semgrep-rules/problem-based-packs/insecure-transport/java-spring/spring-http-request.yaml +0 -50
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/bypass-tls-verification.java +0 -54
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/bypass-tls-verification.yaml +0 -51
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/disallow-old-tls-versions1.java +0 -69
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/disallow-old-tls-versions1.yaml +0 -49
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/disallow-old-tls-versions2.java +0 -21
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/disallow-old-tls-versions2.yaml +0 -33
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/ftp-request.java +0 -27
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/ftp-request.yaml +0 -36
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/http-components-request.java +0 -43
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/http-components-request.yaml +0 -39
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/httpclient-http-request.java +0 -185
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/httpclient-http-request.yaml +0 -69
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/httpget-http-request.java +0 -37
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/httpget-http-request.yaml +0 -36
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/httpurlconnection-http-request.java +0 -75
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/httpurlconnection-http-request.yaml +0 -45
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/socket-request.java +0 -165
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/socket-request.yaml +0 -41
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/telnet-request.java +0 -14
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/telnet-request.yaml +0 -26
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/tls-renegotiation.java +0 -13
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/tls-renegotiation.yaml +0 -26
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/unirest-http-request.java +0 -39
- package/semgrep-rules/problem-based-packs/insecure-transport/java-stdlib/unirest-http-request.yaml +0 -33
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/bypass-tls-verification.js +0 -73
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/bypass-tls-verification.yaml +0 -33
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/disallow-old-tls-versions1.js +0 -63
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/disallow-old-tls-versions1.yaml +0 -51
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/disallow-old-tls-versions2.js +0 -87
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/disallow-old-tls-versions2.yaml +0 -65
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/ftp-request.js +0 -55
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/ftp-request.yaml +0 -39
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/http-request.js +0 -78
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/http-request.yaml +0 -48
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/rest-http-client-support.js +0 -181
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/rest-http-client-support.yaml +0 -45
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/telnet-request.js +0 -107
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/telnet-request.yaml +0 -41
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/using-http-server.js +0 -31
- package/semgrep-rules/problem-based-packs/insecure-transport/js-node/using-http-server.yaml +0 -38
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/http-client-requests.rb +0 -58
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/http-client-requests.yaml +0 -35
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/net-ftp-request.rb +0 -19
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/net-ftp-request.yaml +0 -32
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/net-http-request.rb +0 -81
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/net-http-request.yaml +0 -38
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/net-telnet-request.rb +0 -38
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/net-telnet-request.yaml +0 -30
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/openuri-request.rb +0 -71
- package/semgrep-rules/problem-based-packs/insecure-transport/ruby-stdlib/openuri-request.yaml +0 -34
- package/semgrep-rules/python/airflow/security/audit/formatted-string-bashoperator.py +0 -98
- package/semgrep-rules/python/airflow/security/audit/formatted-string-bashoperator.yaml +0 -58
- package/semgrep-rules/python/attr/correctness/mutable-initializer.py +0 -62
- package/semgrep-rules/python/attr/correctness/mutable-initializer.yaml +0 -36
- package/semgrep-rules/python/aws-lambda/security/dangerous-asyncio-create-exec.py +0 -32
- package/semgrep-rules/python/aws-lambda/security/dangerous-asyncio-create-exec.yaml +0 -58
- package/semgrep-rules/python/aws-lambda/security/dangerous-asyncio-exec.py +0 -43
- package/semgrep-rules/python/aws-lambda/security/dangerous-asyncio-exec.yaml +0 -53
- package/semgrep-rules/python/aws-lambda/security/dangerous-asyncio-shell.py +0 -42
- package/semgrep-rules/python/aws-lambda/security/dangerous-asyncio-shell.yaml +0 -50
- package/semgrep-rules/python/aws-lambda/security/dangerous-spawn-process.py +0 -37
- package/semgrep-rules/python/aws-lambda/security/dangerous-spawn-process.yaml +0 -66
- package/semgrep-rules/python/aws-lambda/security/dangerous-subprocess-use.py +0 -48
- package/semgrep-rules/python/aws-lambda/security/dangerous-subprocess-use.yaml +0 -51
- package/semgrep-rules/python/aws-lambda/security/dangerous-system-call.py +0 -11
- package/semgrep-rules/python/aws-lambda/security/dangerous-system-call.yaml +0 -51
- package/semgrep-rules/python/aws-lambda/security/dynamodb-filter-injection.py +0 -31
- package/semgrep-rules/python/aws-lambda/security/dynamodb-filter-injection.yaml +0 -56
- package/semgrep-rules/python/aws-lambda/security/mysql-sqli.py +0 -27
- package/semgrep-rules/python/aws-lambda/security/mysql-sqli.yaml +0 -52
- package/semgrep-rules/python/aws-lambda/security/psycopg-sqli.py +0 -50
- package/semgrep-rules/python/aws-lambda/security/psycopg-sqli.yaml +0 -51
- package/semgrep-rules/python/aws-lambda/security/pymssql-sqli.py +0 -34
- package/semgrep-rules/python/aws-lambda/security/pymssql-sqli.yaml +0 -45
- package/semgrep-rules/python/aws-lambda/security/pymysql-sqli.py +0 -79
- package/semgrep-rules/python/aws-lambda/security/pymysql-sqli.yaml +0 -49
- package/semgrep-rules/python/aws-lambda/security/sqlalchemy-sqli.py +0 -65
- package/semgrep-rules/python/aws-lambda/security/sqlalchemy-sqli.yaml +0 -45
- package/semgrep-rules/python/aws-lambda/security/tainted-code-exec.py +0 -22
- package/semgrep-rules/python/aws-lambda/security/tainted-code-exec.yaml +0 -42
- package/semgrep-rules/python/aws-lambda/security/tainted-html-response.py +0 -18
- package/semgrep-rules/python/aws-lambda/security/tainted-html-response.yaml +0 -40
- package/semgrep-rules/python/aws-lambda/security/tainted-html-string.py +0 -30
- package/semgrep-rules/python/aws-lambda/security/tainted-html-string.yaml +0 -61
- package/semgrep-rules/python/aws-lambda/security/tainted-pickle-deserialization.py +0 -31
- package/semgrep-rules/python/aws-lambda/security/tainted-pickle-deserialization.yaml +0 -50
- package/semgrep-rules/python/aws-lambda/security/tainted-sql-string.py +0 -38
- package/semgrep-rules/python/aws-lambda/security/tainted-sql-string.yaml +0 -53
- package/semgrep-rules/python/bokeh/maintainability/deprecated/deprecated_apis.py +0 -8
- package/semgrep-rules/python/bokeh/maintainability/deprecated/deprecated_apis.yaml +0 -15
- package/semgrep-rules/python/boto3/security/hardcoded-token.py +0 -86
- package/semgrep-rules/python/boto3/security/hardcoded-token.yaml +0 -52
- package/semgrep-rules/python/click/best-practice/echo-style.py +0 -12
- package/semgrep-rules/python/click/best-practice/echo-style.yaml +0 -10
- package/semgrep-rules/python/correctness/check-is-none-explicitly.py +0 -19
- package/semgrep-rules/python/correctness/check-is-none-explicitly.yaml +0 -19
- package/semgrep-rules/python/correctness/socket-shutdown-close.py +0 -107
- package/semgrep-rules/python/correctness/socket-shutdown-close.yaml +0 -32
- package/semgrep-rules/python/correctness/suppressed-exception-handling-finally-break.py +0 -74
- package/semgrep-rules/python/correctness/suppressed-exception-handling-finally-break.yaml +0 -46
- package/semgrep-rules/python/cryptography/security/empty-aes-key.py +0 -11
- package/semgrep-rules/python/cryptography/security/empty-aes-key.yaml +0 -32
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms-arc4.fixed.py +0 -17
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms-arc4.py +0 -17
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms-arc4.yaml +0 -40
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms-blowfish.fixed.py +0 -18
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms-blowfish.py +0 -18
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms-blowfish.yaml +0 -39
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms.fixed.py +0 -17
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms.py +0 -17
- package/semgrep-rules/python/cryptography/security/insecure-cipher-algorithms.yaml +0 -41
- package/semgrep-rules/python/cryptography/security/insecure-cipher-mode-ecb.fixed.py +0 -17
- package/semgrep-rules/python/cryptography/security/insecure-cipher-mode-ecb.py +0 -17
- package/semgrep-rules/python/cryptography/security/insecure-cipher-mode-ecb.yaml +0 -33
- package/semgrep-rules/python/cryptography/security/insecure-hash-algorithms-md5.fixed.py +0 -10
- package/semgrep-rules/python/cryptography/security/insecure-hash-algorithms-md5.py +0 -10
- package/semgrep-rules/python/cryptography/security/insecure-hash-algorithms-md5.yaml +0 -40
- package/semgrep-rules/python/cryptography/security/insecure-hash-algorithms.fixed.py +0 -10
- package/semgrep-rules/python/cryptography/security/insecure-hash-algorithms.py +0 -10
- package/semgrep-rules/python/cryptography/security/insecure-hash-algorithms.yaml +0 -42
- package/semgrep-rules/python/cryptography/security/insufficient-dsa-key-size.fixed.py +0 -18
- package/semgrep-rules/python/cryptography/security/insufficient-dsa-key-size.py +0 -18
- package/semgrep-rules/python/cryptography/security/insufficient-dsa-key-size.yaml +0 -39
- package/semgrep-rules/python/cryptography/security/insufficient-ec-key-size.fixed.py +0 -23
- package/semgrep-rules/python/cryptography/security/insufficient-ec-key-size.py +0 -23
- package/semgrep-rules/python/cryptography/security/insufficient-ec-key-size.yaml +0 -39
- package/semgrep-rules/python/cryptography/security/insufficient-rsa-key-size.fixed.py +0 -33
- package/semgrep-rules/python/cryptography/security/insufficient-rsa-key-size.py +0 -33
- package/semgrep-rules/python/cryptography/security/insufficient-rsa-key-size.yaml +0 -38
- package/semgrep-rules/python/cryptography/security/mode-without-authentication.py +0 -29
- package/semgrep-rules/python/cryptography/security/mode-without-authentication.yaml +0 -46
- package/semgrep-rules/python/distributed/security.fixed.py +0 -100
- package/semgrep-rules/python/distributed/security.py +0 -100
- package/semgrep-rules/python/distributed/security.yaml +0 -34
- package/semgrep-rules/python/django/best-practice/json_response.py +0 -12
- package/semgrep-rules/python/django/best-practice/json_response.yaml +0 -17
- package/semgrep-rules/python/django/best-practice/upsell_django_environ.py +0 -24
- package/semgrep-rules/python/django/best-practice/upsell_django_environ.yaml +0 -26
- package/semgrep-rules/python/django/best-practice/use-onetoonefield.py +0 -31
- package/semgrep-rules/python/django/best-practice/use-onetoonefield.yaml +0 -16
- package/semgrep-rules/python/django/compatibility/django-2_0-compat.py +0 -56
- package/semgrep-rules/python/django/compatibility/django-2_0-compat.yaml +0 -58
- package/semgrep-rules/python/django/correctness/model-save.py +0 -36
- package/semgrep-rules/python/django/correctness/model-save.yaml +0 -24
- package/semgrep-rules/python/django/correctness/nontext-field-must-set-null-true.py +0 -57
- package/semgrep-rules/python/django/correctness/nontext-field-must-set-null-true.yaml +0 -31
- package/semgrep-rules/python/django/correctness/string-field-null-checks-import.py +0 -38
- package/semgrep-rules/python/django/correctness/string-field-null-checks.py +0 -38
- package/semgrep-rules/python/django/correctness/string-field-null-checks.yaml +0 -41
- package/semgrep-rules/python/django/correctness/use-decimalfield-for-money.py +0 -34
- package/semgrep-rules/python/django/correctness/use-decimalfield-for-money.yaml +0 -17
- package/semgrep-rules/python/django/maintainability/duplicate-path-assignment.py +0 -140
- package/semgrep-rules/python/django/maintainability/duplicate-path-assignment.yaml +0 -71
- package/semgrep-rules/python/django/performance/access-foreign-keys.py +0 -19
- package/semgrep-rules/python/django/performance/access-foreign-keys.yaml +0 -22
- package/semgrep-rules/python/django/performance/upsell-count.py +0 -6
- package/semgrep-rules/python/django/performance/upsell-count.yaml +0 -15
- package/semgrep-rules/python/django/performance/upsell_earliest_latest.py +0 -18
- package/semgrep-rules/python/django/performance/upsell_earliest_latest.yaml +0 -15
- package/semgrep-rules/python/django/security/audit/avoid-insecure-deserialization.py +0 -82
- package/semgrep-rules/python/django/security/audit/avoid-insecure-deserialization.yaml +0 -65
- package/semgrep-rules/python/django/security/audit/avoid-mark-safe.py +0 -41
- package/semgrep-rules/python/django/security/audit/avoid-mark-safe.yaml +0 -33
- package/semgrep-rules/python/django/security/audit/csrf-exempt.py +0 -14
- package/semgrep-rules/python/django/security/audit/csrf-exempt.yaml +0 -28
- package/semgrep-rules/python/django/security/audit/custom-expression-as-sql.py +0 -64
- package/semgrep-rules/python/django/security/audit/custom-expression-as-sql.yaml +0 -28
- package/semgrep-rules/python/django/security/audit/django-rest-framework/missing-throttle-config.py +0 -18
- package/semgrep-rules/python/django/security/audit/django-rest-framework/missing-throttle-config.yaml +0 -36
- package/semgrep-rules/python/django/security/audit/extends-custom-expression.py +0 -135
- package/semgrep-rules/python/django/security/audit/extends-custom-expression.yaml +0 -144
- package/semgrep-rules/python/django/security/audit/query-set-extra.py +0 -47
- package/semgrep-rules/python/django/security/audit/query-set-extra.yaml +0 -33
- package/semgrep-rules/python/django/security/audit/raw-query.py +0 -15
- package/semgrep-rules/python/django/security/audit/raw-query.yaml +0 -34
- package/semgrep-rules/python/django/security/audit/secure-cookies.py +0 -57
- package/semgrep-rules/python/django/security/audit/secure-cookies.yaml +0 -58
- package/semgrep-rules/python/django/security/audit/templates/debug-template-tag.html +0 -10
- package/semgrep-rules/python/django/security/audit/templates/debug-template-tag.yaml +0 -30
- package/semgrep-rules/python/django/security/audit/unvalidated-password.fixed.py +0 -65
- package/semgrep-rules/python/django/security/audit/unvalidated-password.py +0 -64
- package/semgrep-rules/python/django/security/audit/unvalidated-password.yaml +0 -53
- package/semgrep-rules/python/django/security/audit/xss/class-extends-safestring.py +0 -21
- package/semgrep-rules/python/django/security/audit/xss/class-extends-safestring.yaml +0 -40
- package/semgrep-rules/python/django/security/audit/xss/context-autoescape-off.fixed.py +0 -36
- package/semgrep-rules/python/django/security/audit/xss/context-autoescape-off.py +0 -36
- package/semgrep-rules/python/django/security/audit/xss/context-autoescape-off.yaml +0 -42
- package/semgrep-rules/python/django/security/audit/xss/direct-use-of-httpresponse.py +0 -59
- package/semgrep-rules/python/django/security/audit/xss/direct-use-of-httpresponse.yaml +0 -58
- package/semgrep-rules/python/django/security/audit/xss/filter-with-is-safe.py +0 -263
- package/semgrep-rules/python/django/security/audit/xss/filter-with-is-safe.yaml +0 -37
- package/semgrep-rules/python/django/security/audit/xss/formathtml-fstring-parameter.py +0 -40
- package/semgrep-rules/python/django/security/audit/xss/formathtml-fstring-parameter.yaml +0 -34
- package/semgrep-rules/python/django/security/audit/xss/global-autoescape-off.fixed.py +0 -160
- package/semgrep-rules/python/django/security/audit/xss/global-autoescape-off.py +0 -160
- package/semgrep-rules/python/django/security/audit/xss/global-autoescape-off.yaml +0 -39
- package/semgrep-rules/python/django/security/audit/xss/html-magic-method.py +0 -19
- package/semgrep-rules/python/django/security/audit/xss/html-magic-method.yaml +0 -38
- package/semgrep-rules/python/django/security/audit/xss/html-safe.py +0 -20
- package/semgrep-rules/python/django/security/audit/xss/html-safe.yaml +0 -38
- package/semgrep-rules/python/django/security/audit/xss/template-autoescape-off.html +0 -17
- package/semgrep-rules/python/django/security/audit/xss/template-autoescape-off.yaml +0 -32
- package/semgrep-rules/python/django/security/audit/xss/template-blocktranslate-no-escape.html +0 -18
- package/semgrep-rules/python/django/security/audit/xss/template-blocktranslate-no-escape.yaml +0 -46
- package/semgrep-rules/python/django/security/audit/xss/template-translate-as-no-escape.html +0 -21
- package/semgrep-rules/python/django/security/audit/xss/template-translate-as-no-escape.yaml +0 -129
- package/semgrep-rules/python/django/security/audit/xss/template-var-unescaped-with-safeseq.html +0 -22
- package/semgrep-rules/python/django/security/audit/xss/template-var-unescaped-with-safeseq.yaml +0 -33
- package/semgrep-rules/python/django/security/django-no-csrf-token.html +0 -99
- package/semgrep-rules/python/django/security/django-no-csrf-token.yaml +0 -34
- package/semgrep-rules/python/django/security/django-using-request-post-after-is-valid.py +0 -36
- package/semgrep-rules/python/django/security/django-using-request-post-after-is-valid.yaml +0 -27
- package/semgrep-rules/python/django/security/globals-as-template-context.py +0 -43
- package/semgrep-rules/python/django/security/globals-as-template-context.yaml +0 -39
- package/semgrep-rules/python/django/security/hashids-with-django-secret.py +0 -63
- package/semgrep-rules/python/django/security/hashids-with-django-secret.yaml +0 -28
- package/semgrep-rules/python/django/security/injection/README.md +0 -11
- package/semgrep-rules/python/django/security/injection/code/globals-misuse-code-execution.py +0 -13
- package/semgrep-rules/python/django/security/injection/code/globals-misuse-code-execution.yaml +0 -220
- package/semgrep-rules/python/django/security/injection/code/user-eval-format-string.py +0 -74
- package/semgrep-rules/python/django/security/injection/code/user-eval-format-string.yaml +0 -124
- package/semgrep-rules/python/django/security/injection/code/user-eval.py +0 -22
- package/semgrep-rules/python/django/security/injection/code/user-eval.yaml +0 -45
- package/semgrep-rules/python/django/security/injection/code/user-exec-format-string.py +0 -74
- package/semgrep-rules/python/django/security/injection/code/user-exec-format-string.yaml +0 -214
- package/semgrep-rules/python/django/security/injection/code/user-exec.py +0 -45
- package/semgrep-rules/python/django/security/injection/code/user-exec.yaml +0 -64
- package/semgrep-rules/python/django/security/injection/command/command-injection-os-system.py +0 -21
- package/semgrep-rules/python/django/security/injection/command/command-injection-os-system.yaml +0 -278
- package/semgrep-rules/python/django/security/injection/command/subprocess-injection.py +0 -83
- package/semgrep-rules/python/django/security/injection/command/subprocess-injection.yaml +0 -69
- package/semgrep-rules/python/django/security/injection/csv-writer-injection.py +0 -27
- package/semgrep-rules/python/django/security/injection/csv-writer-injection.yaml +0 -54
- package/semgrep-rules/python/django/security/injection/email/xss-html-email-body.py +0 -79
- package/semgrep-rules/python/django/security/injection/email/xss-html-email-body.yaml +0 -202
- package/semgrep-rules/python/django/security/injection/email/xss-send-mail-html-message.py +0 -54
- package/semgrep-rules/python/django/security/injection/email/xss-send-mail-html-message.yaml +0 -240
- package/semgrep-rules/python/django/security/injection/mass-assignment.py +0 -24
- package/semgrep-rules/python/django/security/injection/mass-assignment.yaml +0 -31
- package/semgrep-rules/python/django/security/injection/open-redirect.py +0 -70
- package/semgrep-rules/python/django/security/injection/open-redirect.yaml +0 -549
- package/semgrep-rules/python/django/security/injection/path-traversal/path-traversal-file-name.py +0 -62
- package/semgrep-rules/python/django/security/injection/path-traversal/path-traversal-file-name.yaml +0 -78
- package/semgrep-rules/python/django/security/injection/path-traversal/path-traversal-join.py +0 -28
- package/semgrep-rules/python/django/security/injection/path-traversal/path-traversal-join.yaml +0 -101
- package/semgrep-rules/python/django/security/injection/path-traversal/path-traversal-open.py +0 -84
- package/semgrep-rules/python/django/security/injection/path-traversal/path-traversal-open.yaml +0 -440
- package/semgrep-rules/python/django/security/injection/raw-html-format.py +0 -122
- package/semgrep-rules/python/django/security/injection/raw-html-format.yaml +0 -57
- package/semgrep-rules/python/django/security/injection/reflected-data-httpresponse.py +0 -40
- package/semgrep-rules/python/django/security/injection/reflected-data-httpresponse.yaml +0 -260
- package/semgrep-rules/python/django/security/injection/reflected-data-httpresponsebadrequest.py +0 -38
- package/semgrep-rules/python/django/security/injection/reflected-data-httpresponsebadrequest.yaml +0 -254
- package/semgrep-rules/python/django/security/injection/request-data-fileresponse.py +0 -14
- package/semgrep-rules/python/django/security/injection/request-data-fileresponse.yaml +0 -83
- package/semgrep-rules/python/django/security/injection/request-data-write.py +0 -25
- package/semgrep-rules/python/django/security/injection/request-data-write.yaml +0 -198
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-extra.py +0 -44
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-extra.yaml +0 -294
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-rawsql.py +0 -46
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-rawsql.yaml +0 -294
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-using-db-cursor-execute.py +0 -69
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-using-db-cursor-execute.yaml +0 -295
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-using-raw.py +0 -57
- package/semgrep-rules/python/django/security/injection/sql/sql-injection-using-raw.yaml +0 -295
- package/semgrep-rules/python/django/security/injection/ssrf/ssrf-injection-requests.py +0 -59
- package/semgrep-rules/python/django/security/injection/ssrf/ssrf-injection-requests.yaml +0 -258
- package/semgrep-rules/python/django/security/injection/ssrf/ssrf-injection-urllib.py +0 -19
- package/semgrep-rules/python/django/security/injection/ssrf/ssrf-injection-urllib.yaml +0 -256
- package/semgrep-rules/python/django/security/injection/tainted-sql-string.py +0 -134
- package/semgrep-rules/python/django/security/injection/tainted-sql-string.yaml +0 -46
- package/semgrep-rules/python/django/security/injection/tainted-url-host.py +0 -83
- package/semgrep-rules/python/django/security/injection/tainted-url-host.yaml +0 -69
- package/semgrep-rules/python/django/security/locals-as-template-context.py +0 -43
- package/semgrep-rules/python/django/security/locals-as-template-context.yaml +0 -39
- package/semgrep-rules/python/django/security/nan-injection.py +0 -76
- package/semgrep-rules/python/django/security/nan-injection.yaml +0 -45
- package/semgrep-rules/python/django/security/passwords/password-empty-string.py +0 -36
- package/semgrep-rules/python/django/security/passwords/password-empty-string.yaml +0 -38
- package/semgrep-rules/python/django/security/passwords/use-none-for-password-default.fixed.py +0 -85
- package/semgrep-rules/python/django/security/passwords/use-none-for-password-default.py +0 -85
- package/semgrep-rules/python/django/security/passwords/use-none-for-password-default.yaml +0 -41
- package/semgrep-rules/python/django/sensitive-variables.py +0 -7
- package/semgrep-rules/python/docker/security/audit/docker-arbitrary-container-run.py +0 -18
- package/semgrep-rules/python/docker/security/audit/docker-arbitrary-container-run.yaml +0 -38
- package/semgrep-rules/python/fastapi/security/wildcard-cors.py +0 -46
- package/semgrep-rules/python/fastapi/security/wildcard-cors.yaml +0 -37
- package/semgrep-rules/python/flask/best-practice/get-class-method-with-side-effects.py +0 -23
- package/semgrep-rules/python/flask/best-practice/get-class-method-with-side-effects.yaml +0 -23
- package/semgrep-rules/python/flask/best-practice/use-jsonify.fixed.py +0 -25
- package/semgrep-rules/python/flask/best-practice/use-jsonify.py +0 -25
- package/semgrep-rules/python/flask/best-practice/use-jsonify.yaml +0 -32
- package/semgrep-rules/python/flask/caching/query-string.py +0 -74
- package/semgrep-rules/python/flask/caching/query-string.yaml +0 -45
- package/semgrep-rules/python/flask/correctness/access-request-in-wrong-handler.py +0 -22
- package/semgrep-rules/python/flask/correctness/access-request-in-wrong-handler.yaml +0 -21
- package/semgrep-rules/python/flask/correctness/same-handler-name.py +0 -17
- package/semgrep-rules/python/flask/correctness/same-handler-name.yaml +0 -19
- package/semgrep-rules/python/flask/maintainability/deprecated/deprecated-apis.py +0 -47
- package/semgrep-rules/python/flask/maintainability/deprecated/deprecated-apis.yaml +0 -44
- package/semgrep-rules/python/flask/security/audit/app-run-param-config.py +0 -8
- package/semgrep-rules/python/flask/security/audit/app-run-param-config.yaml +0 -23
- package/semgrep-rules/python/flask/security/audit/app-run-security-config.py +0 -15
- package/semgrep-rules/python/flask/security/audit/app-run-security-config.yaml +0 -29
- package/semgrep-rules/python/flask/security/audit/debug-enabled.py +0 -19
- package/semgrep-rules/python/flask/security/audit/debug-enabled.yaml +0 -28
- package/semgrep-rules/python/flask/security/audit/directly-returned-format-string.py +0 -125
- package/semgrep-rules/python/flask/security/audit/directly-returned-format-string.yaml +0 -72
- package/semgrep-rules/python/flask/security/audit/flask-cors-misconfiguration.py +0 -39
- package/semgrep-rules/python/flask/security/audit/flask-cors-misconfiguration.yaml +0 -38
- package/semgrep-rules/python/flask/security/audit/hardcoded-config.py +0 -43
- package/semgrep-rules/python/flask/security/audit/hardcoded-config.yaml +0 -101
- package/semgrep-rules/python/flask/security/audit/host-header-injection-python.py +0 -24
- package/semgrep-rules/python/flask/security/audit/host-header-injection-python.yaml +0 -45
- package/semgrep-rules/python/flask/security/audit/render-template-string.py +0 -21
- package/semgrep-rules/python/flask/security/audit/render-template-string.yaml +0 -22
- package/semgrep-rules/python/flask/security/audit/secure-set-cookie.py +0 -89
- package/semgrep-rules/python/flask/security/audit/secure-set-cookie.yaml +0 -42
- package/semgrep-rules/python/flask/security/audit/wtf-csrf-disabled.fixed.py +0 -75
- package/semgrep-rules/python/flask/security/audit/wtf-csrf-disabled.py +0 -75
- package/semgrep-rules/python/flask/security/audit/wtf-csrf-disabled.yaml +0 -74
- package/semgrep-rules/python/flask/security/audit/xss/make-response-with-unknown-content.py +0 -84
- package/semgrep-rules/python/flask/security/audit/xss/make-response-with-unknown-content.yaml +0 -53
- package/semgrep-rules/python/flask/security/dangerous-template-string.py +0 -60
- package/semgrep-rules/python/flask/security/dangerous-template-string.yaml +0 -61
- package/semgrep-rules/python/flask/security/flask-api-method-string-format.py +0 -22
- package/semgrep-rules/python/flask/security/flask-api-method-string-format.yaml +0 -36
- package/semgrep-rules/python/flask/security/hashids-with-flask-secret.py +0 -20
- package/semgrep-rules/python/flask/security/hashids-with-flask-secret.yaml +0 -35
- package/semgrep-rules/python/flask/security/injection/csv-writer-injection.py +0 -29
- package/semgrep-rules/python/flask/security/injection/csv-writer-injection.yaml +0 -72
- package/semgrep-rules/python/flask/security/injection/nan-injection.py +0 -95
- package/semgrep-rules/python/flask/security/injection/nan-injection.yaml +0 -42
- package/semgrep-rules/python/flask/security/injection/os-system-injection.py +0 -130
- package/semgrep-rules/python/flask/security/injection/os-system-injection.yaml +0 -71
- package/semgrep-rules/python/flask/security/injection/path-traversal-open.py +0 -102
- package/semgrep-rules/python/flask/security/injection/path-traversal-open.yaml +0 -105
- package/semgrep-rules/python/flask/security/injection/raw-html-concat.py +0 -92
- package/semgrep-rules/python/flask/security/injection/raw-html-concat.yaml +0 -71
- package/semgrep-rules/python/flask/security/injection/ssrf-requests.py +0 -92
- package/semgrep-rules/python/flask/security/injection/ssrf-requests.yaml +0 -75
- package/semgrep-rules/python/flask/security/injection/subprocess-injection.py +0 -94
- package/semgrep-rules/python/flask/security/injection/subprocess-injection.yaml +0 -86
- package/semgrep-rules/python/flask/security/injection/tainted-sql-string.py +0 -102
- package/semgrep-rules/python/flask/security/injection/tainted-sql-string.yaml +0 -56
- package/semgrep-rules/python/flask/security/injection/tainted-url-host.py +0 -160
- package/semgrep-rules/python/flask/security/injection/tainted-url-host.yaml +0 -77
- package/semgrep-rules/python/flask/security/injection/user-eval.py +0 -68
- package/semgrep-rules/python/flask/security/injection/user-eval.yaml +0 -65
- package/semgrep-rules/python/flask/security/injection/user-exec.py +0 -68
- package/semgrep-rules/python/flask/security/injection/user-exec.yaml +0 -65
- package/semgrep-rules/python/flask/security/insecure-deserialization.py +0 -39
- package/semgrep-rules/python/flask/security/insecure-deserialization.yaml +0 -42
- package/semgrep-rules/python/flask/security/open-redirect.py +0 -71
- package/semgrep-rules/python/flask/security/open-redirect.yaml +0 -63
- package/semgrep-rules/python/flask/security/secure-static-file-serve.py +0 -12
- package/semgrep-rules/python/flask/security/secure-static-file-serve.yaml +0 -28
- package/semgrep-rules/python/flask/security/unescaped-template-extension.py +0 -114
- package/semgrep-rules/python/flask/security/unescaped-template-extension.yaml +0 -54
- package/semgrep-rules/python/flask/security/unsanitized-input.py +0 -26
- package/semgrep-rules/python/flask/security/unsanitized-input.yaml +0 -46
- package/semgrep-rules/python/flask/security/xss/audit/direct-use-of-jinja2.py +0 -24
- package/semgrep-rules/python/flask/security/xss/audit/direct-use-of-jinja2.yaml +0 -42
- package/semgrep-rules/python/flask/security/xss/audit/explicit-unescape-with-markup.py +0 -42
- package/semgrep-rules/python/flask/security/xss/audit/explicit-unescape-with-markup.yaml +0 -39
- package/semgrep-rules/python/flask/security/xss/audit/template-autoescape-off.html +0 -32
- package/semgrep-rules/python/flask/security/xss/audit/template-autoescape-off.yaml +0 -33
- package/semgrep-rules/python/flask/security/xss/audit/template-unescaped-with-safe.html +0 -39
- package/semgrep-rules/python/flask/security/xss/audit/template-unescaped-with-safe.yaml +0 -32
- package/semgrep-rules/python/flask/security/xss/audit/template-unquoted-attribute-var.fixed.html +0 -14
- package/semgrep-rules/python/flask/security/xss/audit/template-unquoted-attribute-var.fixed.py +0 -32
- package/semgrep-rules/python/flask/security/xss/audit/template-unquoted-attribute-var.html +0 -14
- package/semgrep-rules/python/flask/security/xss/audit/template-unquoted-attribute-var.py +0 -32
- package/semgrep-rules/python/flask/security/xss/audit/template-unquoted-attribute-var.yaml +0 -53
- package/semgrep-rules/python/jinja2/security/audit/autoescape-disabled-false.fixed.py +0 -41
- package/semgrep-rules/python/jinja2/security/audit/autoescape-disabled-false.py +0 -41
- package/semgrep-rules/python/jinja2/security/audit/autoescape-disabled-false.yaml +0 -33
- package/semgrep-rules/python/jinja2/security/audit/missing-autoescape-disabled.fixed.py +0 -46
- package/semgrep-rules/python/jinja2/security/audit/missing-autoescape-disabled.py +0 -46
- package/semgrep-rules/python/jinja2/security/audit/missing-autoescape-disabled.yaml +0 -32
- package/semgrep-rules/python/jwt/security/audit/jwt-exposed-data.py +0 -11
- package/semgrep-rules/python/jwt/security/audit/jwt-exposed-data.yaml +0 -31
- package/semgrep-rules/python/jwt/security/jwt-exposed-credentials.py +0 -24
- package/semgrep-rules/python/jwt/security/jwt-exposed-credentials.yaml +0 -33
- package/semgrep-rules/python/jwt/security/jwt-hardcode.py +0 -32
- package/semgrep-rules/python/jwt/security/jwt-hardcode.yaml +0 -32
- package/semgrep-rules/python/jwt/security/jwt-none-alg.py +0 -16
- package/semgrep-rules/python/jwt/security/jwt-none-alg.yaml +0 -32
- package/semgrep-rules/python/jwt/security/unverified-jwt-decode.fixed.py +0 -33
- package/semgrep-rules/python/jwt/security/unverified-jwt-decode.py +0 -33
- package/semgrep-rules/python/jwt/security/unverified-jwt-decode.yaml +0 -49
- package/semgrep-rules/python/lang/best-practice/hardcoded-tmp-path.py +0 -33
- package/semgrep-rules/python/lang/best-practice/hardcoded-tmp-path.yaml +0 -14
- package/semgrep-rules/python/lang/best-practice/logging-error-without-handling.py +0 -105
- package/semgrep-rules/python/lang/best-practice/logging-error-without-handling.yaml +0 -33
- package/semgrep-rules/python/lang/best-practice/manual-collections-create.py +0 -61
- package/semgrep-rules/python/lang/best-practice/manual-collections-create.yaml +0 -94
- package/semgrep-rules/python/lang/best-practice/missing-hash-with-eq.py +0 -14
- package/semgrep-rules/python/lang/best-practice/missing-hash-with-eq.yaml +0 -23
- package/semgrep-rules/python/lang/best-practice/open-never-closed.py +0 -18
- package/semgrep-rules/python/lang/best-practice/open-never-closed.yaml +0 -95
- package/semgrep-rules/python/lang/best-practice/pass-body.py +0 -27
- package/semgrep-rules/python/lang/best-practice/pass-body.yaml +0 -30
- package/semgrep-rules/python/lang/best-practice/pdb.py +0 -10
- package/semgrep-rules/python/lang/best-practice/pdb.yaml +0 -13
- package/semgrep-rules/python/lang/best-practice/sleep.py +0 -22
- package/semgrep-rules/python/lang/best-practice/sleep.yaml +0 -16
- package/semgrep-rules/python/lang/best-practice/unspecified-open-encoding.py +0 -77
- package/semgrep-rules/python/lang/best-practice/unspecified-open-encoding.yaml +0 -36
- package/semgrep-rules/python/lang/compatibility/python36.py +0 -11
- package/semgrep-rules/python/lang/compatibility/python36.yaml +0 -28
- package/semgrep-rules/python/lang/compatibility/python37.py +0 -60
- package/semgrep-rules/python/lang/compatibility/python37.yaml +0 -192
- package/semgrep-rules/python/lang/correctness/baseclass-attribute-override.py +0 -25
- package/semgrep-rules/python/lang/correctness/baseclass-attribute-override.yaml +0 -34
- package/semgrep-rules/python/lang/correctness/cannot-cache-generators.py +0 -36
- package/semgrep-rules/python/lang/correctness/cannot-cache-generators.yaml +0 -17
- package/semgrep-rules/python/lang/correctness/common-mistakes/default-mutable-dict.py +0 -394
- package/semgrep-rules/python/lang/correctness/common-mistakes/default-mutable-dict.yaml +0 -64
- package/semgrep-rules/python/lang/correctness/common-mistakes/default-mutable-list.py +0 -393
- package/semgrep-rules/python/lang/correctness/common-mistakes/default-mutable-list.yaml +0 -66
- package/semgrep-rules/python/lang/correctness/common-mistakes/is-comparison-string.py +0 -33
- package/semgrep-rules/python/lang/correctness/common-mistakes/is-comparison-string.yaml +0 -32
- package/semgrep-rules/python/lang/correctness/common-mistakes/is-not-is-not.py +0 -13
- package/semgrep-rules/python/lang/correctness/common-mistakes/is-not-is-not.yaml +0 -12
- package/semgrep-rules/python/lang/correctness/common-mistakes/string-concat-in-list.py +0 -71
- package/semgrep-rules/python/lang/correctness/common-mistakes/string-concat-in-list.yaml +0 -20
- package/semgrep-rules/python/lang/correctness/concurrent.py +0 -16
- package/semgrep-rules/python/lang/correctness/concurrent.yaml +0 -33
- package/semgrep-rules/python/lang/correctness/dict-modify-iterating.py +0 -19
- package/semgrep-rules/python/lang/correctness/dict-modify-iterating.yaml +0 -22
- package/semgrep-rules/python/lang/correctness/exceptions/exceptions.py +0 -24
- package/semgrep-rules/python/lang/correctness/exceptions/exceptions.yaml +0 -21
- package/semgrep-rules/python/lang/correctness/exit.fixed.py +0 -24
- package/semgrep-rules/python/lang/correctness/exit.py +0 -24
- package/semgrep-rules/python/lang/correctness/exit.yaml +0 -19
- package/semgrep-rules/python/lang/correctness/file-object-redefined-before-close.py +0 -17
- package/semgrep-rules/python/lang/correctness/file-object-redefined-before-close.yaml +0 -22
- package/semgrep-rules/python/lang/correctness/list-modify-iterating.py +0 -37
- package/semgrep-rules/python/lang/correctness/list-modify-iterating.yaml +0 -34
- package/semgrep-rules/python/lang/correctness/pdb.py +0 -16
- package/semgrep-rules/python/lang/correctness/pdb.yaml +0 -14
- package/semgrep-rules/python/lang/correctness/pytest-assert_match-after-path-patch.py +0 -20
- package/semgrep-rules/python/lang/correctness/pytest-assert_match-after-path-patch.yaml +0 -26
- package/semgrep-rules/python/lang/correctness/return-in-init.py +0 -115
- package/semgrep-rules/python/lang/correctness/return-in-init.yaml +0 -48
- package/semgrep-rules/python/lang/correctness/sync-sleep-in-async-code.py +0 -28
- package/semgrep-rules/python/lang/correctness/sync-sleep-in-async-code.yaml +0 -18
- package/semgrep-rules/python/lang/correctness/tempfile/flush.py +0 -93
- package/semgrep-rules/python/lang/correctness/tempfile/flush.yaml +0 -79
- package/semgrep-rules/python/lang/correctness/tempfile/mktemp.py +0 -6
- package/semgrep-rules/python/lang/correctness/tempfile/mktemp.yaml +0 -13
- package/semgrep-rules/python/lang/correctness/test-is-missing-assert.py +0 -44
- package/semgrep-rules/python/lang/correctness/test-is-missing-assert.yaml +0 -41
- package/semgrep-rules/python/lang/correctness/unchecked-returns.fixed.py +0 -31
- package/semgrep-rules/python/lang/correctness/unchecked-returns.py +0 -31
- package/semgrep-rules/python/lang/correctness/unchecked-returns.yaml +0 -23
- package/semgrep-rules/python/lang/correctness/useless-comparison.py +0 -25
- package/semgrep-rules/python/lang/correctness/useless-comparison.yaml +0 -28
- package/semgrep-rules/python/lang/correctness/useless-eqeq.py +0 -31
- package/semgrep-rules/python/lang/correctness/useless-eqeq.yaml +0 -27
- package/semgrep-rules/python/lang/correctness/writing-to-file-in-read-mode.py +0 -17
- package/semgrep-rules/python/lang/correctness/writing-to-file-in-read-mode.yaml +0 -27
- package/semgrep-rules/python/lang/maintainability/improper-list-concat.py +0 -10
- package/semgrep-rules/python/lang/maintainability/improper-list-concat.yaml +0 -18
- package/semgrep-rules/python/lang/maintainability/is-function-without-parentheses.py +0 -16
- package/semgrep-rules/python/lang/maintainability/is-function-without-parentheses.yaml +0 -18
- package/semgrep-rules/python/lang/maintainability/return.py +0 -36
- package/semgrep-rules/python/lang/maintainability/return.yaml +0 -29
- package/semgrep-rules/python/lang/maintainability/useless-assign-keyed.py +0 -23
- package/semgrep-rules/python/lang/maintainability/useless-assign-keyed.yaml +0 -16
- package/semgrep-rules/python/lang/maintainability/useless-assign.notyaml +0 -15
- package/semgrep-rules/python/lang/maintainability/useless-assign.py +0 -32
- package/semgrep-rules/python/lang/maintainability/useless-ifelse.py +0 -39
- package/semgrep-rules/python/lang/maintainability/useless-ifelse.yaml +0 -31
- package/semgrep-rules/python/lang/maintainability/useless-innerfunction.py +0 -69
- package/semgrep-rules/python/lang/maintainability/useless-innerfunction.yaml +0 -36
- package/semgrep-rules/python/lang/maintainability/useless-literal-set.py +0 -5
- package/semgrep-rules/python/lang/maintainability/useless-literal-set.yaml +0 -15
- package/semgrep-rules/python/lang/maintainability/useless-literal.py +0 -24
- package/semgrep-rules/python/lang/maintainability/useless-literal.yaml +0 -18
- package/semgrep-rules/python/lang/security/audit/conn_recv.py +0 -16
- package/semgrep-rules/python/lang/security/audit/conn_recv.yaml +0 -34
- package/semgrep-rules/python/lang/security/audit/dangerous-annotations-usage.py +0 -19
- package/semgrep-rules/python/lang/security/audit/dangerous-annotations-usage.yaml +0 -33
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-create-exec-audit.py +0 -32
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-create-exec-audit.yaml +0 -61
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-create-exec-tainted-env-args.py +0 -42
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-create-exec-tainted-env-args.yaml +0 -109
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-exec-audit.py +0 -42
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-exec-audit.yaml +0 -47
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-exec-tainted-env-args.py +0 -55
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-exec-tainted-env-args.yaml +0 -94
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-shell-audit.py +0 -47
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-shell-audit.yaml +0 -47
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-shell-tainted-env-args.py +0 -74
- package/semgrep-rules/python/lang/security/audit/dangerous-asyncio-shell-tainted-env-args.yaml +0 -95
- package/semgrep-rules/python/lang/security/audit/dangerous-code-run-audit.py +0 -39
- package/semgrep-rules/python/lang/security/audit/dangerous-code-run-audit.yaml +0 -54
- package/semgrep-rules/python/lang/security/audit/dangerous-code-run-tainted-env-args.py +0 -55
- package/semgrep-rules/python/lang/security/audit/dangerous-code-run-tainted-env-args.yaml +0 -104
- package/semgrep-rules/python/lang/security/audit/dangerous-os-exec-audit.py +0 -18
- package/semgrep-rules/python/lang/security/audit/dangerous-os-exec-audit.yaml +0 -56
- package/semgrep-rules/python/lang/security/audit/dangerous-os-exec-tainted-env-args.py +0 -28
- package/semgrep-rules/python/lang/security/audit/dangerous-os-exec-tainted-env-args.yaml +0 -108
- package/semgrep-rules/python/lang/security/audit/dangerous-spawn-process-audit.py +0 -40
- package/semgrep-rules/python/lang/security/audit/dangerous-spawn-process-audit.yaml +0 -57
- package/semgrep-rules/python/lang/security/audit/dangerous-spawn-process-tainted-env-args.py +0 -72
- package/semgrep-rules/python/lang/security/audit/dangerous-spawn-process-tainted-env-args.yaml +0 -111
- package/semgrep-rules/python/lang/security/audit/dangerous-subinterpreters-run-string-audit.py +0 -9
- package/semgrep-rules/python/lang/security/audit/dangerous-subinterpreters-run-string-audit.yaml +0 -31
- package/semgrep-rules/python/lang/security/audit/dangerous-subinterpreters-run-string-tainted-env-args.py +0 -18
- package/semgrep-rules/python/lang/security/audit/dangerous-subinterpreters-run-string-tainted-env-args.yaml +0 -80
- package/semgrep-rules/python/lang/security/audit/dangerous-subprocess-use-audit.py +0 -63
- package/semgrep-rules/python/lang/security/audit/dangerous-subprocess-use-audit.yaml +0 -74
- package/semgrep-rules/python/lang/security/audit/dangerous-subprocess-use-tainted-env-args.py +0 -83
- package/semgrep-rules/python/lang/security/audit/dangerous-subprocess-use-tainted-env-args.yaml +0 -114
- package/semgrep-rules/python/lang/security/audit/dangerous-system-call-audit.py +0 -44
- package/semgrep-rules/python/lang/security/audit/dangerous-system-call-audit.yaml +0 -62
- package/semgrep-rules/python/lang/security/audit/dangerous-system-call-tainted-env-args.py +0 -156
- package/semgrep-rules/python/lang/security/audit/dangerous-system-call-tainted-env-args.yaml +0 -109
- package/semgrep-rules/python/lang/security/audit/dangerous-testcapi-run-in-subinterp-audit.py +0 -14
- package/semgrep-rules/python/lang/security/audit/dangerous-testcapi-run-in-subinterp-audit.yaml +0 -35
- package/semgrep-rules/python/lang/security/audit/dangerous-testcapi-run-in-subinterp-tainted-env-args.py +0 -30
- package/semgrep-rules/python/lang/security/audit/dangerous-testcapi-run-in-subinterp-tainted-env-args.yaml +0 -84
- package/semgrep-rules/python/lang/security/audit/dynamic-urllib-use-detected.py +0 -63
- package/semgrep-rules/python/lang/security/audit/dynamic-urllib-use-detected.yaml +0 -57
- package/semgrep-rules/python/lang/security/audit/eval-detected.py +0 -44
- package/semgrep-rules/python/lang/security/audit/eval-detected.yaml +0 -34
- package/semgrep-rules/python/lang/security/audit/exec-detected.py +0 -19
- package/semgrep-rules/python/lang/security/audit/exec-detected.yaml +0 -33
- package/semgrep-rules/python/lang/security/audit/formatted-sql-query.py +0 -55
- package/semgrep-rules/python/lang/security/audit/formatted-sql-query.yaml +0 -41
- package/semgrep-rules/python/lang/security/audit/hardcoded-password-default-argument.py +0 -24
- package/semgrep-rules/python/lang/security/audit/hardcoded-password-default-argument.yaml +0 -32
- package/semgrep-rules/python/lang/security/audit/httpsconnection-detected.py +0 -16
- package/semgrep-rules/python/lang/security/audit/httpsconnection-detected.yaml +0 -32
- package/semgrep-rules/python/lang/security/audit/insecure-file-permissions.py +0 -78
- package/semgrep-rules/python/lang/security/audit/insecure-file-permissions.yaml +0 -62
- package/semgrep-rules/python/lang/security/audit/insecure-transport/ftplib/use-ftp-tls.py +0 -10
- package/semgrep-rules/python/lang/security/audit/insecure-transport/ftplib/use-ftp-tls.yaml +0 -39
- package/semgrep-rules/python/lang/security/audit/insecure-transport/requests/request-session-http-in-with-context.py +0 -41
- package/semgrep-rules/python/lang/security/audit/insecure-transport/requests/request-session-http-in-with-context.yaml +0 -57
- package/semgrep-rules/python/lang/security/audit/insecure-transport/requests/request-session-with-http.py +0 -53
- package/semgrep-rules/python/lang/security/audit/insecure-transport/requests/request-session-with-http.yaml +0 -55
- package/semgrep-rules/python/lang/security/audit/insecure-transport/requests/request-with-http.py +0 -47
- package/semgrep-rules/python/lang/security/audit/insecure-transport/requests/request-with-http.yaml +0 -56
- package/semgrep-rules/python/lang/security/audit/insecure-transport/ssl/no-set-ciphers.py +0 -11
- package/semgrep-rules/python/lang/security/audit/insecure-transport/ssl/no-set-ciphers.yaml +0 -31
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-openerdirector-open-ftp.py +0 -61
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-openerdirector-open-ftp.yaml +0 -55
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-openerdirector-open.py +0 -61
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-openerdirector-open.yaml +0 -57
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-request-object-ftp.py +0 -28
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-request-object-ftp.yaml +0 -35
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-request-object.py +0 -28
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-request-object.yaml +0 -38
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopen-ftp.py +0 -28
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopen-ftp.yaml +0 -34
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopen.py +0 -28
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopen.yaml +0 -36
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-open-ftp.py +0 -61
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-open-ftp.yaml +0 -54
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-open.py +0 -61
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-open.yaml +0 -57
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-retrieve-ftp.py +0 -61
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-retrieve-ftp.yaml +0 -54
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-retrieve.py +0 -61
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlopener-retrieve.yaml +0 -57
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlretrieve-ftp.py +0 -28
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlretrieve-ftp.yaml +0 -34
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlretrieve.py +0 -28
- package/semgrep-rules/python/lang/security/audit/insecure-transport/urllib/insecure-urlretrieve.yaml +0 -36
- package/semgrep-rules/python/lang/security/audit/logging/listeneval.py +0 -8
- package/semgrep-rules/python/lang/security/audit/logging/listeneval.yaml +0 -30
- package/semgrep-rules/python/lang/security/audit/logging/logger-credential-leak.py +0 -24
- package/semgrep-rules/python/lang/security/audit/logging/logger-credential-leak.yaml +0 -36
- package/semgrep-rules/python/lang/security/audit/mako-templates-detected.py +0 -15
- package/semgrep-rules/python/lang/security/audit/mako-templates-detected.yaml +0 -31
- package/semgrep-rules/python/lang/security/audit/marshal.py +0 -10
- package/semgrep-rules/python/lang/security/audit/marshal.yaml +0 -33
- package/semgrep-rules/python/lang/security/audit/md5-used-as-password.py +0 -45
- package/semgrep-rules/python/lang/security/audit/md5-used-as-password.yaml +0 -47
- package/semgrep-rules/python/lang/security/audit/network/bind.py +0 -21
- package/semgrep-rules/python/lang/security/audit/network/bind.yaml +0 -38
- package/semgrep-rules/python/lang/security/audit/network/disabled-cert-validation.py +0 -60
- package/semgrep-rules/python/lang/security/audit/network/disabled-cert-validation.yaml +0 -34
- package/semgrep-rules/python/lang/security/audit/network/http-not-https-connection.py +0 -7
- package/semgrep-rules/python/lang/security/audit/network/http-not-https-connection.yaml +0 -27
- package/semgrep-rules/python/lang/security/audit/non-literal-import.py +0 -29
- package/semgrep-rules/python/lang/security/audit/non-literal-import.yaml +0 -29
- package/semgrep-rules/python/lang/security/audit/paramiko/paramiko-exec-command.py +0 -23
- package/semgrep-rules/python/lang/security/audit/paramiko/paramiko-exec-command.yaml +0 -35
- package/semgrep-rules/python/lang/security/audit/paramiko-implicit-trust-host-key.py +0 -9
- package/semgrep-rules/python/lang/security/audit/paramiko-implicit-trust-host-key.yaml +0 -33
- package/semgrep-rules/python/lang/security/audit/python-reverse-shell.py +0 -8
- package/semgrep-rules/python/lang/security/audit/python-reverse-shell.yaml +0 -32
- package/semgrep-rules/python/lang/security/audit/regex-dos.py +0 -37
- package/semgrep-rules/python/lang/security/audit/regex-dos.yaml +0 -34
- package/semgrep-rules/python/lang/security/audit/sha224-hash.py +0 -10
- package/semgrep-rules/python/lang/security/audit/sha224-hash.yaml +0 -29
- package/semgrep-rules/python/lang/security/audit/sqli/aiopg-sqli.py +0 -177
- package/semgrep-rules/python/lang/security/audit/sqli/aiopg-sqli.yaml +0 -102
- package/semgrep-rules/python/lang/security/audit/sqli/asyncpg-sqli.py +0 -132
- package/semgrep-rules/python/lang/security/audit/sqli/asyncpg-sqli.yaml +0 -95
- package/semgrep-rules/python/lang/security/audit/sqli/pg8000-sqli.py +0 -119
- package/semgrep-rules/python/lang/security/audit/sqli/pg8000-sqli.yaml +0 -89
- package/semgrep-rules/python/lang/security/audit/sqli/psycopg-sqli.py +0 -144
- package/semgrep-rules/python/lang/security/audit/sqli/psycopg-sqli.yaml +0 -85
- package/semgrep-rules/python/lang/security/audit/ssl-wrap-socket-is-deprecated.py +0 -22
- package/semgrep-rules/python/lang/security/audit/ssl-wrap-socket-is-deprecated.yaml +0 -26
- package/semgrep-rules/python/lang/security/audit/subprocess-shell-true.fixed.py +0 -20
- package/semgrep-rules/python/lang/security/audit/subprocess-shell-true.py +0 -20
- package/semgrep-rules/python/lang/security/audit/subprocess-shell-true.yaml +0 -41
- package/semgrep-rules/python/lang/security/audit/system-wildcard-detected.py +0 -27
- package/semgrep-rules/python/lang/security/audit/system-wildcard-detected.yaml +0 -37
- package/semgrep-rules/python/lang/security/audit/telnetlib.py +0 -22
- package/semgrep-rules/python/lang/security/audit/telnetlib.yaml +0 -26
- package/semgrep-rules/python/lang/security/audit/weak-ssl-version.py +0 -57
- package/semgrep-rules/python/lang/security/audit/weak-ssl-version.yaml +0 -42
- package/semgrep-rules/python/lang/security/dangerous-code-run.py +0 -26
- package/semgrep-rules/python/lang/security/dangerous-code-run.yaml +0 -155
- package/semgrep-rules/python/lang/security/dangerous-globals-use.py +0 -71
- package/semgrep-rules/python/lang/security/dangerous-globals-use.yaml +0 -53
- package/semgrep-rules/python/lang/security/dangerous-os-exec.py +0 -23
- package/semgrep-rules/python/lang/security/dangerous-os-exec.yaml +0 -159
- package/semgrep-rules/python/lang/security/dangerous-spawn-process.py +0 -72
- package/semgrep-rules/python/lang/security/dangerous-spawn-process.yaml +0 -205
- package/semgrep-rules/python/lang/security/dangerous-subinterpreters-run-string.py +0 -25
- package/semgrep-rules/python/lang/security/dangerous-subinterpreters-run-string.yaml +0 -131
- package/semgrep-rules/python/lang/security/dangerous-subprocess-use.py +0 -40
- package/semgrep-rules/python/lang/security/dangerous-subprocess-use.yaml +0 -163
- package/semgrep-rules/python/lang/security/dangerous-system-call.py +0 -202
- package/semgrep-rules/python/lang/security/dangerous-system-call.yaml +0 -163
- package/semgrep-rules/python/lang/security/dangerous-testcapi-run-in-subinterp.py +0 -25
- package/semgrep-rules/python/lang/security/dangerous-testcapi-run-in-subinterp.yaml +0 -135
- package/semgrep-rules/python/lang/security/deserialization/avoid-jsonpickle.py +0 -9
- package/semgrep-rules/python/lang/security/deserialization/avoid-jsonpickle.yaml +0 -32
- package/semgrep-rules/python/lang/security/deserialization/avoid-pyyaml-load.py +0 -65
- package/semgrep-rules/python/lang/security/deserialization/avoid-pyyaml-load.yaml +0 -49
- package/semgrep-rules/python/lang/security/deserialization/avoid-unsafe-ruamel.py +0 -16
- package/semgrep-rules/python/lang/security/deserialization/avoid-unsafe-ruamel.yaml +0 -31
- package/semgrep-rules/python/lang/security/deserialization/pickle.py +0 -62
- package/semgrep-rules/python/lang/security/deserialization/pickle.yaml +0 -124
- package/semgrep-rules/python/lang/security/insecure-hash-algorithms-md5.py +0 -23
- package/semgrep-rules/python/lang/security/insecure-hash-algorithms-md5.yaml +0 -38
- package/semgrep-rules/python/lang/security/insecure-hash-algorithms.py +0 -10
- package/semgrep-rules/python/lang/security/insecure-hash-algorithms.yaml +0 -39
- package/semgrep-rules/python/lang/security/insecure-hash-function.py +0 -24
- package/semgrep-rules/python/lang/security/insecure-hash-function.yaml +0 -35
- package/semgrep-rules/python/lang/security/insecure-uuid-version.py +0 -19
- package/semgrep-rules/python/lang/security/insecure-uuid-version.yaml +0 -33
- package/semgrep-rules/python/lang/security/unverified-ssl-context.py +0 -17
- package/semgrep-rules/python/lang/security/unverified-ssl-context.yaml +0 -33
- package/semgrep-rules/python/lang/security/use-defused-xml-parse.fixed.py +0 -21
- package/semgrep-rules/python/lang/security/use-defused-xml-parse.py +0 -21
- package/semgrep-rules/python/lang/security/use-defused-xml-parse.yaml +0 -33
- package/semgrep-rules/python/lang/security/use-defused-xml.py +0 -15
- package/semgrep-rules/python/lang/security/use-defused-xml.yaml +0 -29
- package/semgrep-rules/python/lang/security/use-defused-xmlrpc.py +0 -9
- package/semgrep-rules/python/lang/security/use-defused-xmlrpc.yaml +0 -30
- package/semgrep-rules/python/lang/security/use-defusedcsv.py +0 -15
- package/semgrep-rules/python/lang/security/use-defusedcsv.yaml +0 -36
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-blowfish.py +0 -44
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-blowfish.yaml +0 -37
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-des.py +0 -44
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-des.yaml +0 -39
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-rc2.py +0 -37
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-rc2.yaml +0 -37
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-rc4.py +0 -36
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm-rc4.yaml +0 -35
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm.py +0 -35
- package/semgrep-rules/python/pycryptodome/security/insecure-cipher-algorithm.yaml +0 -29
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm-md2.py +0 -24
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm-md2.yaml +0 -39
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm-md4.py +0 -26
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm-md4.yaml +0 -39
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm-md5.py +0 -25
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm-md5.yaml +0 -39
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm.py +0 -24
- package/semgrep-rules/python/pycryptodome/security/insecure-hash-algorithm.yaml +0 -32
- package/semgrep-rules/python/pycryptodome/security/insufficient-dsa-key-size.py +0 -28
- package/semgrep-rules/python/pycryptodome/security/insufficient-dsa-key-size.yaml +0 -39
- package/semgrep-rules/python/pycryptodome/security/insufficient-rsa-key-size.py +0 -33
- package/semgrep-rules/python/pycryptodome/security/insufficient-rsa-key-size.yaml +0 -39
- package/semgrep-rules/python/pycryptodome/security/mode-without-authentication.py +0 -29
- package/semgrep-rules/python/pycryptodome/security/mode-without-authentication.yaml +0 -43
- package/semgrep-rules/python/pymongo/security/mongodb.py +0 -17
- package/semgrep-rules/python/pymongo/security/mongodb.yaml +0 -26
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-httponly-unsafe-default.fixed.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-httponly-unsafe-default.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-httponly-unsafe-default.yaml +0 -36
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-httponly-unsafe-value.fixed.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-httponly-unsafe-value.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-httponly-unsafe-value.yaml +0 -39
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-samesite.fixed.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-samesite.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-samesite.yaml +0 -34
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-secure-unsafe-default.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-secure-unsafe-default.yaml +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-secure-unsafe-value.fixed.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-secure-unsafe-value.py +0 -37
- package/semgrep-rules/python/pyramid/audit/authtkt-cookie-secure-unsafe-value.yaml +0 -39
- package/semgrep-rules/python/pyramid/audit/csrf-check-disabled.fixed.py +0 -31
- package/semgrep-rules/python/pyramid/audit/csrf-check-disabled.py +0 -31
- package/semgrep-rules/python/pyramid/audit/csrf-check-disabled.yaml +0 -41
- package/semgrep-rules/python/pyramid/audit/csrf-origin-check-disabled-globally.fixed.py +0 -13
- package/semgrep-rules/python/pyramid/audit/csrf-origin-check-disabled-globally.py +0 -13
- package/semgrep-rules/python/pyramid/audit/csrf-origin-check-disabled-globally.yaml +0 -36
- package/semgrep-rules/python/pyramid/audit/csrf-origin-check-disabled.fixed.py +0 -31
- package/semgrep-rules/python/pyramid/audit/csrf-origin-check-disabled.py +0 -31
- package/semgrep-rules/python/pyramid/audit/csrf-origin-check-disabled.yaml +0 -43
- package/semgrep-rules/python/pyramid/audit/set-cookie-httponly-unsafe-default.py +0 -50
- package/semgrep-rules/python/pyramid/audit/set-cookie-httponly-unsafe-default.yaml +0 -43
- package/semgrep-rules/python/pyramid/audit/set-cookie-httponly-unsafe-value.fixed.py +0 -51
- package/semgrep-rules/python/pyramid/audit/set-cookie-httponly-unsafe-value.py +0 -51
- package/semgrep-rules/python/pyramid/audit/set-cookie-httponly-unsafe-value.yaml +0 -48
- package/semgrep-rules/python/pyramid/audit/set-cookie-samesite-unsafe-default.py +0 -48
- package/semgrep-rules/python/pyramid/audit/set-cookie-samesite-unsafe-default.yaml +0 -43
- package/semgrep-rules/python/pyramid/audit/set-cookie-samesite-unsafe-value.fixed.py +0 -49
- package/semgrep-rules/python/pyramid/audit/set-cookie-samesite-unsafe-value.py +0 -49
- package/semgrep-rules/python/pyramid/audit/set-cookie-samesite-unsafe-value.yaml +0 -45
- package/semgrep-rules/python/pyramid/audit/set-cookie-secure-unsafe-default.py +0 -51
- package/semgrep-rules/python/pyramid/audit/set-cookie-secure-unsafe-default.yaml +0 -43
- package/semgrep-rules/python/pyramid/audit/set-cookie-secure-unsafe-value.fixed.py +0 -51
- package/semgrep-rules/python/pyramid/audit/set-cookie-secure-unsafe-value.py +0 -51
- package/semgrep-rules/python/pyramid/audit/set-cookie-secure-unsafe-value.yaml +0 -46
- package/semgrep-rules/python/pyramid/security/csrf-check-disabled-globally.fixed.py +0 -13
- package/semgrep-rules/python/pyramid/security/csrf-check-disabled-globally.py +0 -13
- package/semgrep-rules/python/pyramid/security/csrf-check-disabled-globally.yaml +0 -35
- package/semgrep-rules/python/pyramid/security/direct-use-of-response.py +0 -41
- package/semgrep-rules/python/pyramid/security/direct-use-of-response.yaml +0 -53
- package/semgrep-rules/python/pyramid/security/sqlalchemy-sql-injection.py +0 -98
- package/semgrep-rules/python/pyramid/security/sqlalchemy-sql-injection.yaml +0 -61
- package/semgrep-rules/python/requests/best-practice/use-raise-for-status.py +0 -112
- package/semgrep-rules/python/requests/best-practice/use-raise-for-status.yaml +0 -62
- package/semgrep-rules/python/requests/best-practice/use-request-json-shortcut.py +0 -14
- package/semgrep-rules/python/requests/best-practice/use-request-json-shortcut.yaml +0 -19
- package/semgrep-rules/python/requests/best-practice/use-response-json-shortcut.fixed.py +0 -10
- package/semgrep-rules/python/requests/best-practice/use-response-json-shortcut.py +0 -10
- package/semgrep-rules/python/requests/best-practice/use-response-json-shortcut.yaml +0 -20
- package/semgrep-rules/python/requests/best-practice/use-timeout.py +0 -41
- package/semgrep-rules/python/requests/best-practice/use-timeout.yaml +0 -46
- package/semgrep-rules/python/requests/security/disabled-cert-validation.py +0 -17
- package/semgrep-rules/python/requests/security/disabled-cert-validation.yaml +0 -36
- package/semgrep-rules/python/requests/security/no-auth-over-http.py +0 -48
- package/semgrep-rules/python/requests/security/no-auth-over-http.yaml +0 -37
- package/semgrep-rules/python/sh/security/string-concat.py +0 -22
- package/semgrep-rules/python/sh/security/string-concat.yaml +0 -30
- package/semgrep-rules/python/sqlalchemy/correctness/bad-operator-in-filter.py +0 -40
- package/semgrep-rules/python/sqlalchemy/correctness/bad-operator-in-filter.yaml +0 -29
- package/semgrep-rules/python/sqlalchemy/correctness/delete-where.py +0 -3
- package/semgrep-rules/python/sqlalchemy/correctness/delete-where.yaml +0 -15
- package/semgrep-rules/python/sqlalchemy/performance/performance-improvements.py +0 -6
- package/semgrep-rules/python/sqlalchemy/performance/performance-improvements.yaml +0 -23
- package/semgrep-rules/python/sqlalchemy/security/audit/avoid-sqlalchemy-text.py +0 -46
- package/semgrep-rules/python/sqlalchemy/security/audit/avoid-sqlalchemy-text.yaml +0 -59
- package/semgrep-rules/python/sqlalchemy/security/sqlalchemy-execute-raw-query.py +0 -248
- package/semgrep-rules/python/sqlalchemy/security/sqlalchemy-execute-raw-query.yaml +0 -66
- package/semgrep-rules/python/sqlalchemy/security/sqlalchemy-sql-injection.py +0 -52
- package/semgrep-rules/python/sqlalchemy/security/sqlalchemy-sql-injection.yaml +0 -58
- package/semgrep-rules/python/twilio/security/twiml-injection.py +0 -88
- package/semgrep-rules/python/twilio/security/twiml-injection.yaml +0 -48
- package/semgrep-rules/ruby/aws-lambda/security/activerecord-sqli.rb +0 -23
- package/semgrep-rules/ruby/aws-lambda/security/activerecord-sqli.yaml +0 -49
- package/semgrep-rules/ruby/aws-lambda/security/mysql2-sqli.rb +0 -26
- package/semgrep-rules/ruby/aws-lambda/security/mysql2-sqli.yaml +0 -49
- package/semgrep-rules/ruby/aws-lambda/security/pg-sqli.rb +0 -15
- package/semgrep-rules/ruby/aws-lambda/security/pg-sqli.yaml +0 -53
- package/semgrep-rules/ruby/aws-lambda/security/sequel-sqli.rb +0 -22
- package/semgrep-rules/ruby/aws-lambda/security/sequel-sqli.yaml +0 -48
- package/semgrep-rules/ruby/aws-lambda/security/tainted-deserialization.rb +0 -26
- package/semgrep-rules/ruby/aws-lambda/security/tainted-deserialization.yaml +0 -53
- package/semgrep-rules/ruby/aws-lambda/security/tainted-sql-string.rb +0 -28
- package/semgrep-rules/ruby/aws-lambda/security/tainted-sql-string.yaml +0 -56
- package/semgrep-rules/ruby/jwt/security/audit/jwt-decode-without-verify.rb +0 -15
- package/semgrep-rules/ruby/jwt/security/audit/jwt-decode-without-verify.yaml +0 -31
- package/semgrep-rules/ruby/jwt/security/audit/jwt-exposed-data.rb +0 -14
- package/semgrep-rules/ruby/jwt/security/audit/jwt-exposed-data.yaml +0 -35
- package/semgrep-rules/ruby/jwt/security/jwt-exposed-credentials.rb +0 -15
- package/semgrep-rules/ruby/jwt/security/jwt-exposed-credentials.yaml +0 -34
- package/semgrep-rules/ruby/jwt/security/jwt-hardcode.rb +0 -49
- package/semgrep-rules/ruby/jwt/security/jwt-hardcode.yaml +0 -52
- package/semgrep-rules/ruby/jwt/security/jwt-none-alg.rb +0 -16
- package/semgrep-rules/ruby/jwt/security/jwt-none-alg.yaml +0 -33
- package/semgrep-rules/ruby/lang/security/audit/sha224-hash.rb +0 -48
- package/semgrep-rules/ruby/lang/security/audit/sha224-hash.yaml +0 -40
- package/semgrep-rules/ruby/lang/security/bad-deserialization-env.rb +0 -30
- package/semgrep-rules/ruby/lang/security/bad-deserialization-env.yaml +0 -45
- package/semgrep-rules/ruby/lang/security/bad-deserialization-yaml.fixed.rb +0 -43
- package/semgrep-rules/ruby/lang/security/bad-deserialization-yaml.rb +0 -43
- package/semgrep-rules/ruby/lang/security/bad-deserialization-yaml.yaml +0 -62
- package/semgrep-rules/ruby/lang/security/bad-deserialization.rb +0 -40
- package/semgrep-rules/ruby/lang/security/bad-deserialization.yaml +0 -46
- package/semgrep-rules/ruby/lang/security/cookie-serialization.rb +0 -11
- package/semgrep-rules/ruby/lang/security/cookie-serialization.yaml +0 -32
- package/semgrep-rules/ruby/lang/security/create-with.rb +0 -11
- package/semgrep-rules/ruby/lang/security/create-with.yaml +0 -32
- package/semgrep-rules/ruby/lang/security/dangerous-exec.rb +0 -116
- package/semgrep-rules/ruby/lang/security/dangerous-exec.yaml +0 -52
- package/semgrep-rules/ruby/lang/security/dangerous-open.rb +0 -20
- package/semgrep-rules/ruby/lang/security/dangerous-open.yaml +0 -33
- package/semgrep-rules/ruby/lang/security/dangerous-open3-pipeline.rb +0 -21
- package/semgrep-rules/ruby/lang/security/dangerous-open3-pipeline.yaml +0 -33
- package/semgrep-rules/ruby/lang/security/dangerous-subshell.rb +0 -21
- package/semgrep-rules/ruby/lang/security/dangerous-subshell.yaml +0 -33
- package/semgrep-rules/ruby/lang/security/dangerous-syscall.rb +0 -4
- package/semgrep-rules/ruby/lang/security/dangerous-syscall.yaml +0 -25
- package/semgrep-rules/ruby/lang/security/divide-by-zero.rb +0 -19
- package/semgrep-rules/ruby/lang/security/divide-by-zero.yaml +0 -31
- package/semgrep-rules/ruby/lang/security/file-disclosure.rb +0 -9
- package/semgrep-rules/ruby/lang/security/file-disclosure.yaml +0 -32
- package/semgrep-rules/ruby/lang/security/filter-skipping.rb +0 -10
- package/semgrep-rules/ruby/lang/security/filter-skipping.yaml +0 -32
- package/semgrep-rules/ruby/lang/security/force-ssl-false.rb +0 -9
- package/semgrep-rules/ruby/lang/security/force-ssl-false.yaml +0 -30
- package/semgrep-rules/ruby/lang/security/hardcoded-http-auth-in-controller.rb +0 -16
- package/semgrep-rules/ruby/lang/security/hardcoded-http-auth-in-controller.yaml +0 -36
- package/semgrep-rules/ruby/lang/security/hardcoded-secret-rsa-passphrase.rb +0 -64
- package/semgrep-rules/ruby/lang/security/hardcoded-secret-rsa-passphrase.yaml +0 -102
- package/semgrep-rules/ruby/lang/security/insufficient-rsa-key-size.rb +0 -36
- package/semgrep-rules/ruby/lang/security/insufficient-rsa-key-size.yaml +0 -50
- package/semgrep-rules/ruby/lang/security/json-entity-escape.rb +0 -9
- package/semgrep-rules/ruby/lang/security/json-entity-escape.yaml +0 -32
- package/semgrep-rules/ruby/lang/security/mass-assignment-protection-disabled.rb +0 -5
- package/semgrep-rules/ruby/lang/security/mass-assignment-protection-disabled.yaml +0 -28
- package/semgrep-rules/ruby/lang/security/md5-used-as-password.rb +0 -31
- package/semgrep-rules/ruby/lang/security/md5-used-as-password.yaml +0 -36
- package/semgrep-rules/ruby/lang/security/missing-csrf-protection.rb +0 -24
- package/semgrep-rules/ruby/lang/security/missing-csrf-protection.yaml +0 -42
- package/semgrep-rules/ruby/lang/security/model-attr-accessible.rb +0 -49
- package/semgrep-rules/ruby/lang/security/model-attr-accessible.yaml +0 -46
- package/semgrep-rules/ruby/lang/security/model-attributes-attr-accessible.rb +0 -49
- package/semgrep-rules/ruby/lang/security/model-attributes-attr-accessible.yaml +0 -46
- package/semgrep-rules/ruby/lang/security/no-eval.rb +0 -62
- package/semgrep-rules/ruby/lang/security/no-eval.yaml +0 -55
- package/semgrep-rules/ruby/lang/security/no-send.rb +0 -10
- package/semgrep-rules/ruby/lang/security/no-send.yaml +0 -45
- package/semgrep-rules/ruby/lang/security/ssl-mode-no-verify.rb +0 -21
- package/semgrep-rules/ruby/lang/security/ssl-mode-no-verify.yaml +0 -29
- package/semgrep-rules/ruby/lang/security/unprotected-mass-assign.rb +0 -18
- package/semgrep-rules/ruby/lang/security/unprotected-mass-assign.yaml +0 -38
- package/semgrep-rules/ruby/lang/security/weak-hashes-md5.rb +0 -24
- package/semgrep-rules/ruby/lang/security/weak-hashes-md5.yaml +0 -35
- package/semgrep-rules/ruby/lang/security/weak-hashes-sha1.rb +0 -32
- package/semgrep-rules/ruby/lang/security/weak-hashes-sha1.yaml +0 -30
- package/semgrep-rules/ruby/rails/correctness/rails-no-render-after-save.fixed.rb +0 -45
- package/semgrep-rules/ruby/rails/correctness/rails-no-render-after-save.rb +0 -45
- package/semgrep-rules/ruby/rails/correctness/rails-no-render-after-save.yaml +0 -29
- package/semgrep-rules/ruby/rails/performance/ruby-rails-performance-indexes-are-really-beneficial.rb +0 -21
- package/semgrep-rules/ruby/rails/performance/ruby-rails-performance-indexes-are-really-beneficial.yaml +0 -27
- package/semgrep-rules/ruby/rails/security/audit/avoid-session-manipulation.rb +0 -9
- package/semgrep-rules/ruby/rails/security/audit/avoid-session-manipulation.yaml +0 -40
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-file-access.rb +0 -243
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-file-access.yaml +0 -70
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-ftp-call.rb +0 -95
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-ftp-call.yaml +0 -40
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-http-request.rb +0 -44
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-http-request.yaml +0 -78
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-shell-call.rb +0 -38
- package/semgrep-rules/ruby/rails/security/audit/avoid-tainted-shell-call.yaml +0 -79
- package/semgrep-rules/ruby/rails/security/audit/detailed-exceptions.rb +0 -37
- package/semgrep-rules/ruby/rails/security/audit/detailed-exceptions.yaml +0 -46
- package/semgrep-rules/ruby/rails/security/audit/rails-skip-forgery-protection.rb +0 -17
- package/semgrep-rules/ruby/rails/security/audit/rails-skip-forgery-protection.yaml +0 -24
- package/semgrep-rules/ruby/rails/security/audit/sqli/ruby-pg-sqli.rb +0 -115
- package/semgrep-rules/ruby/rails/security/audit/sqli/ruby-pg-sqli.yaml +0 -63
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-content-tag.rb +0 -29
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-content-tag.yaml +0 -31
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-default-routes.routes.rb +0 -2
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-default-routes.yaml +0 -33
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-html-safe.rb +0 -19
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-html-safe.yaml +0 -31
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-link-to.rb +0 -18
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-link-to.yaml +0 -48
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-raw.rb +0 -61
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-raw.yaml +0 -29
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-redirect.rb +0 -14
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-redirect.yaml +0 -59
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-render-dynamic-path.rb +0 -20
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-render-dynamic-path.yaml +0 -43
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-render-inline.rb +0 -194
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-render-inline.yaml +0 -29
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-render-text.rb +0 -76
- package/semgrep-rules/ruby/rails/security/audit/xss/avoid-render-text.yaml +0 -32
- package/semgrep-rules/ruby/rails/security/audit/xss/manual-template-creation.rb +0 -20
- package/semgrep-rules/ruby/rails/security/audit/xss/manual-template-creation.yaml +0 -29
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/alias-for-html-safe.erb +0 -9
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/alias-for-html-safe.yaml +0 -35
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/avoid-content-tag.erb +0 -7
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/avoid-content-tag.yaml +0 -35
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/avoid-html-safe.erb +0 -7
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/avoid-html-safe.yaml +0 -36
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/avoid-raw.erb +0 -7
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/avoid-raw.yaml +0 -36
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/dangerous-link-to.erb +0 -8
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/dangerous-link-to.yaml +0 -42
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/unquoted-attribute.erb +0 -25
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/unquoted-attribute.yaml +0 -40
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/var-in-href.erb +0 -24
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/var-in-href.yaml +0 -38
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/var-in-script-tag.erb +0 -23
- package/semgrep-rules/ruby/rails/security/audit/xss/templates/var-in-script-tag.yaml +0 -42
- package/semgrep-rules/ruby/rails/security/audit/xxe/libxml-backend.rb +0 -20
- package/semgrep-rules/ruby/rails/security/audit/xxe/libxml-backend.yaml +0 -29
- package/semgrep-rules/ruby/rails/security/audit/xxe/xml-external-entities-enabled.rb +0 -19
- package/semgrep-rules/ruby/rails/security/audit/xxe/xml-external-entities-enabled.yaml +0 -41
- package/semgrep-rules/ruby/rails/security/brakeman/check-before-filter.rb +0 -47
- package/semgrep-rules/ruby/rails/security/brakeman/check-before-filter.yaml +0 -34
- package/semgrep-rules/ruby/rails/security/brakeman/check-cookie-store-session-security-attributes.rb +0 -35
- package/semgrep-rules/ruby/rails/security/brakeman/check-cookie-store-session-security-attributes.yaml +0 -38
- package/semgrep-rules/ruby/rails/security/brakeman/check-dynamic-render-local-file-include.html.erb +0 -8
- package/semgrep-rules/ruby/rails/security/brakeman/check-dynamic-render-local-file-include.yaml +0 -37
- package/semgrep-rules/ruby/rails/security/brakeman/check-http-verb-confusion.rb +0 -27
- package/semgrep-rules/ruby/rails/security/brakeman/check-http-verb-confusion.yaml +0 -38
- package/semgrep-rules/ruby/rails/security/brakeman/check-permit-attributes-high.rb +0 -12
- package/semgrep-rules/ruby/rails/security/brakeman/check-permit-attributes-high.yaml +0 -29
- package/semgrep-rules/ruby/rails/security/brakeman/check-permit-attributes-medium.rb +0 -12
- package/semgrep-rules/ruby/rails/security/brakeman/check-permit-attributes-medium.yaml +0 -29
- package/semgrep-rules/ruby/rails/security/brakeman/check-rails-secret-yaml.secrets.test.yml +0 -26
- package/semgrep-rules/ruby/rails/security/brakeman/check-rails-secret-yaml.yaml +0 -42
- package/semgrep-rules/ruby/rails/security/brakeman/check-rails-session-secret-handling.rb +0 -24
- package/semgrep-rules/ruby/rails/security/brakeman/check-rails-session-secret-handling.yaml +0 -42
- package/semgrep-rules/ruby/rails/security/brakeman/check-redirect-to.rb +0 -41
- package/semgrep-rules/ruby/rails/security/brakeman/check-redirect-to.yaml +0 -79
- package/semgrep-rules/ruby/rails/security/brakeman/check-regex-dos.rb +0 -31
- package/semgrep-rules/ruby/rails/security/brakeman/check-regex-dos.yaml +0 -66
- package/semgrep-rules/ruby/rails/security/brakeman/check-render-local-file-include.rb +0 -61
- package/semgrep-rules/ruby/rails/security/brakeman/check-render-local-file-include.yaml +0 -62
- package/semgrep-rules/ruby/rails/security/brakeman/check-reverse-tabnabbing.html.erb +0 -36
- package/semgrep-rules/ruby/rails/security/brakeman/check-reverse-tabnabbing.yaml +0 -63
- package/semgrep-rules/ruby/rails/security/brakeman/check-secrets.rb +0 -7
- package/semgrep-rules/ruby/rails/security/brakeman/check-secrets.yaml +0 -35
- package/semgrep-rules/ruby/rails/security/brakeman/check-send-file.rb +0 -46
- package/semgrep-rules/ruby/rails/security/brakeman/check-send-file.yaml +0 -44
- package/semgrep-rules/ruby/rails/security/brakeman/check-sql.rb +0 -210
- package/semgrep-rules/ruby/rails/security/brakeman/check-sql.yaml +0 -89
- package/semgrep-rules/ruby/rails/security/brakeman/check-unsafe-reflection-methods.rb +0 -30
- package/semgrep-rules/ruby/rails/security/brakeman/check-unsafe-reflection-methods.yaml +0 -59
- package/semgrep-rules/ruby/rails/security/brakeman/check-unsafe-reflection.rb +0 -27
- package/semgrep-rules/ruby/rails/security/brakeman/check-unsafe-reflection.yaml +0 -54
- package/semgrep-rules/ruby/rails/security/brakeman/check-unscoped-find.rb +0 -45
- package/semgrep-rules/ruby/rails/security/brakeman/check-unscoped-find.yaml +0 -51
- package/semgrep-rules/ruby/rails/security/brakeman/check-validation-regex.rb +0 -36
- package/semgrep-rules/ruby/rails/security/brakeman/check-validation-regex.yaml +0 -38
- package/semgrep-rules/ruby/rails/security/injection/raw-html-format.rb +0 -75
- package/semgrep-rules/ruby/rails/security/injection/raw-html-format.yaml +0 -59
- package/semgrep-rules/ruby/rails/security/injection/tainted-sql-string.rb +0 -103
- package/semgrep-rules/ruby/rails/security/injection/tainted-sql-string.yaml +0 -69
- package/semgrep-rules/ruby/rails/security/injection/tainted-url-host.rb +0 -70
- package/semgrep-rules/ruby/rails/security/injection/tainted-url-host.yaml +0 -58
- package/semgrep-rules/rust/lang/security/args-os.rs +0 -4
- package/semgrep-rules/rust/lang/security/args-os.yml +0 -21
- package/semgrep-rules/rust/lang/security/args.rs +0 -4
- package/semgrep-rules/rust/lang/security/args.yml +0 -21
- package/semgrep-rules/rust/lang/security/current-exe.rs +0 -4
- package/semgrep-rules/rust/lang/security/current-exe.yml +0 -21
- package/semgrep-rules/rust/lang/security/insecure-hashes.rs +0 -20
- package/semgrep-rules/rust/lang/security/insecure-hashes.yml +0 -25
- package/semgrep-rules/rust/lang/security/reqwest-accept-invalid.rs +0 -30
- package/semgrep-rules/rust/lang/security/reqwest-accept-invalid.yml +0 -20
- package/semgrep-rules/rust/lang/security/reqwest-set-sensitive.rs +0 -33
- package/semgrep-rules/rust/lang/security/reqwest-set-sensitive.yml +0 -44
- package/semgrep-rules/rust/lang/security/rustls-dangerous.rs +0 -19
- package/semgrep-rules/rust/lang/security/rustls-dangerous.yml +0 -24
- package/semgrep-rules/rust/lang/security/ssl-verify-none.rs +0 -11
- package/semgrep-rules/rust/lang/security/ssl-verify-none.yml +0 -17
- package/semgrep-rules/rust/lang/security/temp-dir.rs +0 -4
- package/semgrep-rules/rust/lang/security/temp-dir.yml +0 -23
- package/semgrep-rules/rust/lang/security/unsafe-usage.rs +0 -5
- package/semgrep-rules/rust/lang/security/unsafe-usage.yml +0 -17
- package/semgrep-rules/scala/jwt-scala/security/jwt-scala-hardcode.scala +0 -53
- package/semgrep-rules/scala/jwt-scala/security/jwt-scala-hardcode.yaml +0 -83
- package/semgrep-rules/scala/lang/correctness/positive-number-index-of.scala +0 -35
- package/semgrep-rules/scala/lang/correctness/positive-number-index-of.yaml +0 -29
- package/semgrep-rules/scala/lang/security/audit/dangerous-seq-run.scala +0 -38
- package/semgrep-rules/scala/lang/security/audit/dangerous-seq-run.yaml +0 -40
- package/semgrep-rules/scala/lang/security/audit/dangerous-shell-run.scala +0 -38
- package/semgrep-rules/scala/lang/security/audit/dangerous-shell-run.yaml +0 -43
- package/semgrep-rules/scala/lang/security/audit/dispatch-ssrf.scala +0 -61
- package/semgrep-rules/scala/lang/security/audit/dispatch-ssrf.yaml +0 -44
- package/semgrep-rules/scala/lang/security/audit/documentbuilder-dtd-enabled.scala +0 -63
- package/semgrep-rules/scala/lang/security/audit/documentbuilder-dtd-enabled.yaml +0 -86
- package/semgrep-rules/scala/lang/security/audit/insecure-random.scala +0 -19
- package/semgrep-rules/scala/lang/security/audit/insecure-random.yaml +0 -32
- package/semgrep-rules/scala/lang/security/audit/io-source-ssrf.scala +0 -57
- package/semgrep-rules/scala/lang/security/audit/io-source-ssrf.yaml +0 -45
- package/semgrep-rules/scala/lang/security/audit/path-traversal-fromfile.scala +0 -57
- package/semgrep-rules/scala/lang/security/audit/path-traversal-fromfile.yaml +0 -58
- package/semgrep-rules/scala/lang/security/audit/rsa-padding-set.scala +0 -21
- package/semgrep-rules/scala/lang/security/audit/rsa-padding-set.yaml +0 -33
- package/semgrep-rules/scala/lang/security/audit/sax-dtd-enabled.scala +0 -116
- package/semgrep-rules/scala/lang/security/audit/sax-dtd-enabled.yaml +0 -71
- package/semgrep-rules/scala/lang/security/audit/scala-dangerous-process-run.scala +0 -62
- package/semgrep-rules/scala/lang/security/audit/scala-dangerous-process-run.yaml +0 -53
- package/semgrep-rules/scala/lang/security/audit/scalac-debug.sbt +0 -38
- package/semgrep-rules/scala/lang/security/audit/scalac-debug.yaml +0 -30
- package/semgrep-rules/scala/lang/security/audit/scalaj-http-ssrf.scala +0 -56
- package/semgrep-rules/scala/lang/security/audit/scalaj-http-ssrf.yaml +0 -44
- package/semgrep-rules/scala/lang/security/audit/scalajs-eval.scala +0 -23
- package/semgrep-rules/scala/lang/security/audit/scalajs-eval.yaml +0 -51
- package/semgrep-rules/scala/lang/security/audit/tainted-sql-string.scala +0 -102
- package/semgrep-rules/scala/lang/security/audit/tainted-sql-string.yaml +0 -89
- package/semgrep-rules/scala/lang/security/audit/xmlinputfactory-dtd-enabled.scala +0 -42
- package/semgrep-rules/scala/lang/security/audit/xmlinputfactory-dtd-enabled.yaml +0 -38
- package/semgrep-rules/scala/play/security/conf-csrf-headers-bypass.conf +0 -68
- package/semgrep-rules/scala/play/security/conf-csrf-headers-bypass.yaml +0 -75
- package/semgrep-rules/scala/play/security/conf-insecure-cookie-settings.conf +0 -78
- package/semgrep-rules/scala/play/security/conf-insecure-cookie-settings.yaml +0 -36
- package/semgrep-rules/scala/play/security/tainted-html-response.scala +0 -78
- package/semgrep-rules/scala/play/security/tainted-html-response.yaml +0 -101
- package/semgrep-rules/scala/play/security/tainted-slick-sqli.scala +0 -63
- package/semgrep-rules/scala/play/security/tainted-slick-sqli.yaml +0 -84
- package/semgrep-rules/scala/play/security/tainted-sql-from-http-request.scala +0 -61
- package/semgrep-rules/scala/play/security/tainted-sql-from-http-request.yaml +0 -103
- package/semgrep-rules/scala/play/security/twirl-html-var.scala.html +0 -32
- package/semgrep-rules/scala/play/security/twirl-html-var.yaml +0 -44
- package/semgrep-rules/scala/play/security/webservice-ssrf.scala +0 -73
- package/semgrep-rules/scala/play/security/webservice-ssrf.yaml +0 -53
- package/semgrep-rules/scala/scala-jwt/security/jwt-hardcode.scala +0 -36
- package/semgrep-rules/scala/scala-jwt/security/jwt-hardcode.yaml +0 -83
- package/semgrep-rules/scala/slick/security/scala-slick-overrideSql-literal.scala +0 -26
- package/semgrep-rules/scala/slick/security/scala-slick-overrideSql-literal.yaml +0 -33
- package/semgrep-rules/scala/slick/security/scala-slick-sql-non-literal.scala +0 -15
- package/semgrep-rules/scala/slick/security/scala-slick-sql-non-literal.yaml +0 -34
- package/semgrep-rules/scripts/historical-semgrep-version +0 -17
- package/semgrep-rules/solidity/best-practice/use-abi-encodecall-instead-of-encodewithselector.sol +0 -45
- package/semgrep-rules/solidity/best-practice/use-abi-encodecall-instead-of-encodewithselector.yaml +0 -15
- package/semgrep-rules/solidity/best-practice/use-ownable2step.sol +0 -15
- package/semgrep-rules/solidity/best-practice/use-ownable2step.yaml +0 -25
- package/semgrep-rules/solidity/performance/array-length-outside-loop.sol +0 -61
- package/semgrep-rules/solidity/performance/array-length-outside-loop.yaml +0 -41
- package/semgrep-rules/solidity/performance/inefficient-state-variable-increment.sol +0 -52
- package/semgrep-rules/solidity/performance/inefficient-state-variable-increment.yaml +0 -37
- package/semgrep-rules/solidity/performance/init-variables-with-default-value.sol +0 -52
- package/semgrep-rules/solidity/performance/init-variables-with-default-value.yaml +0 -31
- package/semgrep-rules/solidity/performance/non-optimal-variables-swap.sol +0 -46
- package/semgrep-rules/solidity/performance/non-optimal-variables-swap.yaml +0 -18
- package/semgrep-rules/solidity/performance/non-payable-constructor.sol +0 -17
- package/semgrep-rules/solidity/performance/non-payable-constructor.yaml +0 -29
- package/semgrep-rules/solidity/performance/state-variable-read-in-a-loop.sol +0 -85
- package/semgrep-rules/solidity/performance/state-variable-read-in-a-loop.yaml +0 -54
- package/semgrep-rules/solidity/performance/unnecessary-checked-arithmetic-in-loop.sol +0 -52
- package/semgrep-rules/solidity/performance/unnecessary-checked-arithmetic-in-loop.yaml +0 -44
- package/semgrep-rules/solidity/performance/use-custom-error-not-require.sol +0 -9
- package/semgrep-rules/solidity/performance/use-custom-error-not-require.yaml +0 -22
- package/semgrep-rules/solidity/performance/use-multiple-require.sol +0 -19
- package/semgrep-rules/solidity/performance/use-multiple-require.yaml +0 -18
- package/semgrep-rules/solidity/performance/use-nested-if.sol +0 -18
- package/semgrep-rules/solidity/performance/use-nested-if.yaml +0 -20
- package/semgrep-rules/solidity/performance/use-prefix-decrement-not-postfix.sol +0 -58
- package/semgrep-rules/solidity/performance/use-prefix-decrement-not-postfix.yaml +0 -30
- package/semgrep-rules/solidity/performance/use-prefix-increment-not-postfix.sol +0 -58
- package/semgrep-rules/solidity/performance/use-prefix-increment-not-postfix.yaml +0 -30
- package/semgrep-rules/solidity/performance/use-short-revert-string.sol +0 -26
- package/semgrep-rules/solidity/performance/use-short-revert-string.yaml +0 -25
- package/semgrep-rules/solidity/security/accessible-selfdestruct.sol +0 -137
- package/semgrep-rules/solidity/security/accessible-selfdestruct.yaml +0 -108
- package/semgrep-rules/solidity/security/arbitrary-low-level-call.sol +0 -661
- package/semgrep-rules/solidity/security/arbitrary-low-level-call.yaml +0 -35
- package/semgrep-rules/solidity/security/arbitrary-send-erc20.sol +0 -9
- package/semgrep-rules/solidity/security/arbitrary-send-erc20.yaml +0 -28
- package/semgrep-rules/solidity/security/balancer-readonly-reentrancy-getpooltokens.sol +0 -123
- package/semgrep-rules/solidity/security/balancer-readonly-reentrancy-getpooltokens.yaml +0 -144
- package/semgrep-rules/solidity/security/balancer-readonly-reentrancy-getrate.sol +0 -80
- package/semgrep-rules/solidity/security/balancer-readonly-reentrancy-getrate.yaml +0 -126
- package/semgrep-rules/solidity/security/basic-arithmetic-underflow.sol +0 -401
- package/semgrep-rules/solidity/security/basic-arithmetic-underflow.yaml +0 -31
- package/semgrep-rules/solidity/security/basic-oracle-manipulation.sol +0 -506
- package/semgrep-rules/solidity/security/basic-oracle-manipulation.yaml +0 -49
- package/semgrep-rules/solidity/security/compound-borrowfresh-reentrancy.sol +0 -3386
- package/semgrep-rules/solidity/security/compound-borrowfresh-reentrancy.yaml +0 -32
- package/semgrep-rules/solidity/security/compound-sweeptoken-not-restricted.sol +0 -230
- package/semgrep-rules/solidity/security/compound-sweeptoken-not-restricted.yaml +0 -39
- package/semgrep-rules/solidity/security/curve-readonly-reentrancy.sol +0 -65
- package/semgrep-rules/solidity/security/curve-readonly-reentrancy.yaml +0 -70
- package/semgrep-rules/solidity/security/delegatecall-to-arbitrary-address.sol +0 -121
- package/semgrep-rules/solidity/security/delegatecall-to-arbitrary-address.yaml +0 -49
- package/semgrep-rules/solidity/security/encode-packed-collision.sol +0 -95
- package/semgrep-rules/solidity/security/encode-packed-collision.yaml +0 -76
- package/semgrep-rules/solidity/security/erc20-public-burn.sol +0 -1663
- package/semgrep-rules/solidity/security/erc20-public-burn.yaml +0 -49
- package/semgrep-rules/solidity/security/erc20-public-transfer.sol +0 -631
- package/semgrep-rules/solidity/security/erc20-public-transfer.yaml +0 -31
- package/semgrep-rules/solidity/security/erc677-reentrancy.sol +0 -1010
- package/semgrep-rules/solidity/security/erc677-reentrancy.yaml +0 -29
- package/semgrep-rules/solidity/security/erc721-arbitrary-transferfrom.sol +0 -2035
- package/semgrep-rules/solidity/security/erc721-arbitrary-transferfrom.yaml +0 -42
- package/semgrep-rules/solidity/security/erc721-reentrancy.sol +0 -413
- package/semgrep-rules/solidity/security/erc721-reentrancy.yaml +0 -23
- package/semgrep-rules/solidity/security/erc777-reentrancy.sol +0 -551
- package/semgrep-rules/solidity/security/erc777-reentrancy.yaml +0 -23
- package/semgrep-rules/solidity/security/gearbox-tokens-path-confusion.sol +0 -261
- package/semgrep-rules/solidity/security/gearbox-tokens-path-confusion.yaml +0 -23
- package/semgrep-rules/solidity/security/incorrect-use-of-blockhash.sol +0 -25
- package/semgrep-rules/solidity/security/incorrect-use-of-blockhash.yaml +0 -26
- package/semgrep-rules/solidity/security/keeper-network-oracle-manipulation.sol +0 -41
- package/semgrep-rules/solidity/security/keeper-network-oracle-manipulation.yaml +0 -28
- package/semgrep-rules/solidity/security/missing-self-transfer-check-ercx.sol +0 -90
- package/semgrep-rules/solidity/security/missing-self-transfer-check-ercx.yaml +0 -43
- package/semgrep-rules/solidity/security/msg-value-multicall.sol +0 -722
- package/semgrep-rules/solidity/security/msg-value-multicall.yaml +0 -35
- package/semgrep-rules/solidity/security/no-bidi-characters.sol +0 -67
- package/semgrep-rules/solidity/security/no-bidi-characters.yaml +0 -30
- package/semgrep-rules/solidity/security/no-slippage-check.sol +0 -421
- package/semgrep-rules/solidity/security/no-slippage-check.yaml +0 -89
- package/semgrep-rules/solidity/security/openzeppelin-ecdsa-recover-malleable.sol +0 -20
- package/semgrep-rules/solidity/security/openzeppelin-ecdsa-recover-malleable.yaml +0 -36
- package/semgrep-rules/solidity/security/oracle-price-update-not-restricted.sol +0 -148
- package/semgrep-rules/solidity/security/oracle-price-update-not-restricted.yaml +0 -35
- package/semgrep-rules/solidity/security/proxy-storage-collision.sol +0 -189
- package/semgrep-rules/solidity/security/proxy-storage-collision.yaml +0 -75
- package/semgrep-rules/solidity/security/redacted-cartel-custom-approval-bug.sol +0 -945
- package/semgrep-rules/solidity/security/redacted-cartel-custom-approval-bug.yaml +0 -27
- package/semgrep-rules/solidity/security/rigoblock-missing-access-control.sol +0 -1222
- package/semgrep-rules/solidity/security/rigoblock-missing-access-control.yaml +0 -25
- package/semgrep-rules/solidity/security/sense-missing-oracle-access-control.sol +0 -806
- package/semgrep-rules/solidity/security/sense-missing-oracle-access-control.yaml +0 -52
- package/semgrep-rules/solidity/security/superfluid-ctx-injection.sol +0 -206
- package/semgrep-rules/solidity/security/superfluid-ctx-injection.yaml +0 -27
- package/semgrep-rules/solidity/security/tecra-coin-burnfrom-bug.sol +0 -508
- package/semgrep-rules/solidity/security/tecra-coin-burnfrom-bug.yaml +0 -31
- package/semgrep-rules/solidity/security/uniswap-callback-not-protected.sol +0 -318
- package/semgrep-rules/solidity/security/uniswap-callback-not-protected.yaml +0 -138
- package/semgrep-rules/solidity/security/unrestricted-transferownership.sol +0 -1217
- package/semgrep-rules/solidity/security/unrestricted-transferownership.yaml +0 -94
- package/semgrep-rules/stats/Sources_Sinks_Checklist.md +0 -25
- package/semgrep-rules/stats/cwe_to_metacategory.yml +0 -85
- package/semgrep-rules/stats/gen_table.py +0 -96
- package/semgrep-rules/stats/high_signal_coverage.md +0 -136
- package/semgrep-rules/stats/matrixify.py +0 -251
- package/semgrep-rules/stats/matrixify_graph.py +0 -144
- package/semgrep-rules/stats/metacategory_stats_table.md +0 -217
- package/semgrep-rules/stats/metacategory_to_support_tier.yml +0 -22
- package/semgrep-rules/stats/taint_without_audit_coverage.md +0 -100
- package/semgrep-rules/stats/web_frameworks.yml +0 -15
- package/semgrep-rules/swift/lang/crypto/insecure-random.swift +0 -49
- package/semgrep-rules/swift/lang/crypto/insecure-random.yaml +0 -42
- package/semgrep-rules/swift/lang/storage/sensitive-storage-userdefaults.swift +0 -35
- package/semgrep-rules/swift/lang/storage/sensitive-storage-userdefaults.yaml +0 -144
- package/semgrep-rules/swift/sqllite/sqllite-injection-audit.swift +0 -66
- package/semgrep-rules/swift/sqllite/sqllite-injection-audit.yaml +0 -43
- package/semgrep-rules/swift/webview/webview-js-window.swift +0 -16
- package/semgrep-rules/swift/webview/webview-js-window.yaml +0 -58
- package/semgrep-rules/template.yaml +0 -6
- package/semgrep-rules/terraform/aws/best-practice/aws-elasticache-automatic-backup-not-enabled.tf +0 -41
- package/semgrep-rules/terraform/aws/best-practice/aws-elasticache-automatic-backup-not-enabled.yaml +0 -40
- package/semgrep-rules/terraform/aws/best-practice/aws-qldb-inadequate-ledger-permissions-mode.tf +0 -13
- package/semgrep-rules/terraform/aws/best-practice/aws-qldb-inadequate-ledger-permissions-mode.yaml +0 -18
- package/semgrep-rules/terraform/aws/best-practice/aws-rds-cluster-iam-authentication-not-enabled.tf +0 -22
- package/semgrep-rules/terraform/aws/best-practice/aws-rds-cluster-iam-authentication-not-enabled.yaml +0 -22
- package/semgrep-rules/terraform/aws/best-practice/aws-rds-iam-authentication-not-enabled.tf +0 -70
- package/semgrep-rules/terraform/aws/best-practice/aws-rds-iam-authentication-not-enabled.yaml +0 -22
- package/semgrep-rules/terraform/aws/best-practice/aws-rds-multiaz-not-enabled.tf +0 -30
- package/semgrep-rules/terraform/aws/best-practice/aws-rds-multiaz-not-enabled.yaml +0 -22
- package/semgrep-rules/terraform/aws/best-practice/aws-s3-bucket-versioning-not-enabled.tf +0 -108
- package/semgrep-rules/terraform/aws/best-practice/aws-s3-bucket-versioning-not-enabled.yaml +0 -37
- package/semgrep-rules/terraform/aws/best-practice/aws-s3-object-lock-not-enabled.tf +0 -46
- package/semgrep-rules/terraform/aws/best-practice/aws-s3-object-lock-not-enabled.yaml +0 -29
- package/semgrep-rules/terraform/aws/best-practice/missing-alb-drop-http-headers.tf +0 -69
- package/semgrep-rules/terraform/aws/best-practice/missing-alb-drop-http-headers.yaml +0 -29
- package/semgrep-rules/terraform/aws/best-practice/missing-api-gateway-cache-cluster.tf +0 -24
- package/semgrep-rules/terraform/aws/best-practice/missing-api-gateway-cache-cluster.yaml +0 -24
- package/semgrep-rules/terraform/aws/best-practice/missing-autoscaling-group-tags.tf +0 -61
- package/semgrep-rules/terraform/aws/best-practice/missing-autoscaling-group-tags.yaml +0 -36
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-autoscaling-tags.tf +0 -58
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-autoscaling-tags.yaml +0 -32
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-cross-zone-lb.tf +0 -74
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-cross-zone-lb.yaml +0 -37
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-lb-deletion-protection.tf +0 -53
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-lb-deletion-protection.yaml +0 -30
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-qldb-deletion-protection.tf +0 -22
- package/semgrep-rules/terraform/aws/best-practice/missing-aws-qldb-deletion-protection.yaml +0 -18
- package/semgrep-rules/terraform/aws/best-practice/missing-cloudwatch-log-group-kms-key.tf +0 -10
- package/semgrep-rules/terraform/aws/best-practice/missing-cloudwatch-log-group-kms-key.yaml +0 -20
- package/semgrep-rules/terraform/aws/best-practice/missing-cloudwatch-log-group-retention.tf +0 -7
- package/semgrep-rules/terraform/aws/best-practice/missing-cloudwatch-log-group-retention.yaml +0 -20
- package/semgrep-rules/terraform/aws/correctness/lambda-permission-logs-missing-arn-asterisk.tf +0 -31
- package/semgrep-rules/terraform/aws/correctness/lambda-permission-logs-missing-arn-asterisk.yaml +0 -25
- package/semgrep-rules/terraform/aws/correctness/lambda-redundant-field-with-image.tf +0 -112
- package/semgrep-rules/terraform/aws/correctness/lambda-redundant-field-with-image.yaml +0 -23
- package/semgrep-rules/terraform/aws/correctness/reserved-aws-lambda-environment-variable.tf +0 -37
- package/semgrep-rules/terraform/aws/correctness/reserved-aws-lambda-environment-variable.yaml +0 -45
- package/semgrep-rules/terraform/aws/correctness/subscription-filter-missing-depends.tf +0 -37
- package/semgrep-rules/terraform/aws/correctness/subscription-filter-missing-depends.yaml +0 -26
- package/semgrep-rules/terraform/aws/security/aws-athena-client-can-disable-workgroup-encryption.tf +0 -60
- package/semgrep-rules/terraform/aws/security/aws-athena-client-can-disable-workgroup-encryption.yaml +0 -44
- package/semgrep-rules/terraform/aws/security/aws-athena-database-unencrypted.tf +0 -16
- package/semgrep-rules/terraform/aws/security/aws-athena-database-unencrypted.yaml +0 -39
- package/semgrep-rules/terraform/aws/security/aws-athena-workgroup-unencrypted.tf +0 -30
- package/semgrep-rules/terraform/aws/security/aws-athena-workgroup-unencrypted.yaml +0 -53
- package/semgrep-rules/terraform/aws/security/aws-backup-vault-unencrypted.tf +0 -10
- package/semgrep-rules/terraform/aws/security/aws-backup-vault-unencrypted.yaml +0 -30
- package/semgrep-rules/terraform/aws/security/aws-cloudfront-insecure-tls.tf +0 -424
- package/semgrep-rules/terraform/aws/security/aws-cloudfront-insecure-tls.yaml +0 -65
- package/semgrep-rules/terraform/aws/security/aws-cloudtrail-encrypted-with-cmk.tf +0 -13
- package/semgrep-rules/terraform/aws/security/aws-cloudtrail-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-cloudwatch-log-group-no-retention.tf +0 -5
- package/semgrep-rules/terraform/aws/security/aws-cloudwatch-log-group-no-retention.yaml +0 -33
- package/semgrep-rules/terraform/aws/security/aws-cloudwatch-log-group-unencrypted.tf +0 -8
- package/semgrep-rules/terraform/aws/security/aws-cloudwatch-log-group-unencrypted.yaml +0 -36
- package/semgrep-rules/terraform/aws/security/aws-codebuild-artifacts-unencrypted.tf +0 -387
- package/semgrep-rules/terraform/aws/security/aws-codebuild-artifacts-unencrypted.yaml +0 -46
- package/semgrep-rules/terraform/aws/security/aws-codebuild-project-artifacts-unencrypted.tf +0 -32
- package/semgrep-rules/terraform/aws/security/aws-codebuild-project-artifacts-unencrypted.yaml +0 -51
- package/semgrep-rules/terraform/aws/security/aws-codebuild-project-unencrypted.tf +0 -59
- package/semgrep-rules/terraform/aws/security/aws-codebuild-project-unencrypted.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-config-aggregator-not-all-regions.tf +0 -39
- package/semgrep-rules/terraform/aws/security/aws-config-aggregator-not-all-regions.yaml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-db-instance-no-logging.tf +0 -41
- package/semgrep-rules/terraform/aws/security/aws-db-instance-no-logging.yaml +0 -33
- package/semgrep-rules/terraform/aws/security/aws-docdb-encrypted-with-cmk.tf +0 -19
- package/semgrep-rules/terraform/aws/security/aws-docdb-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-documentdb-auditing-disabled.tf +0 -34
- package/semgrep-rules/terraform/aws/security/aws-documentdb-auditing-disabled.yaml +0 -37
- package/semgrep-rules/terraform/aws/security/aws-documentdb-storage-unencrypted.tf +0 -34
- package/semgrep-rules/terraform/aws/security/aws-documentdb-storage-unencrypted.yaml +0 -37
- package/semgrep-rules/terraform/aws/security/aws-dynamodb-point-in-time-recovery-disabled.tf +0 -40
- package/semgrep-rules/terraform/aws/security/aws-dynamodb-point-in-time-recovery-disabled.yaml +0 -41
- package/semgrep-rules/terraform/aws/security/aws-dynamodb-table-unencrypted.tf +0 -73
- package/semgrep-rules/terraform/aws/security/aws-dynamodb-table-unencrypted.yaml +0 -39
- package/semgrep-rules/terraform/aws/security/aws-ebs-snapshot-encrypted-with-cmk.tf +0 -20
- package/semgrep-rules/terraform/aws/security/aws-ebs-snapshot-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/aws/security/aws-ebs-unencrypted.tf +0 -14
- package/semgrep-rules/terraform/aws/security/aws-ebs-unencrypted.yaml +0 -28
- package/semgrep-rules/terraform/aws/security/aws-ebs-volume-encrypted-with-cmk.tf +0 -20
- package/semgrep-rules/terraform/aws/security/aws-ebs-volume-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/aws/security/aws-ebs-volume-unencrypted.tf +0 -16
- package/semgrep-rules/terraform/aws/security/aws-ebs-volume-unencrypted.yaml +0 -39
- package/semgrep-rules/terraform/aws/security/aws-ec2-has-public-ip.tf +0 -53
- package/semgrep-rules/terraform/aws/security/aws-ec2-has-public-ip.yaml +0 -43
- package/semgrep-rules/terraform/aws/security/aws-ec2-launch-configuration-ebs-block-device-unencrypted.tf +0 -84
- package/semgrep-rules/terraform/aws/security/aws-ec2-launch-configuration-ebs-block-device-unencrypted.yaml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-ec2-launch-configuration-root-block-device-unencrypted.tf +0 -40
- package/semgrep-rules/terraform/aws/security/aws-ec2-launch-configuration-root-block-device-unencrypted.yml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-ec2-launch-template-metadata-service-v1-enabled.tf +0 -72
- package/semgrep-rules/terraform/aws/security/aws-ec2-launch-template-metadata-service-v1-enabled.yaml +0 -53
- package/semgrep-rules/terraform/aws/security/aws-ec2-security-group-allows-public-ingress.tf +0 -1880
- package/semgrep-rules/terraform/aws/security/aws-ec2-security-group-allows-public-ingress.yaml +0 -87
- package/semgrep-rules/terraform/aws/security/aws-ec2-security-group-rule-missing-description.tf +0 -208
- package/semgrep-rules/terraform/aws/security/aws-ec2-security-group-rule-missing-description.yaml +0 -97
- package/semgrep-rules/terraform/aws/security/aws-ecr-image-scanning-disabled.tf +0 -22
- package/semgrep-rules/terraform/aws/security/aws-ecr-image-scanning-disabled.yaml +0 -42
- package/semgrep-rules/terraform/aws/security/aws-ecr-mutable-image-tags.tf +0 -16
- package/semgrep-rules/terraform/aws/security/aws-ecr-mutable-image-tags.yaml +0 -38
- package/semgrep-rules/terraform/aws/security/aws-ecr-repository-wildcard-principal.tf +0 -370
- package/semgrep-rules/terraform/aws/security/aws-ecr-repository-wildcard-principal.yaml +0 -65
- package/semgrep-rules/terraform/aws/security/aws-efs-filesystem-encrypted-with-cmk.tf +0 -8
- package/semgrep-rules/terraform/aws/security/aws-efs-filesystem-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/aws/security/aws-elasticsearch-insecure-tls-version.tf +0 -17
- package/semgrep-rules/terraform/aws/security/aws-elasticsearch-insecure-tls-version.yaml +0 -35
- package/semgrep-rules/terraform/aws/security/aws-elasticsearch-nodetonode-encryption.tf +0 -73
- package/semgrep-rules/terraform/aws/security/aws-elasticsearch-nodetonode-encryption.yaml +0 -61
- package/semgrep-rules/terraform/aws/security/aws-elb-access-logs-not-enabled.tf +0 -91
- package/semgrep-rules/terraform/aws/security/aws-elb-access-logs-not-enabled.yaml +0 -50
- package/semgrep-rules/terraform/aws/security/aws-emr-encrypted-with-cmk.tf +0 -45
- package/semgrep-rules/terraform/aws/security/aws-emr-encrypted-with-cmk.yaml +0 -35
- package/semgrep-rules/terraform/aws/security/aws-fsx-lustre-file-system.tf +0 -14
- package/semgrep-rules/terraform/aws/security/aws-fsx-lustre-files-ystem.yaml +0 -36
- package/semgrep-rules/terraform/aws/security/aws-fsx-lustre-filesystem-encrypted-with-cmk.tf +0 -14
- package/semgrep-rules/terraform/aws/security/aws-fsx-lustre-filesystem-encrypted-with-cmk.yaml +0 -35
- package/semgrep-rules/terraform/aws/security/aws-fsx-ontapfs-encrypted-with-cmk.tf +0 -16
- package/semgrep-rules/terraform/aws/security/aws-fsx-ontapfs-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-fsx-windows-encrypted-with-cmk.tf +0 -16
- package/semgrep-rules/terraform/aws/security/aws-fsx-windows-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-glacier-vault-any-principal.tf +0 -154
- package/semgrep-rules/terraform/aws/security/aws-glacier-vault-any-principal.yaml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-iam-admin-policy-ssoadmin.tf +0 -58
- package/semgrep-rules/terraform/aws/security/aws-iam-admin-policy-ssoadmin.yaml +0 -44
- package/semgrep-rules/terraform/aws/security/aws-iam-admin-policy.tf +0 -139
- package/semgrep-rules/terraform/aws/security/aws-iam-admin-policy.yaml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-imagebuilder-component-encrypted-with-cmk.tf +0 -41
- package/semgrep-rules/terraform/aws/security/aws-imagebuilder-component-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-insecure-api-gateway-tls-version.tf +0 -25
- package/semgrep-rules/terraform/aws/security/aws-insecure-api-gateway-tls-version.yaml +0 -53
- package/semgrep-rules/terraform/aws/security/aws-insecure-redshift-ssl-configuration.tf +0 -53
- package/semgrep-rules/terraform/aws/security/aws-insecure-redshift-ssl-configuration.yaml +0 -47
- package/semgrep-rules/terraform/aws/security/aws-kinesis-stream-encrypted-with-cmk.tf +0 -12
- package/semgrep-rules/terraform/aws/security/aws-kinesis-stream-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-kinesis-stream-unencrypted.tf +0 -28
- package/semgrep-rules/terraform/aws/security/aws-kinesis-stream-unencrypted.yaml +0 -40
- package/semgrep-rules/terraform/aws/security/aws-kinesis-video-stream-encrypted-with-cmk.tf +0 -14
- package/semgrep-rules/terraform/aws/security/aws-kinesis-video-stream-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-kms-key-wildcard-principal.tf +0 -184
- package/semgrep-rules/terraform/aws/security/aws-kms-key-wildcard-principal.yaml +0 -46
- package/semgrep-rules/terraform/aws/security/aws-kms-no-rotation.tf +0 -42
- package/semgrep-rules/terraform/aws/security/aws-kms-no-rotation.yaml +0 -54
- package/semgrep-rules/terraform/aws/security/aws-lambda-environment-credentials.tf +0 -37
- package/semgrep-rules/terraform/aws/security/aws-lambda-environment-credentials.yaml +0 -49
- package/semgrep-rules/terraform/aws/security/aws-lambda-environment-unencrypted.tf +0 -75
- package/semgrep-rules/terraform/aws/security/aws-lambda-environment-unencrypted.yaml +0 -49
- package/semgrep-rules/terraform/aws/security/aws-lambda-permission-unrestricted-source-arn.tf +0 -64
- package/semgrep-rules/terraform/aws/security/aws-lambda-permission-unrestricted-source-arn.yaml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-lambda-x-ray-tracing-not-active.tf +0 -26
- package/semgrep-rules/terraform/aws/security/aws-lambda-x-ray-tracing-not-active.yaml +0 -42
- package/semgrep-rules/terraform/aws/security/aws-network-acl-allows-all-ports.tf +0 -529
- package/semgrep-rules/terraform/aws/security/aws-network-acl-allows-all-ports.yaml +0 -63
- package/semgrep-rules/terraform/aws/security/aws-network-acl-allows-public-ingress.tf +0 -1667
- package/semgrep-rules/terraform/aws/security/aws-network-acl-allows-public-ingress.yaml +0 -86
- package/semgrep-rules/terraform/aws/security/aws-opensearchserverless-encrypted-with-cmk.tf +0 -84
- package/semgrep-rules/terraform/aws/security/aws-opensearchserverless-encrypted-with-cmk.yaml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-provider-static-credentials.tf +0 -23
- package/semgrep-rules/terraform/aws/security/aws-provider-static-credentials.yaml +0 -37
- package/semgrep-rules/terraform/aws/security/aws-provisioner-exec.tf +0 -71
- package/semgrep-rules/terraform/aws/security/aws-provisioner-exec.yaml +0 -41
- package/semgrep-rules/terraform/aws/security/aws-rds-backup-no-retention.tf +0 -21
- package/semgrep-rules/terraform/aws/security/aws-rds-backup-no-retention.yaml +0 -36
- package/semgrep-rules/terraform/aws/security/aws-redshift-cluster-encrypted-with-cmk.tf +0 -26
- package/semgrep-rules/terraform/aws/security/aws-redshift-cluster-encrypted-with-cmk.yaml +0 -35
- package/semgrep-rules/terraform/aws/security/aws-s3-bucket-object-encrypted-with-cmk.tf +0 -15
- package/semgrep-rules/terraform/aws/security/aws-s3-bucket-object-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-s3-object-copy-encrypted-with-cmk.tf +0 -14
- package/semgrep-rules/terraform/aws/security/aws-s3-object-copy-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-sagemaker-domain-encrypted-with-cmk.tf +0 -30
- package/semgrep-rules/terraform/aws/security/aws-sagemaker-domain-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-secretsmanager-secret-unencrypted.tf +0 -24
- package/semgrep-rules/terraform/aws/security/aws-secretsmanager-secret-unencrypted.yaml +0 -36
- package/semgrep-rules/terraform/aws/security/aws-sns-topic-unencrypted.tf +0 -6
- package/semgrep-rules/terraform/aws/security/aws-sns-topic-unencrypted.yaml +0 -37
- package/semgrep-rules/terraform/aws/security/aws-sqs-queue-policy-wildcard-action.tf +0 -855
- package/semgrep-rules/terraform/aws/security/aws-sqs-queue-policy-wildcard-action.yaml +0 -71
- package/semgrep-rules/terraform/aws/security/aws-sqs-queue-policy-wildcard-principal.tf +0 -725
- package/semgrep-rules/terraform/aws/security/aws-sqs-queue-policy-wildcard-principal.yaml +0 -72
- package/semgrep-rules/terraform/aws/security/aws-sqs-queue-unencrypted.tf +0 -23
- package/semgrep-rules/terraform/aws/security/aws-sqs-queue-unencrypted.yaml +0 -45
- package/semgrep-rules/terraform/aws/security/aws-ssm-document-logging-issues.tf +0 -287
- package/semgrep-rules/terraform/aws/security/aws-ssm-document-logging-issues.yaml +0 -42
- package/semgrep-rules/terraform/aws/security/aws-subnet-has-public-ip-address.tf +0 -33
- package/semgrep-rules/terraform/aws/security/aws-subnet-has-public-ip-address.yaml +0 -46
- package/semgrep-rules/terraform/aws/security/aws-timestream-database-encrypted-with-cmk.tf +0 -13
- package/semgrep-rules/terraform/aws/security/aws-timestream-database-encrypted-with-cmk.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-transfer-server-is-public.tf +0 -18
- package/semgrep-rules/terraform/aws/security/aws-transfer-server-is-public.yaml +0 -36
- package/semgrep-rules/terraform/aws/security/aws-workspaces-root-volume-unencrypted.tf +0 -38
- package/semgrep-rules/terraform/aws/security/aws-workspaces-root-volume-unencrypted.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/aws-workspaces-user-volume-unencrypted.tf +0 -34
- package/semgrep-rules/terraform/aws/security/aws-workspaces-user-volume-unencrypted.yaml +0 -33
- package/semgrep-rules/terraform/aws/security/insecure-load-balancer-tls-version.tf +0 -222
- package/semgrep-rules/terraform/aws/security/insecure-load-balancer-tls-version.yaml +0 -62
- package/semgrep-rules/terraform/aws/security/missing-athena-workgroup-encryption.tf +0 -31
- package/semgrep-rules/terraform/aws/security/missing-athena-workgroup-encryption.yaml +0 -34
- package/semgrep-rules/terraform/aws/security/unrestricted-github-oidc-policy.tf +0 -32
- package/semgrep-rules/terraform/aws/security/unrestricted-github-oidc-policy.yaml +0 -50
- package/semgrep-rules/terraform/aws/security/wildcard-assume-role.tf +0 -39
- package/semgrep-rules/terraform/aws/security/wildcard-assume-role.yaml +0 -38
- package/semgrep-rules/terraform/azure/best-practice/azure-ad-used-auth-service-fabric.tf +0 -41
- package/semgrep-rules/terraform/azure/best-practice/azure-ad-used-auth-service-fabric.yaml +0 -25
- package/semgrep-rules/terraform/azure/best-practice/azure-aks-uses-azure-policies-addon.tf +0 -105
- package/semgrep-rules/terraform/azure/best-practice/azure-aks-uses-azure-policies-addon.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-appgateway-enables-waf.tf +0 -173
- package/semgrep-rules/terraform/azure/best-practice/azure-appgateway-enables-waf.yaml +0 -25
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-dotnet-framework-version.tf +0 -39
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-dotnet-framework-version.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-ftps-state.tf +0 -45
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-ftps-state.yaml +0 -33
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-https-20-enabled.tf +0 -20
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-https-20-enabled.yaml +0 -25
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-java-version.tf +0 -26
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-java-version.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-php-version.tf +0 -26
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-php-version.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-python-version.tf +0 -26
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-python-version.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-used-azure-files.tf +0 -45
- package/semgrep-rules/terraform/azure/best-practice/azure-appservice-used-azure-files.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-appservices.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-appservices.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-container-registry.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-container-registry.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-keyvaults.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-keyvaults.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-kubernetes.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-kubernetes.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-servers.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-servers.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-sqlservers-vms.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-sqlservers-vms.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-sqlservers.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-sqlservers.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-storage.tf +0 -12
- package/semgrep-rules/terraform/azure/best-practice/azure-defenderon-storage.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-frontdoor-enables-waf.tf +0 -93
- package/semgrep-rules/terraform/azure/best-practice/azure-frontdoor-enables-waf.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-frontdoor-use-wafmode.tf +0 -512
- package/semgrep-rules/terraform/azure/best-practice/azure-frontdoor-use-wafmode.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-functionapp-http-version-latest.tf +0 -40
- package/semgrep-rules/terraform/azure/best-practice/azure-functionapp-http-version-latest.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-functionapps-accessible-over-https.tf +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-functionapps-accessible-over-https.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-enables-firewall-rules-settings.tf +0 -97
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-enables-firewall-rules-settings.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-enables-purge-protection.tf +0 -90
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-enables-purge-protection.yaml +0 -22
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-enables-soft-delete.tf +0 -90
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-enables-soft-delete.yaml +0 -19
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-recovery-enabled.tf +0 -45
- package/semgrep-rules/terraform/azure/best-practice/azure-keyvault-recovery-enabled.yaml +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-mariadb-geo-backup-enabled.tf +0 -51
- package/semgrep-rules/terraform/azure/best-practice/azure-mariadb-geo-backup-enabled.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-mariadb-sslenforcement-enabled.tf +0 -34
- package/semgrep-rules/terraform/azure/best-practice/azure-mariadb-sslenforcement-enabled.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-monitor-log-profile-categories.tf +0 -63
- package/semgrep-rules/terraform/azure/best-practice/azure-monitor-log-profile-categories.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-monitor-log-profile-retention-days.tf +0 -69
- package/semgrep-rules/terraform/azure/best-practice/azure-monitor-log-profile-retention-days.yaml +0 -39
- package/semgrep-rules/terraform/azure/best-practice/azure-mysql-geo-backup-enabled.tf +0 -56
- package/semgrep-rules/terraform/azure/best-practice/azure-mysql-geo-backup-enabled.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-mysql-server-tlsenforcement-enabled.tf +0 -44
- package/semgrep-rules/terraform/azure/best-practice/azure-mysql-server-tlsenforcement-enabled.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-mysql-threat-detection-enabled.tf +0 -74
- package/semgrep-rules/terraform/azure/best-practice/azure-mysql-threat-detection-enabled.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-networkinterface-enable-ip-forwarding.tf +0 -41
- package/semgrep-rules/terraform/azure/best-practice/azure-networkinterface-enable-ip-forwarding.yaml +0 -31
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-flexi-server-geo-backup-enabled.tf +0 -62
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-flexi-server-geo-backup-enabled.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-geo-backup-enabled.tf +0 -64
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-geo-backup-enabled.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-server-connection-throttling-enabled.tf +0 -16
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-server-connection-throttling-enabled.yaml +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-server-log-checkpoint-enabled.tf +0 -16
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-server-log-checkpoint-enabled.yaml +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-server-log-connections-enabled.tf +0 -16
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-server-log-connections-enabled.yaml +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-ssl-enforcement-enabled.tf +0 -44
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-ssl-enforcement-enabled.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-threat-detection-enabled.tf +0 -74
- package/semgrep-rules/terraform/azure/best-practice/azure-postgresql-threat-detection-enabled.yaml +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-secret-content-type.tf +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-secret-content-type.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-secret-expiration-date.tf +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-secret-expiration-date.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-securitcenter-email-alert.tf +0 -13
- package/semgrep-rules/terraform/azure/best-practice/azure-securitcenter-email-alert.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-contact-emails.tf +0 -17
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-contact-emails.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-contact-phone.tf +0 -11
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-contact-phone.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-email-alert-admins.tf +0 -14
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-email-alert-admins.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-standard-pricing.tf +0 -10
- package/semgrep-rules/terraform/azure/best-practice/azure-securitycenter-standard-pricing.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-sqlserver-email-alerts-enabled.tf +0 -26
- package/semgrep-rules/terraform/azure/best-practice/azure-sqlserver-email-alerts-enabled.yaml +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-sqlserver-email-alerts-toadmins-enabled.tf +0 -27
- package/semgrep-rules/terraform/azure/best-practice/azure-sqlserver-email-alerts-toadmins-enabled.yaml +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-sqlserver-threat-detection-types.tf +0 -25
- package/semgrep-rules/terraform/azure/best-practice/azure-sqlserver-threat-detection-types.yaml +0 -24
- package/semgrep-rules/terraform/azure/best-practice/azure-storage-account-enables-secure-transfer.tf +0 -40
- package/semgrep-rules/terraform/azure/best-practice/azure-storage-account-enables-secure-transfer.yaml +0 -19
- package/semgrep-rules/terraform/azure/best-practice/azure-synapse-workscape-enables-managed-virtual-network.tf +0 -60
- package/semgrep-rules/terraform/azure/best-practice/azure-synapse-workscape-enables-managed-virtual-network.yaml +0 -23
- package/semgrep-rules/terraform/azure/best-practice/azure-vmscale-sets-auto-os-image-patching-enabled.tf +0 -488
- package/semgrep-rules/terraform/azure/best-practice/azure-vmscale-sets-auto-os-image-patching-enabled.yaml +0 -28
- package/semgrep-rules/terraform/azure/best-practice/azure-waf-specificed-mode-app-gw.tf +0 -512
- package/semgrep-rules/terraform/azure/best-practice/azure-waf-specificed-mode-app-gw.yaml +0 -21
- package/semgrep-rules/terraform/azure/security/aks/azure-aks-apiserver-auth-ip-ranges.tf +0 -59
- package/semgrep-rules/terraform/azure/security/aks/azure-aks-apiserver-auth-ip-ranges.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/aks/azure-aks-private-clusters-enabled.tf +0 -67
- package/semgrep-rules/terraform/azure/security/aks/azure-aks-private-clusters-enabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/aks/azure-aks-uses-disk-encryptionset.tf +0 -45
- package/semgrep-rules/terraform/azure/security/aks/azure-aks-uses-disk-encryptionset.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/apiservice/azure-apiservices-use-virtualnetwork.tf +0 -48
- package/semgrep-rules/terraform/azure/security/apiservice/azure-apiservices-use-virtualnetwork.yaml +0 -37
- package/semgrep-rules/terraform/azure/security/appservice/appservice-account-identity-registered.tf +0 -53
- package/semgrep-rules/terraform/azure/security/appservice/appservice-account-identity-registered.yaml +0 -50
- package/semgrep-rules/terraform/azure/security/appservice/appservice-authentication-enabled.tf +0 -31
- package/semgrep-rules/terraform/azure/security/appservice/appservice-authentication-enabled.yaml +0 -53
- package/semgrep-rules/terraform/azure/security/appservice/appservice-enable-http2.tf +0 -28
- package/semgrep-rules/terraform/azure/security/appservice/appservice-enable-http2.yaml +0 -51
- package/semgrep-rules/terraform/azure/security/appservice/appservice-enable-https-only.tf +0 -24
- package/semgrep-rules/terraform/azure/security/appservice/appservice-enable-https-only.yaml +0 -45
- package/semgrep-rules/terraform/azure/security/appservice/appservice-require-client-cert.tf +0 -28
- package/semgrep-rules/terraform/azure/security/appservice/appservice-require-client-cert.yaml +0 -44
- package/semgrep-rules/terraform/azure/security/appservice/appservice-use-secure-tls-policy.tf +0 -54
- package/semgrep-rules/terraform/azure/security/appservice/appservice-use-secure-tls-policy.yaml +0 -32
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-auth.tf +0 -23
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-auth.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-client-certificate.tf +0 -17
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-client-certificate.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-detailed-errormessages-enabled.tf +0 -145
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-detailed-errormessages-enabled.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-disallowed-cors.tf +0 -75
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-disallowed-cors.yaml +0 -30
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-enabled-failed-request.tf +0 -62
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-enabled-failed-request.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-http-logging-enabled.tf +0 -195
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-http-logging-enabled.yaml +0 -51
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-https-only.tf +0 -17
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-https-only.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-identity.tf +0 -21
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-identity.yaml +0 -38
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-identityprovider-enabled.tf +0 -39
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-identityprovider-enabled.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-min-tls-version.tf +0 -19
- package/semgrep-rules/terraform/azure/security/appservice/azure-appservice-min-tls-version.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-automation-encrypted.tf +0 -27
- package/semgrep-rules/terraform/azure/security/azure-automation-encrypted.yaml +0 -54
- package/semgrep-rules/terraform/azure/security/azure-batchaccount-uses-keyvault-encrpytion.tf +0 -30
- package/semgrep-rules/terraform/azure/security/azure-batchaccount-uses-keyvault-encrpytion.yaml +0 -36
- package/semgrep-rules/terraform/azure/security/azure-cognitiveservices-disables-public-network.tf +0 -30
- package/semgrep-rules/terraform/azure/security/azure-cognitiveservices-disables-public-network.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-containergroup-deployed-into-virtualnetwork.tf +0 -60
- package/semgrep-rules/terraform/azure/security/azure-containergroup-deployed-into-virtualnetwork.yaml +0 -42
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-accounts-restricted-access.tf +0 -401
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-accounts-restricted-access.yaml +0 -49
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-disable-access-key-write.tf +0 -13
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-disable-access-key-write.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-disables-public-network.tf +0 -124
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-disables-public-network.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-have-cmk.tf +0 -80
- package/semgrep-rules/terraform/azure/security/azure-cosmosdb-have-cmk.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-customrole-definition-subscription-owner.tf +0 -70
- package/semgrep-rules/terraform/azure/security/azure-customrole-definition-subscription-owner.yaml +0 -33
- package/semgrep-rules/terraform/azure/security/azure-dataexplorer-double-encryption-enabled.tf +0 -52
- package/semgrep-rules/terraform/azure/security/azure-dataexplorer-double-encryption-enabled.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-dataexplorer-uses-disk-encryption.tf +0 -50
- package/semgrep-rules/terraform/azure/security/azure-dataexplorer-uses-disk-encryption.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-datafactory-no-public-network-access.tf +0 -24
- package/semgrep-rules/terraform/azure/security/azure-datafactory-no-public-network-access.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-datafactory-uses-git-repository.tf +0 -38
- package/semgrep-rules/terraform/azure/security/azure-datafactory-uses-git-repository.yaml +0 -45
- package/semgrep-rules/terraform/azure/security/azure-datalake-store-encryption.tf +0 -25
- package/semgrep-rules/terraform/azure/security/azure-datalake-store-encryption.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-eventgrid-domain-network-access.tf +0 -26
- package/semgrep-rules/terraform/azure/security/azure-eventgrid-domain-network-access.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-functionapp-disallow-cors.tf +0 -40
- package/semgrep-rules/terraform/azure/security/azure-functionapp-disallow-cors.yaml +0 -29
- package/semgrep-rules/terraform/azure/security/azure-functionapps-enable-auth.tf +0 -37
- package/semgrep-rules/terraform/azure/security/azure-functionapps-enable-auth.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/azure-instance-extensions.tf +0 -125
- package/semgrep-rules/terraform/azure/security/azure-instance-extensions.yaml +0 -46
- package/semgrep-rules/terraform/azure/security/azure-iot-no-public-network-access.tf +0 -164
- package/semgrep-rules/terraform/azure/security/azure-iot-no-public-network-access.yaml +0 -31
- package/semgrep-rules/terraform/azure/security/azure-key-backedby-hsm.tf +0 -53
- package/semgrep-rules/terraform/azure/security/azure-key-backedby-hsm.yaml +0 -40
- package/semgrep-rules/terraform/azure/security/azure-key-no-expiration-date.tf +0 -35
- package/semgrep-rules/terraform/azure/security/azure-key-no-expiration-date.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-managed-disk-encryption-set.tf +0 -27
- package/semgrep-rules/terraform/azure/security/azure-managed-disk-encryption-set.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-managed-disk-encryption.tf +0 -56
- package/semgrep-rules/terraform/azure/security/azure-managed-disk-encryption.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-mariadb-public-access-disabled.tf +0 -34
- package/semgrep-rules/terraform/azure/security/azure-mariadb-public-access-disabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-monitor-log-profile-retention-days.tf +0 -73
- package/semgrep-rules/terraform/azure/security/azure-monitor-log-profile-retention-days.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/azure-mssql-service-mintls-version.tf +0 -32
- package/semgrep-rules/terraform/azure/security/azure-mssql-service-mintls-version.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-mysql-encryption-enabled.tf +0 -56
- package/semgrep-rules/terraform/azure/security/azure-mysql-encryption-enabled.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-mysql-mintls-version.tf +0 -44
- package/semgrep-rules/terraform/azure/security/azure-mysql-mintls-version.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-mysql-public-access-disabled.tf +0 -57
- package/semgrep-rules/terraform/azure/security/azure-mysql-public-access-disabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-network-watcher-flowlog-period.tf +0 -56
- package/semgrep-rules/terraform/azure/security/azure-network-watcher-flowlog-period.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/azure-postgresql-encryption-enabled.tf +0 -56
- package/semgrep-rules/terraform/azure/security/azure-postgresql-encryption-enabled.yaml +0 -34
- package/semgrep-rules/terraform/azure/security/azure-postgresql-min-tls-version.tf +0 -44
- package/semgrep-rules/terraform/azure/security/azure-postgresql-min-tls-version.yaml +0 -42
- package/semgrep-rules/terraform/azure/security/azure-postgresql-server-public-access-disabled.tf +0 -65
- package/semgrep-rules/terraform/azure/security/azure-postgresql-server-public-access-disabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-redis-cache-enable-non-ssl-port.tf +0 -45
- package/semgrep-rules/terraform/azure/security/azure-redis-cache-enable-non-ssl-port.yaml +0 -31
- package/semgrep-rules/terraform/azure/security/azure-redis-cache-public-network-access-enabled.tf +0 -47
- package/semgrep-rules/terraform/azure/security/azure-redis-cache-public-network-access-enabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-remote-debugging-not-enabled.tf +0 -71
- package/semgrep-rules/terraform/azure/security/azure-remote-debugging-not-enabled.yaml +0 -31
- package/semgrep-rules/terraform/azure/security/azure-scale-set-password.tf +0 -29
- package/semgrep-rules/terraform/azure/security/azure-scale-set-password.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-search-publicnetwork-access-disabled.tf +0 -27
- package/semgrep-rules/terraform/azure/security/azure-search-publicnetwork-access-disabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-service-fabric-cluster-protection-level.tf +0 -45
- package/semgrep-rules/terraform/azure/security/azure-service-fabric-cluster-protection-level.yaml +0 -43
- package/semgrep-rules/terraform/azure/security/azure-sqlserver-no-public-access.tf +0 -27
- package/semgrep-rules/terraform/azure/security/azure-sqlserver-no-public-access.yaml +0 -32
- package/semgrep-rules/terraform/azure/security/azure-sqlserver-public-access-disabled.tf +0 -48
- package/semgrep-rules/terraform/azure/security/azure-sqlserver-public-access-disabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-storage-account-disable-public-access.tf +0 -42
- package/semgrep-rules/terraform/azure/security/azure-storage-account-disable-public-access.yaml +0 -31
- package/semgrep-rules/terraform/azure/security/azure-storage-account-minimum-tlsversion.tf +0 -61
- package/semgrep-rules/terraform/azure/security/azure-storage-account-minimum-tlsversion.yaml +0 -41
- package/semgrep-rules/terraform/azure/security/azure-storage-blob-service-container-private-access.tf +0 -14
- package/semgrep-rules/terraform/azure/security/azure-storage-blob-service-container-private-access.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-storage-sync-public-access-disabled.tf +0 -33
- package/semgrep-rules/terraform/azure/security/azure-storage-sync-public-access-disabled.yaml +0 -35
- package/semgrep-rules/terraform/azure/security/azure-vmencryption-at-host-enabled.tf +0 -211
- package/semgrep-rules/terraform/azure/security/azure-vmencryption-at-host-enabled.yaml +0 -45
- package/semgrep-rules/terraform/azure/security/functionapp/functionapp-authentication-enabled.tf +0 -31
- package/semgrep-rules/terraform/azure/security/functionapp/functionapp-authentication-enabled.yaml +0 -53
- package/semgrep-rules/terraform/azure/security/functionapp/functionapp-enable-http2.tf +0 -29
- package/semgrep-rules/terraform/azure/security/functionapp/functionapp-enable-http2.yaml +0 -51
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-content-type-for-secret.tf +0 -13
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-content-type-for-secret.yaml +0 -26
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-ensure-key-expires.tf +0 -33
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-ensure-key-expires.yaml +0 -33
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-ensure-secret-expires.tf +0 -33
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-ensure-secret-expires.yaml +0 -33
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-purge-enabled.tf +0 -22
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-purge-enabled.yaml +0 -40
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-specify-network-acl.tf +0 -35
- package/semgrep-rules/terraform/azure/security/keyvault/keyvault-specify-network-acl.yaml +0 -54
- package/semgrep-rules/terraform/azure/security/storage/storage-allow-microsoft-service-bypass.tf +0 -63
- package/semgrep-rules/terraform/azure/security/storage/storage-allow-microsoft-service-bypass.yaml +0 -63
- package/semgrep-rules/terraform/azure/security/storage/storage-default-action-deny.tf +0 -16
- package/semgrep-rules/terraform/azure/security/storage/storage-default-action-deny.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/storage/storage-enforce-https.tf +0 -20
- package/semgrep-rules/terraform/azure/security/storage/storage-enforce-https.yaml +0 -39
- package/semgrep-rules/terraform/azure/security/storage/storage-queue-services-logging.tf +0 -27
- package/semgrep-rules/terraform/azure/security/storage/storage-queue-services-logging.yaml +0 -53
- package/semgrep-rules/terraform/azure/security/storage/storage-use-secure-tls-policy.tf +0 -32
- package/semgrep-rules/terraform/azure/security/storage/storage-use-secure-tls-policy.yaml +0 -45
- package/semgrep-rules/terraform/gcp/best-practice/gcp-compute-shielded-vm.tf +0 -32
- package/semgrep-rules/terraform/gcp/best-practice/gcp-compute-shielded-vm.yaml +0 -40
- package/semgrep-rules/terraform/gcp/best-practice/gcp-compute-template-shielded-vm.tf +0 -29
- package/semgrep-rules/terraform/gcp/best-practice/gcp-compute-template-shielded-vm.yaml +0 -25
- package/semgrep-rules/terraform/gcp/best-practice/gcp-dnssec-enabled.tf +0 -28
- package/semgrep-rules/terraform/gcp/best-practice/gcp-dnssec-enabled.yaml +0 -25
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-alias-ip-enabled.tf +0 -15
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-alias-ip-enabled.yaml +0 -27
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-binary-authorization.tf +0 -231
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-binary-authorization.yaml +0 -23
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-enable-shielded-nodes.tf +0 -228
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-enable-shielded-nodes.yaml +0 -19
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-has-labels.tf +0 -32
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-has-labels.yaml +0 -25
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-metadata-server-enabled.tf +0 -88
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-metadata-server-enabled.yaml +0 -55
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-auto-repair-enabled.tf +0 -22
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-auto-repair-enabled.yaml +0 -23
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-auto-upgrade-enabled.tf +0 -22
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-auto-upgrade-enabled.yaml +0 -23
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-metadata-server-enabled.tf +0 -78
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-metadata-server-enabled.yaml +0 -45
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-secure-boot-for-shielded-nodes.tf +0 -88
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-nodepool-secure-boot-for-shielded-nodes.yaml +0 -27
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-sql-backup-configuration-enabled.tf +0 -24
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-sql-backup-configuration-enabled.yaml +0 -31
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-use-cos-image.tf +0 -118
- package/semgrep-rules/terraform/gcp/best-practice/gcp-gke-use-cos-image.yaml +0 -26
- package/semgrep-rules/terraform/gcp/best-practice/gcp-ipv6-private-google-enabled.tf +0 -64
- package/semgrep-rules/terraform/gcp/best-practice/gcp-ipv6-private-google-enabled.yaml +0 -29
- package/semgrep-rules/terraform/gcp/best-practice/gcp-mysql-local-in-file-off.tf +0 -93
- package/semgrep-rules/terraform/gcp/best-practice/gcp-mysql-local-in-file-off.yaml +0 -24
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-checkpoints.tf +0 -124
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-checkpoints.yaml +0 -24
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-connection.tf +0 -119
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-connection.yaml +0 -24
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-disconnection.tf +0 -159
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-disconnection.yaml +0 -24
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-lock-waits.tf +0 -113
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-lock-waits.yaml +0 -24
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-min-duration.tf +0 -84
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-min-duration.yaml +0 -32
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-min-message.tf +0 -85
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-min-message.yaml +0 -29
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-temp.tf +0 -128
- package/semgrep-rules/terraform/gcp/best-practice/gcp-postgresql-log-temp.yaml +0 -32
- package/semgrep-rules/terraform/gcp/best-practice/gcp-storage-versioning-enabled.tf +0 -27
- package/semgrep-rules/terraform/gcp/best-practice/gcp-storage-versioning-enabled.yaml +0 -25
- package/semgrep-rules/terraform/gcp/security/gcp-artifact-registry-encrypted-with-cmk.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-artifact-registry-encrypted-with-cmk.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-artifact-registry-private-repo-iam-binding.tf +0 -86
- package/semgrep-rules/terraform/gcp/security/gcp-artifact-registry-private-repo-iam-binding.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-artifact-registry-private-repo-iam-member.tf +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-artifact-registry-private-repo-iam-member.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-dataset-encrypted-with-cmk.tf +0 -36
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-dataset-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-private-table-iam-binding.tf +0 -60
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-private-table-iam-binding.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-private-table-iam-member.tf +0 -29
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-private-table-iam-member.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-table-encrypted-with-cmk.tf +0 -42
- package/semgrep-rules/terraform/gcp/security/gcp-bigquery-table-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-bigtable-instance-encrypted-with-cmk.tf +0 -32
- package/semgrep-rules/terraform/gcp/security/gcp-bigtable-instance-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-build-workers-private.tf +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-build-workers-private.yaml +0 -39
- package/semgrep-rules/terraform/gcp/security/gcp-cloud-storage-logging.tf +0 -17
- package/semgrep-rules/terraform/gcp/security/gcp-cloud-storage-logging.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-compute-boot-disk-encryption.tf +0 -28
- package/semgrep-rules/terraform/gcp/security/gcp-compute-boot-disk-encryption.yaml +0 -43
- package/semgrep-rules/terraform/gcp/security/gcp-compute-disk-encryption.tf +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-compute-disk-encryption.yaml +0 -43
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-20.tf +0 -69
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-20.yaml +0 -46
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-21.tf +0 -69
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-21.yaml +0 -46
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-22.tf +0 -69
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-22.yaml +0 -46
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-3306.tf +0 -67
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-3306.yaml +0 -46
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-3389.tf +0 -67
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-3389.yaml +0 -46
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-80.tf +0 -69
- package/semgrep-rules/terraform/gcp/security/gcp-compute-firewall-unrestricted-ingress-80.yaml +0 -46
- package/semgrep-rules/terraform/gcp/security/gcp-compute-ip-forward.tf +0 -23
- package/semgrep-rules/terraform/gcp/security/gcp-compute-ip-forward.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-compute-os-login.tf +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-compute-os-login.yaml +0 -34
- package/semgrep-rules/terraform/gcp/security/gcp-compute-project-os-login.tf +0 -23
- package/semgrep-rules/terraform/gcp/security/gcp-compute-project-os-login.yaml +0 -45
- package/semgrep-rules/terraform/gcp/security/gcp-compute-public-ip.tf +0 -29
- package/semgrep-rules/terraform/gcp/security/gcp-compute-public-ip.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-compute-serial-ports.tf +0 -30
- package/semgrep-rules/terraform/gcp/security/gcp-compute-serial-ports.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-compute-ssl-policy.tf +0 -30
- package/semgrep-rules/terraform/gcp/security/gcp-compute-ssl-policy.yaml +0 -53
- package/semgrep-rules/terraform/gcp/security/gcp-compute-template-ip-forward.tf +0 -20
- package/semgrep-rules/terraform/gcp/security/gcp-compute-template-ip-forward.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-compute-template-public-ip.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-compute-template-public-ip.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-dataflow-job-encrypted-with-cmk.tf +0 -23
- package/semgrep-rules/terraform/gcp/security/gcp-dataflow-job-encrypted-with-cmk.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-dataflow-private-job.tf +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-dataflow-private-job.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-datafusion-private-instance.tf +0 -41
- package/semgrep-rules/terraform/gcp/security/gcp-datafusion-private-instance.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-datafusion-stack-driver-logging.tf +0 -62
- package/semgrep-rules/terraform/gcp/security/gcp-datafusion-stack-driver-logging.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-datafusion-stack-driver-monitoring.tf +0 -62
- package/semgrep-rules/terraform/gcp/security/gcp-datafusion-stack-driver-monitoring.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-cluster-encrypted-with-cmk.tf +0 -20
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-cluster-encrypted-with-cmk.yaml +0 -39
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-cluster-public-ip.tf +0 -65
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-cluster-public-ip.yaml +0 -41
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-private-cluster-iam-binding.tf +0 -60
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-private-cluster-iam-binding.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-private-cluster-iam-member.tf +0 -29
- package/semgrep-rules/terraform/gcp/security/gcp-dataproc-private-cluster-iam-member.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-dns-key-specs-rsasha1.tf +0 -40
- package/semgrep-rules/terraform/gcp/security/gcp-dns-key-specs-rsasha1.yaml +0 -55
- package/semgrep-rules/terraform/gcp/security/gcp-folder-impersonation-roles-iam-binding.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-folder-impersonation-roles-iam-binding.yaml +0 -32
- package/semgrep-rules/terraform/gcp/security/gcp-folder-impersonation-roles-iam-member.tf +0 -14
- package/semgrep-rules/terraform/gcp/security/gcp-folder-impersonation-roles-iam-member.yaml +0 -32
- package/semgrep-rules/terraform/gcp/security/gcp-folder-member-default-service-account-iam-binding.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-folder-member-default-service-account-iam-binding.yaml +0 -34
- package/semgrep-rules/terraform/gcp/security/gcp-folder-member-default-service-account-iam-member.tf +0 -14
- package/semgrep-rules/terraform/gcp/security/gcp-folder-member-default-service-account-iam-member.yaml +0 -34
- package/semgrep-rules/terraform/gcp/security/gcp-gke-basic-auth.tf +0 -67
- package/semgrep-rules/terraform/gcp/security/gcp-gke-basic-auth.yaml +0 -50
- package/semgrep-rules/terraform/gcp/security/gcp-gke-client-certificate-disabled.tf +0 -24
- package/semgrep-rules/terraform/gcp/security/gcp-gke-client-certificate-disabled.yaml +0 -43
- package/semgrep-rules/terraform/gcp/security/gcp-gke-cluster-logging.tf +0 -31
- package/semgrep-rules/terraform/gcp/security/gcp-gke-cluster-logging.yaml +0 -28
- package/semgrep-rules/terraform/gcp/security/gcp-gke-enabled-vpc-flow-logs.tf +0 -165
- package/semgrep-rules/terraform/gcp/security/gcp-gke-enabled-vpc-flow-logs.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-gke-ensure-integrity-monitoring.tf +0 -233
- package/semgrep-rules/terraform/gcp/security/gcp-gke-ensure-integrity-monitoring.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-gke-kubernetes-rbac-google-groups.tf +0 -50
- package/semgrep-rules/terraform/gcp/security/gcp-gke-kubernetes-rbac-google-groups.yaml +0 -39
- package/semgrep-rules/terraform/gcp/security/gcp-gke-legacy-auth-enabled.tf +0 -15
- package/semgrep-rules/terraform/gcp/security/gcp-gke-legacy-auth-enabled.yaml +0 -31
- package/semgrep-rules/terraform/gcp/security/gcp-gke-legacy-instance-metadata-disabled.tf +0 -94
- package/semgrep-rules/terraform/gcp/security/gcp-gke-legacy-instance-metadata-disabled.yaml +0 -41
- package/semgrep-rules/terraform/gcp/security/gcp-gke-master-authz-networks-enabled.tf +0 -20
- package/semgrep-rules/terraform/gcp/security/gcp-gke-master-authz-networks-enabled.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-gke-monitoring-enabled.tf +0 -14
- package/semgrep-rules/terraform/gcp/security/gcp-gke-monitoring-enabled.yaml +0 -29
- package/semgrep-rules/terraform/gcp/security/gcp-gke-network-policy-enabled.tf +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-gke-network-policy-enabled.yaml +0 -46
- package/semgrep-rules/terraform/gcp/security/gcp-gke-nodepool-integrity-monitoring.tf +0 -89
- package/semgrep-rules/terraform/gcp/security/gcp-gke-nodepool-integrity-monitoring.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-gke-pod-security-policy-enabled.tf +0 -17
- package/semgrep-rules/terraform/gcp/security/gcp-gke-pod-security-policy-enabled.yaml +0 -39
- package/semgrep-rules/terraform/gcp/security/gcp-gke-private-cluster-config.tf +0 -19
- package/semgrep-rules/terraform/gcp/security/gcp-gke-private-cluster-config.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-gke-public-control-plane.tf +0 -19
- package/semgrep-rules/terraform/gcp/security/gcp-gke-public-control-plane.yaml +0 -41
- package/semgrep-rules/terraform/gcp/security/gcp-gke-secure-boot-for-shielded-nodes.tf +0 -237
- package/semgrep-rules/terraform/gcp/security/gcp-gke-secure-boot-for-shielded-nodes.yaml +0 -27
- package/semgrep-rules/terraform/gcp/security/gcp-insecure-load-balancer-tls-version.tf +0 -13
- package/semgrep-rules/terraform/gcp/security/gcp-insecure-load-balancer-tls-version.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-kms-prevent-destroy.tf +0 -30
- package/semgrep-rules/terraform/gcp/security/gcp-kms-prevent-destroy.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-memory-store-for-redis-auth-enabled.tf +0 -50
- package/semgrep-rules/terraform/gcp/security/gcp-memory-store-for-redis-auth-enabled.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-memory-store-for-redis-intransit-encryption.tf +0 -72
- package/semgrep-rules/terraform/gcp/security/gcp-memory-store-for-redis-intransit-encryption.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-org-impersonation-roles-iam-binding.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-org-impersonation-roles-iam-binding.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-org-impersonation-roles-iam-member.tf +0 -14
- package/semgrep-rules/terraform/gcp/security/gcp-org-impersonation-roles-iam-member.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-org-member-default-service-account-iam-binding.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-org-member-default-service-account-iam-binding.yaml +0 -34
- package/semgrep-rules/terraform/gcp/security/gcp-org-member-default-service-account-iam-member.tf +0 -14
- package/semgrep-rules/terraform/gcp/security/gcp-org-member-default-service-account-iam-member.yaml +0 -34
- package/semgrep-rules/terraform/gcp/security/gcp-project-default-network.tf +0 -15
- package/semgrep-rules/terraform/gcp/security/gcp-project-default-network.yaml +0 -36
- package/semgrep-rules/terraform/gcp/security/gcp-project-member-default-service-account-iam-binding.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-project-member-default-service-account-iam-binding.yaml +0 -34
- package/semgrep-rules/terraform/gcp/security/gcp-project-member-default-service-account-iam-member.tf +0 -14
- package/semgrep-rules/terraform/gcp/security/gcp-project-member-default-service-account-iam-member.yaml +0 -34
- package/semgrep-rules/terraform/gcp/security/gcp-project-service-account-user-iam-binding.tf +0 -31
- package/semgrep-rules/terraform/gcp/security/gcp-project-service-account-user-iam-binding.yaml +0 -39
- package/semgrep-rules/terraform/gcp/security/gcp-project-service-account-user-iam-member.tf +0 -22
- package/semgrep-rules/terraform/gcp/security/gcp-project-service-account-user-iam-member.yaml +0 -39
- package/semgrep-rules/terraform/gcp/security/gcp-pubsub-encrypted-with-cmk.tf +0 -11
- package/semgrep-rules/terraform/gcp/security/gcp-pubsub-encrypted-with-cmk.yaml +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-pubsub-private-topic-iam-binding.tf +0 -60
- package/semgrep-rules/terraform/gcp/security/gcp-pubsub-private-topic-iam-binding.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-pubsub-private-topic-iam-member.tf +0 -29
- package/semgrep-rules/terraform/gcp/security/gcp-pubsub-private-topic-iam-member.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-run-private-service-iam-binding.tf +0 -79
- package/semgrep-rules/terraform/gcp/security/gcp-run-private-service-iam-binding.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-run-private-service-iam-member.tf +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-run-private-service-iam-member.yaml +0 -38
- package/semgrep-rules/terraform/gcp/security/gcp-spanner-database-encrypted-with-cmk.tf +0 -25
- package/semgrep-rules/terraform/gcp/security/gcp-spanner-database-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-require-ssl.tf +0 -33
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-require-ssl.yaml +0 -50
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-ssl-insecure-value-postgres-mysql.fixed.tf +0 -138
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-ssl-insecure-value-postgres-mysql.tf +0 -138
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-ssl-insecure-value-postgres-mysql.yaml +0 -58
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-ssl-insecure-value-sqlserver.fixed.tf +0 -138
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-ssl-insecure-value-sqlserver.tf +0 -138
- package/semgrep-rules/terraform/gcp/security/gcp-sql-database-ssl-insecure-value-sqlserver.yaml +0 -58
- package/semgrep-rules/terraform/gcp/security/gcp-sql-public-database.tf +0 -130
- package/semgrep-rules/terraform/gcp/security/gcp-sql-public-database.yaml +0 -58
- package/semgrep-rules/terraform/gcp/security/gcp-sqlserver-no-public-ip.tf +0 -236
- package/semgrep-rules/terraform/gcp/security/gcp-sqlserver-no-public-ip.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-storage-bucket-not-public-iam-binding.tf +0 -19
- package/semgrep-rules/terraform/gcp/security/gcp-storage-bucket-not-public-iam-binding.yaml +0 -31
- package/semgrep-rules/terraform/gcp/security/gcp-storage-bucket-not-public-iam-member.tf +0 -14
- package/semgrep-rules/terraform/gcp/security/gcp-storage-bucket-not-public-iam-member.yaml +0 -31
- package/semgrep-rules/terraform/gcp/security/gcp-storage-bucket-uniform-access.tf +0 -21
- package/semgrep-rules/terraform/gcp/security/gcp-storage-bucket-uniform-access.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-sub-network-logging-enabled.tf +0 -20
- package/semgrep-rules/terraform/gcp/security/gcp-sub-network-logging-enabled.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-sub-network-private-google-enabled.tf +0 -30
- package/semgrep-rules/terraform/gcp/security/gcp-sub-network-private-google-enabled.yaml +0 -35
- package/semgrep-rules/terraform/gcp/security/gcp-vertexai-dataset-encrypted-with-cmk.tf +0 -17
- package/semgrep-rules/terraform/gcp/security/gcp-vertexai-dataset-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-vertexai-metadata-store-encrypted-with-cmk.tf +0 -17
- package/semgrep-rules/terraform/gcp/security/gcp-vertexai-metadata-store-encrypted-with-cmk.yaml +0 -37
- package/semgrep-rules/terraform/gcp/security/gcp-vertexai-private-instance.tf +0 -36
- package/semgrep-rules/terraform/gcp/security/gcp-vertexai-private-instance.yaml +0 -35
- package/semgrep-rules/terraform/lang/security/ec2-imdsv1-optional.tf +0 -47
- package/semgrep-rules/terraform/lang/security/ec2-imdsv1-optional.yaml +0 -68
- package/semgrep-rules/terraform/lang/security/ecr-image-scan-on-push.tf +0 -25
- package/semgrep-rules/terraform/lang/security/ecr-image-scan-on-push.yaml +0 -39
- package/semgrep-rules/terraform/lang/security/eks-insufficient-control-plane-logging.tf +0 -53
- package/semgrep-rules/terraform/lang/security/eks-insufficient-control-plane-logging.yaml +0 -45
- package/semgrep-rules/terraform/lang/security/eks-public-endpoint-enabled.tf +0 -25
- package/semgrep-rules/terraform/lang/security/eks-public-endpoint-enabled.yaml +0 -39
- package/semgrep-rules/terraform/lang/security/elastic-search-encryption-at-rest.tf +0 -55
- package/semgrep-rules/terraform/lang/security/elastic-search-encryption-at-rest.yaml +0 -39
- package/semgrep-rules/terraform/lang/security/iam/no-iam-admin-privileges.tf +0 -104
- package/semgrep-rules/terraform/lang/security/iam/no-iam-admin-privileges.yaml +0 -92
- package/semgrep-rules/terraform/lang/security/iam/no-iam-creds-exposure.tf +0 -114
- package/semgrep-rules/terraform/lang/security/iam/no-iam-creds-exposure.yaml +0 -174
- package/semgrep-rules/terraform/lang/security/iam/no-iam-data-exfiltration.tf +0 -64
- package/semgrep-rules/terraform/lang/security/iam/no-iam-data-exfiltration.yaml +0 -115
- package/semgrep-rules/terraform/lang/security/iam/no-iam-priv-esc-funcs.tf +0 -105
- package/semgrep-rules/terraform/lang/security/iam/no-iam-priv-esc-funcs.yaml +0 -113
- package/semgrep-rules/terraform/lang/security/iam/no-iam-priv-esc-other-users.tf +0 -145
- package/semgrep-rules/terraform/lang/security/iam/no-iam-priv-esc-other-users.yaml +0 -107
- package/semgrep-rules/terraform/lang/security/iam/no-iam-priv-esc-roles.tf +0 -186
- package/semgrep-rules/terraform/lang/security/iam/no-iam-priv-esc-roles.yaml +0 -131
- package/semgrep-rules/terraform/lang/security/iam/no-iam-resource-exposure.tf +0 -72
- package/semgrep-rules/terraform/lang/security/iam/no-iam-resource-exposure.yaml +0 -792
- package/semgrep-rules/terraform/lang/security/iam/no-iam-star-actions.tf +0 -84
- package/semgrep-rules/terraform/lang/security/iam/no-iam-star-actions.yaml +0 -89
- package/semgrep-rules/terraform/lang/security/rds-insecure-password-storage-in-source-code.tf +0 -82
- package/semgrep-rules/terraform/lang/security/rds-insecure-password-storage-in-source-code.yaml +0 -42
- package/semgrep-rules/terraform/lang/security/rds-public-access.tf +0 -30
- package/semgrep-rules/terraform/lang/security/rds-public-access.yaml +0 -30
- package/semgrep-rules/terraform/lang/security/s3-cors-all-origins.tf +0 -27
- package/semgrep-rules/terraform/lang/security/s3-cors-all-origins.yaml +0 -25
- package/semgrep-rules/terraform/lang/security/s3-public-read-bucket.tf +0 -44
- package/semgrep-rules/terraform/lang/security/s3-public-read-bucket.yaml +0 -34
- package/semgrep-rules/terraform/lang/security/s3-public-rw-bucket.tf +0 -10
- package/semgrep-rules/terraform/lang/security/s3-public-rw-bucket.yaml +0 -25
- package/semgrep-rules/terraform/lang/security/s3-unencrypted-bucket.tf +0 -19
- package/semgrep-rules/terraform/lang/security/s3-unencrypted-bucket.yaml +0 -31
- package/semgrep-rules/trusted_python/dlint-redos-detect.py +0 -346
- package/semgrep-rules/typescript/angular/security/audit/angular-domsanitizer.ts +0 -27
- package/semgrep-rules/typescript/angular/security/audit/angular-domsanitizer.yaml +0 -132
- package/semgrep-rules/typescript/aws-cdk/security/audit/awscdk-bucket-encryption.ts +0 -54
- package/semgrep-rules/typescript/aws-cdk/security/audit/awscdk-bucket-encryption.yml +0 -48
- package/semgrep-rules/typescript/aws-cdk/security/audit/awscdk-bucket-enforcessl.ts +0 -42
- package/semgrep-rules/typescript/aws-cdk/security/audit/awscdk-bucket-enforcessl.yml +0 -38
- package/semgrep-rules/typescript/aws-cdk/security/audit/awscdk-sqs-unencryptedqueue.ts +0 -64
- package/semgrep-rules/typescript/aws-cdk/security/audit/awscdk-sqs-unencryptedqueue.yml +0 -43
- package/semgrep-rules/typescript/aws-cdk/security/awscdk-bucket-grantpublicaccessmethod.ts +0 -46
- package/semgrep-rules/typescript/aws-cdk/security/awscdk-bucket-grantpublicaccessmethod.yml +0 -41
- package/semgrep-rules/typescript/aws-cdk/security/awscdk-codebuild-project-public.ts +0 -72
- package/semgrep-rules/typescript/aws-cdk/security/awscdk-codebuild-project-public.yml +0 -38
- package/semgrep-rules/typescript/lang/best-practice/moment-deprecated.tsx +0 -11
- package/semgrep-rules/typescript/lang/best-practice/moment-deprecated.yaml +0 -17
- package/semgrep-rules/typescript/lang/correctness/useless-ternary.tsx +0 -5
- package/semgrep-rules/typescript/lang/correctness/useless-ternary.yaml +0 -15
- package/semgrep-rules/typescript/lang/security/audit/cors-regex-wildcard.tsx +0 -33
- package/semgrep-rules/typescript/lang/security/audit/cors-regex-wildcard.yaml +0 -32
- package/semgrep-rules/typescript/nestjs/security/audit/nestjs-header-cors-any.ts +0 -74
- package/semgrep-rules/typescript/nestjs/security/audit/nestjs-header-cors-any.yaml +0 -44
- package/semgrep-rules/typescript/nestjs/security/audit/nestjs-header-xss-disabled.ts +0 -27
- package/semgrep-rules/typescript/nestjs/security/audit/nestjs-header-xss-disabled.yaml +0 -34
- package/semgrep-rules/typescript/nestjs/security/audit/nestjs-open-redirect.ts +0 -23
- package/semgrep-rules/typescript/nestjs/security/audit/nestjs-open-redirect.yaml +0 -34
- package/semgrep-rules/typescript/react/best-practice/define-styled-components-on-module-level.tsx +0 -36
- package/semgrep-rules/typescript/react/best-practice/define-styled-components-on-module-level.yaml +0 -32
- package/semgrep-rules/typescript/react/best-practice/react-find-dom.jsx +0 -51
- package/semgrep-rules/typescript/react/best-practice/react-find-dom.tsx +0 -51
- package/semgrep-rules/typescript/react/best-practice/react-find-dom.yaml +0 -20
- package/semgrep-rules/typescript/react/best-practice/react-legacy-component.jsx +0 -31
- package/semgrep-rules/typescript/react/best-practice/react-legacy-component.tsx +0 -31
- package/semgrep-rules/typescript/react/best-practice/react-legacy-component.yaml +0 -20
- package/semgrep-rules/typescript/react/best-practice/react-props-in-state.jsx +0 -99
- package/semgrep-rules/typescript/react/best-practice/react-props-in-state.tsx +0 -105
- package/semgrep-rules/typescript/react/best-practice/react-props-in-state.yaml +0 -58
- package/semgrep-rules/typescript/react/best-practice/react-props-spreading.jsx +0 -18
- package/semgrep-rules/typescript/react/best-practice/react-props-spreading.tsx +0 -18
- package/semgrep-rules/typescript/react/best-practice/react-props-spreading.yaml +0 -22
- package/semgrep-rules/typescript/react/portability/i18next/i18next-key-format.tsx +0 -106
- package/semgrep-rules/typescript/react/portability/i18next/i18next-key-format.yaml +0 -57
- package/semgrep-rules/typescript/react/portability/i18next/jsx-label-not-i18n.tsx +0 -91
- package/semgrep-rules/typescript/react/portability/i18next/jsx-label-not-i18n.yaml +0 -26
- package/semgrep-rules/typescript/react/portability/i18next/jsx-not-internationalized.tsx +0 -108
- package/semgrep-rules/typescript/react/portability/i18next/jsx-not-internationalized.yaml +0 -26
- package/semgrep-rules/typescript/react/portability/i18next/mui-snackbar-message.tsx +0 -19
- package/semgrep-rules/typescript/react/portability/i18next/mui-snackbar-message.yaml +0 -20
- package/semgrep-rules/typescript/react/portability/i18next/useselect-label-not-i18n.tsx +0 -71
- package/semgrep-rules/typescript/react/portability/i18next/useselect-label-not-i18n.yaml +0 -25
- package/semgrep-rules/typescript/react/security/audit/react-dangerouslysetinnerhtml.jsx +0 -61
- package/semgrep-rules/typescript/react/security/audit/react-dangerouslysetinnerhtml.tsx +0 -61
- package/semgrep-rules/typescript/react/security/audit/react-dangerouslysetinnerhtml.yaml +0 -146
- package/semgrep-rules/typescript/react/security/audit/react-href-var.jsx +0 -63
- package/semgrep-rules/typescript/react/security/audit/react-href-var.tsx +0 -58
- package/semgrep-rules/typescript/react/security/audit/react-href-var.yaml +0 -89
- package/semgrep-rules/typescript/react/security/audit/react-jwt-decoded-property.jsx +0 -17
- package/semgrep-rules/typescript/react/security/audit/react-jwt-decoded-property.tsx +0 -17
- package/semgrep-rules/typescript/react/security/audit/react-jwt-decoded-property.yaml +0 -31
- package/semgrep-rules/typescript/react/security/audit/react-jwt-in-localstorage.jsx +0 -23
- package/semgrep-rules/typescript/react/security/audit/react-jwt-in-localstorage.tsx +0 -23
- package/semgrep-rules/typescript/react/security/audit/react-jwt-in-localstorage.yaml +0 -37
- package/semgrep-rules/typescript/react/security/audit/react-unsanitized-method.jsx +0 -30
- package/semgrep-rules/typescript/react/security/audit/react-unsanitized-method.tsx +0 -30
- package/semgrep-rules/typescript/react/security/audit/react-unsanitized-method.yaml +0 -147
- package/semgrep-rules/typescript/react/security/audit/react-unsanitized-property.jsx +0 -15
- package/semgrep-rules/typescript/react/security/audit/react-unsanitized-property.tsx +0 -15
- package/semgrep-rules/typescript/react/security/audit/react-unsanitized-property.yaml +0 -161
- package/semgrep-rules/typescript/react/security/react-insecure-request.jsx +0 -39
- package/semgrep-rules/typescript/react/security/react-insecure-request.tsx +0 -39
- package/semgrep-rules/typescript/react/security/react-insecure-request.yaml +0 -61
- package/semgrep-rules/typescript/react/security/react-markdown-insecure-html.jsx +0 -31
- package/semgrep-rules/typescript/react/security/react-markdown-insecure-html.tsx +0 -31
- package/semgrep-rules/typescript/react/security/react-markdown-insecure-html.yaml +0 -50
- package/semgrep-rules/yaml/argo/correctness/event-binding-payload-with-hyphen.test.yaml +0 -24
- package/semgrep-rules/yaml/argo/correctness/event-binding-payload-with-hyphen.yaml +0 -33
- package/semgrep-rules/yaml/argo/security/argo-workflow-parameter-command-injection.test.yaml +0 -75
- package/semgrep-rules/yaml/argo/security/argo-workflow-parameter-command-injection.yaml +0 -92
- package/semgrep-rules/yaml/docker-compose/security/exposing-docker-socket-volume.test.yaml +0 -266
- package/semgrep-rules/yaml/docker-compose/security/exposing-docker-socket-volume.yaml +0 -75
- package/semgrep-rules/yaml/docker-compose/security/no-new-privileges.test.yaml +0 -16
- package/semgrep-rules/yaml/docker-compose/security/no-new-privileges.yaml +0 -46
- package/semgrep-rules/yaml/docker-compose/security/privileged-service.test.yaml +0 -12
- package/semgrep-rules/yaml/docker-compose/security/privileged-service.yaml +0 -42
- package/semgrep-rules/yaml/docker-compose/security/seccomp-confinement-disabled.test.yaml +0 -15
- package/semgrep-rules/yaml/docker-compose/security/seccomp-confinement-disabled.yaml +0 -37
- package/semgrep-rules/yaml/docker-compose/security/selinux-separation-disabled.test.yaml +0 -15
- package/semgrep-rules/yaml/docker-compose/security/selinux-separation-disabled.yaml +0 -38
- package/semgrep-rules/yaml/docker-compose/security/writable-filesystem-service.test.yaml +0 -13
- package/semgrep-rules/yaml/docker-compose/security/writable-filesystem-service.yaml +0 -47
- package/semgrep-rules/yaml/github-actions/security/allowed-unsecure-commands.test.yaml +0 -30
- package/semgrep-rules/yaml/github-actions/security/allowed-unsecure-commands.yaml +0 -35
- package/semgrep-rules/yaml/github-actions/security/audit/unsafe-add-mask-workflow-command.test.yaml +0 -38
- package/semgrep-rules/yaml/github-actions/security/audit/unsafe-add-mask-workflow-command.yaml +0 -36
- package/semgrep-rules/yaml/github-actions/security/curl-eval.test.yaml +0 -25
- package/semgrep-rules/yaml/github-actions/security/curl-eval.yaml +0 -43
- package/semgrep-rules/yaml/github-actions/security/github-script-injection.test.yaml +0 -69
- package/semgrep-rules/yaml/github-actions/security/github-script-injection.yaml +0 -72
- package/semgrep-rules/yaml/github-actions/security/pull-request-target-code-checkout.test.yaml +0 -73
- package/semgrep-rules/yaml/github-actions/security/pull-request-target-code-checkout.yaml +0 -70
- package/semgrep-rules/yaml/github-actions/security/run-shell-injection.test.yaml +0 -139
- package/semgrep-rules/yaml/github-actions/security/run-shell-injection.yaml +0 -62
- package/semgrep-rules/yaml/github-actions/security/third-party-action-not-pinned-to-commit-sha.test.yml +0 -70
- package/semgrep-rules/yaml/github-actions/security/third-party-action-not-pinned-to-commit-sha.yml +0 -46
- package/semgrep-rules/yaml/github-actions/security/workflow-run-target-code-checkout.test.yaml +0 -74
- package/semgrep-rules/yaml/github-actions/security/workflow-run-target-code-checkout.yaml +0 -61
- package/semgrep-rules/yaml/github-actions/semgrep-configuration/semgrep-github-action-push-without-branches.test.yml +0 -35
- package/semgrep-rules/yaml/github-actions/semgrep-configuration/semgrep-github-action-push-without-branches.yml +0 -48
- package/semgrep-rules/yaml/gitlab/correctness/changes-with-when-never.test.yaml +0 -26
- package/semgrep-rules/yaml/gitlab/correctness/changes-with-when-never.yaml +0 -17
- package/semgrep-rules/yaml/kubernetes/best-practice/no-fractional-cpu-limits.fixed.test.yaml +0 -139
- package/semgrep-rules/yaml/kubernetes/best-practice/no-fractional-cpu-limits.test.yaml +0 -139
- package/semgrep-rules/yaml/kubernetes/best-practice/no-fractional-cpu-limits.yaml +0 -23
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation-no-securitycontext.fixed.test.yaml +0 -26
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation-no-securitycontext.test.yaml +0 -24
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation-no-securitycontext.yaml +0 -59
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation-true.fixed.test.yaml +0 -34
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation-true.test.yaml +0 -34
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation-true.yaml +0 -57
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation.fixed.test.yaml +0 -25
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation.test.yaml +0 -24
- package/semgrep-rules/yaml/kubernetes/security/allow-privilege-escalation.yaml +0 -65
- package/semgrep-rules/yaml/kubernetes/security/env/flask-debugging-enabled.test.yaml +0 -29
- package/semgrep-rules/yaml/kubernetes/security/env/flask-debugging-enabled.yaml +0 -31
- package/semgrep-rules/yaml/kubernetes/security/exposing-docker-socket-hostpath.test.yaml +0 -17
- package/semgrep-rules/yaml/kubernetes/security/exposing-docker-socket-hostpath.yaml +0 -33
- package/semgrep-rules/yaml/kubernetes/security/hostipc-pod.test.yaml +0 -10
- package/semgrep-rules/yaml/kubernetes/security/hostipc-pod.yaml +0 -28
- package/semgrep-rules/yaml/kubernetes/security/hostnetwork-pod.test.yaml +0 -10
- package/semgrep-rules/yaml/kubernetes/security/hostnetwork-pod.yaml +0 -28
- package/semgrep-rules/yaml/kubernetes/security/hostpid-pod.test.yaml +0 -10
- package/semgrep-rules/yaml/kubernetes/security/hostpid-pod.yaml +0 -29
- package/semgrep-rules/yaml/kubernetes/security/legacy-api-clusterrole-excessive-permissions.test.yaml +0 -53
- package/semgrep-rules/yaml/kubernetes/security/legacy-api-clusterrole-excessive-permissions.yaml +0 -44
- package/semgrep-rules/yaml/kubernetes/security/privileged-container.test.yaml +0 -19
- package/semgrep-rules/yaml/kubernetes/security/privileged-container.yaml +0 -44
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-container-level-missing-security-context.fixed.test.yaml +0 -78
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-container-level-missing-security-context.test.yaml +0 -76
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-container-level-missing-security-context.yaml +0 -89
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-container-level.fixed.test.yaml +0 -77
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-container-level.test.yaml +0 -76
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-container-level.yaml +0 -91
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-security-context-pod-level.fixed.test.yaml +0 -74
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-security-context-pod-level.test.yaml +0 -73
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-security-context-pod-level.yaml +0 -76
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-unsafe-value.fixed.test.yaml +0 -45
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-unsafe-value.test.yaml +0 -45
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root-unsafe-value.yaml +0 -61
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root.fixed.test.yaml +0 -75
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root.test.yaml +0 -73
- package/semgrep-rules/yaml/kubernetes/security/run-as-non-root.yaml +0 -77
- package/semgrep-rules/yaml/kubernetes/security/seccomp-confinement-disabled.test.yaml +0 -19
- package/semgrep-rules/yaml/kubernetes/security/seccomp-confinement-disabled.yaml +0 -35
- package/semgrep-rules/yaml/kubernetes/security/secrets-in-config-file.test.yaml +0 -14
- package/semgrep-rules/yaml/kubernetes/security/secrets-in-config-file.yaml +0 -44
- package/semgrep-rules/yaml/kubernetes/security/skip-tls-verify-cluster.test.yaml +0 -24
- package/semgrep-rules/yaml/kubernetes/security/skip-tls-verify-cluster.yaml +0 -28
- package/semgrep-rules/yaml/kubernetes/security/skip-tls-verify-service.test.yaml +0 -14
- package/semgrep-rules/yaml/kubernetes/security/skip-tls-verify-service.yaml +0 -28
- package/semgrep-rules/yaml/kubernetes/security/writable-filesystem-container.test.yaml +0 -24
- package/semgrep-rules/yaml/kubernetes/security/writable-filesystem-container.yaml +0 -47
- package/semgrep-rules/yaml/openapi/security/api-key-in-query-parameter.test.yaml +0 -37
- package/semgrep-rules/yaml/openapi/security/api-key-in-query-parameter.yaml +0 -45
- package/semgrep-rules/yaml/openapi/security/openai-consequential-action-false.test.yaml +0 -41
- package/semgrep-rules/yaml/openapi/security/openai-consequential-action-false.yaml +0 -48
- package/semgrep-rules/yaml/openapi/security/use-of-basic-authentication.test.yaml +0 -36
- package/semgrep-rules/yaml/openapi/security/use-of-basic-authentication.yaml +0 -42
- package/semgrep-rules/yaml/semgrep/consistency/generate_rules.py +0 -57
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-bash.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-cpp.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-csharp.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-dockerfile.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-elixir.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-go.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-hcl.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-js.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-kotlin.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-python.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-regex.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-solidity.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/consistency/lang-consistency-ts.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/duplicate-id.test.yaml +0 -76
- package/semgrep-rules/yaml/semgrep/duplicate-id.yaml +0 -24
- package/semgrep-rules/yaml/semgrep/duplicate-pattern.test.yaml +0 -19
- package/semgrep-rules/yaml/semgrep/duplicate-pattern.yaml +0 -21
- package/semgrep-rules/yaml/semgrep/empty-message.test.yaml +0 -16
- package/semgrep-rules/yaml/semgrep/empty-message.yaml +0 -17
- package/semgrep-rules/yaml/semgrep/interfile-true-under-metadata-and-no-options.fixed.test.yaml +0 -111
- package/semgrep-rules/yaml/semgrep/interfile-true-under-metadata-and-no-options.test.yaml +0 -109
- package/semgrep-rules/yaml/semgrep/interfile-true-under-metadata-and-no-options.yaml +0 -35
- package/semgrep-rules/yaml/semgrep/interfile-true-under-metadata-and-options-already-present.fixed.test.yaml +0 -112
- package/semgrep-rules/yaml/semgrep/interfile-true-under-metadata-and-options-already-present.test.yaml +0 -111
- package/semgrep-rules/yaml/semgrep/interfile-true-under-metadata-and-options-already-present.yaml +0 -46
- package/semgrep-rules/yaml/semgrep/key-indentation.test.yaml +0 -16
- package/semgrep-rules/yaml/semgrep/key-indentation.yaml +0 -25
- package/semgrep-rules/yaml/semgrep/message-whitespace.test.yaml +0 -13
- package/semgrep-rules/yaml/semgrep/message-whitespace.yaml +0 -28
- package/semgrep-rules/yaml/semgrep/metadata-category.test.yaml +0 -35
- package/semgrep-rules/yaml/semgrep/metadata-category.yaml +0 -20
- package/semgrep-rules/yaml/semgrep/metadata-confidence-incorrect-value.test.yaml +0 -36
- package/semgrep-rules/yaml/semgrep/metadata-confidence-incorrect-value.yaml +0 -32
- package/semgrep-rules/yaml/semgrep/metadata-confidence.test.yaml +0 -36
- package/semgrep-rules/yaml/semgrep/metadata-confidence.yaml +0 -28
- package/semgrep-rules/yaml/semgrep/metadata-cwe.test.yaml +0 -42
- package/semgrep-rules/yaml/semgrep/metadata-cwe.yaml +0 -15
- package/semgrep-rules/yaml/semgrep/metadata-deepsemgrep.test.yaml +0 -49
- package/semgrep-rules/yaml/semgrep/metadata-deepsemgrep.yaml +0 -29
- package/semgrep-rules/yaml/semgrep/metadata-impact-incorrect-value.test.yaml +0 -37
- package/semgrep-rules/yaml/semgrep/metadata-impact-incorrect-value.yaml +0 -32
- package/semgrep-rules/yaml/semgrep/metadata-impact.test.yaml +0 -36
- package/semgrep-rules/yaml/semgrep/metadata-impact.yaml +0 -28
- package/semgrep-rules/yaml/semgrep/metadata-incorrect-option.test.yaml +0 -36
- package/semgrep-rules/yaml/semgrep/metadata-incorrect-option.yaml +0 -25
- package/semgrep-rules/yaml/semgrep/metadata-likelihood-incorrect-value.test.yaml +0 -36
- package/semgrep-rules/yaml/semgrep/metadata-likelihood-incorrect-value.yaml +0 -32
- package/semgrep-rules/yaml/semgrep/metadata-likelihood.test.yaml +0 -36
- package/semgrep-rules/yaml/semgrep/metadata-likelihood.yaml +0 -28
- package/semgrep-rules/yaml/semgrep/metadata-owasp.test.yaml +0 -113
- package/semgrep-rules/yaml/semgrep/metadata-owasp.yaml +0 -27
- package/semgrep-rules/yaml/semgrep/metadata-references.test.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/metadata-references.yaml +0 -19
- package/semgrep-rules/yaml/semgrep/metadata-subcategory-incorrect-value.test.yaml +0 -40
- package/semgrep-rules/yaml/semgrep/metadata-subcategory-incorrect-value.yaml +0 -36
- package/semgrep-rules/yaml/semgrep/metadata-subcategory.test.yaml +0 -38
- package/semgrep-rules/yaml/semgrep/metadata-subcategory.yaml +0 -28
- package/semgrep-rules/yaml/semgrep/metadata-technology.test.yaml +0 -77
- package/semgrep-rules/yaml/semgrep/metadata-technology.yaml +0 -48
- package/semgrep-rules/yaml/semgrep/missing-language-field.test.yaml +0 -54
- package/semgrep-rules/yaml/semgrep/missing-language-field.yaml +0 -41
- package/semgrep-rules/yaml/semgrep/missing-message-field.test.yaml +0 -24
- package/semgrep-rules/yaml/semgrep/missing-message-field.yaml +0 -24
- package/semgrep-rules/yaml/semgrep/multi-line-message.test.yaml +0 -20
- package/semgrep-rules/yaml/semgrep/multi-line-message.yaml +0 -18
- package/semgrep-rules/yaml/semgrep/rule-missing-deconstructed-value.test.yaml +0 -35
- package/semgrep-rules/yaml/semgrep/rule-missing-deconstructed-value.yaml +0 -68
- package/semgrep-rules/yaml/semgrep/slow-pattern-general-function.test.yaml +0 -25
- package/semgrep-rules/yaml/semgrep/slow-pattern-general-function.yaml +0 -29
- package/semgrep-rules/yaml/semgrep/slow-pattern-general-property.test.yaml +0 -28
- package/semgrep-rules/yaml/semgrep/slow-pattern-general-property.yaml +0 -22
- package/semgrep-rules/yaml/semgrep/slow-pattern-single-metavariable.test.yaml +0 -45
- package/semgrep-rules/yaml/semgrep/slow-pattern-single-metavariable.yaml +0 -27
- package/semgrep-rules/yaml/semgrep/slow-pattern-top-ellipsis.test.yaml +0 -31
- package/semgrep-rules/yaml/semgrep/slow-pattern-top-ellipsis.yaml +0 -22
- package/semgrep-rules/yaml/semgrep/unnecessary-parent.test.yaml +0 -69
- package/semgrep-rules/yaml/semgrep/unnecessary-parent.yaml +0 -37
- package/semgrep-rules/yaml/semgrep/unsatisfiable.test.yaml +0 -16
- package/semgrep-rules/yaml/semgrep/unsatisfiable.yaml +0 -25
- package/tsconfig.json +0 -26
package/CHANGELOG.md
ADDED
|
@@ -0,0 +1,58 @@
|
|
|
1
|
+
# Changelog
|
|
2
|
+
|
|
3
|
+
All notable changes to this project are documented in this file.
|
|
4
|
+
|
|
5
|
+
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
|
|
6
|
+
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
|
|
7
|
+
|
|
8
|
+
## [1.0.1] - 2026-04-18
|
|
9
|
+
|
|
10
|
+
### Security
|
|
11
|
+
|
|
12
|
+
- **Fixed CWE-78 (OS Command Injection)** across all tool handlers in
|
|
13
|
+
`src/index.ts`. User-controlled paths and rule fields are no longer
|
|
14
|
+
interpolated into shell command strings. Reported by **BruceJin**
|
|
15
|
+
(`brucejin@zju.edu.cn`) — see [#12](https://github.com/VetCoders/mcp-server-semgrep/issues/12).
|
|
16
|
+
- Replaced `child_process.exec()` with `child_process.execFile()` for every
|
|
17
|
+
external invocation (`semgrep`, `pip3`). Arguments are now passed as arrays
|
|
18
|
+
and never reach a shell.
|
|
19
|
+
- Replaced shell `cat`/`echo > file` with `fs.promises.readFile` /
|
|
20
|
+
`fs.promises.writeFile` in `analyze_results`, `filter_results`,
|
|
21
|
+
`export_results`, `compare_results`, and `create_rule`.
|
|
22
|
+
- Added defense-in-depth `validateNoShellMetacharacters` invoked from
|
|
23
|
+
`validateAbsolutePath`. Rejects `;`, `|`, `&`, backticks, `$()`, `<>`, `{}`,
|
|
24
|
+
`\`, `!`, `#`, `*`, `?`, `[`, `]`, quotes, `~`, and whitespace control
|
|
25
|
+
characters before any value reaches the filesystem layer.
|
|
26
|
+
- Added structured validation for `create_rule`: `id`, `language`, `severity`
|
|
27
|
+
are matched against strict allowlists; `pattern` and `message` are
|
|
28
|
+
YAML-escaped via `JSON.stringify` to defeat YAML injection. (Originally
|
|
29
|
+
flagged by Gemini Code Assist on PR #14.)
|
|
30
|
+
- Capped `semgrep` stdout buffer at 50 MiB and explicitly redact
|
|
31
|
+
`SEMGREP_APP_TOKEN` in command-line logs.
|
|
32
|
+
|
|
33
|
+
### Changed
|
|
34
|
+
|
|
35
|
+
- Bumped version to `1.0.1`.
|
|
36
|
+
- Repository metadata now points at `VetCoders/mcp-server-semgrep`.
|
|
37
|
+
- Removed unused `axios` runtime dependency.
|
|
38
|
+
- Removed dead `src/config.ts` (was never imported by `src/index.ts`).
|
|
39
|
+
- Replaced stale tests (`tests/handlers.test.ts`, `tests/utils.test.ts` —
|
|
40
|
+
imported modules that never existed) with `tests/security.test.ts`,
|
|
41
|
+
including CWE-78 regression coverage and validator unit tests.
|
|
42
|
+
|
|
43
|
+
### Acknowledgements
|
|
44
|
+
|
|
45
|
+
- **BruceJin** (`BruceJqs`) — original vulnerability discovery and detailed
|
|
46
|
+
CodeQL report.
|
|
47
|
+
- **xyaz1313** ([PR #13](https://github.com/VetCoders/mcp-server-semgrep/pull/13))
|
|
48
|
+
and **karthikeyansundaram2**
|
|
49
|
+
([PR #14](https://github.com/VetCoders/mcp-server-semgrep/pull/14)) —
|
|
50
|
+
independent fix proposals that informed the final patch.
|
|
51
|
+
- **Gemini Code Assist** — flagged token leak regression and YAML injection
|
|
52
|
+
follow-ups in PR review.
|
|
53
|
+
|
|
54
|
+
## [1.0.0] - 2025-03-20
|
|
55
|
+
|
|
56
|
+
Initial public release. Now considered vulnerable — please upgrade to 1.0.1.
|
|
57
|
+
|
|
58
|
+
VibeCrafted with AI Agents (c)2026 VetCoders
|
package/Dockerfile
CHANGED
|
@@ -1,22 +1,37 @@
|
|
|
1
|
-
FROM node:
|
|
1
|
+
FROM node:20-slim AS build
|
|
2
2
|
|
|
3
3
|
WORKDIR /app
|
|
4
4
|
|
|
5
|
-
|
|
6
|
-
RUN
|
|
5
|
+
COPY package.json package-lock.json ./
|
|
6
|
+
RUN npm ci --omit=optional --ignore-scripts
|
|
7
7
|
|
|
8
|
-
|
|
9
|
-
|
|
8
|
+
COPY tsconfig.json ./
|
|
9
|
+
COPY src ./src
|
|
10
|
+
RUN npm run build
|
|
10
11
|
|
|
11
|
-
|
|
12
|
-
COPY . .
|
|
12
|
+
FROM node:20-slim AS runtime
|
|
13
13
|
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
14
|
+
ARG SEMGREP_VERSION=1.161.0
|
|
15
|
+
ENV NODE_ENV=production
|
|
16
|
+
ENV MCP_SERVER_SEMGREP_ALLOWED_ROOTS=/workspace:/app
|
|
17
|
+
|
|
18
|
+
WORKDIR /app
|
|
19
|
+
|
|
20
|
+
RUN apt-get update \
|
|
21
|
+
&& apt-get install -y --no-install-recommends ca-certificates curl git \
|
|
22
|
+
&& curl -LsSf https://astral.sh/uv/install.sh | UV_INSTALL_DIR="/usr/local/bin" sh \
|
|
23
|
+
&& uv python install 3.12 \
|
|
24
|
+
&& uv tool install --python 3.12 "semgrep==${SEMGREP_VERSION}" \
|
|
25
|
+
&& ln -sf /root/.local/bin/semgrep /usr/local/bin/semgrep \
|
|
26
|
+
&& semgrep --version \
|
|
27
|
+
&& apt-get clean \
|
|
28
|
+
&& rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
|
|
29
|
+
|
|
30
|
+
COPY package.json package-lock.json ./
|
|
31
|
+
RUN npm ci --omit=dev --omit=optional --ignore-scripts \
|
|
32
|
+
&& npm cache clean --force
|
|
17
33
|
|
|
18
|
-
|
|
19
|
-
RUN
|
|
34
|
+
COPY --from=build /app/build ./build
|
|
35
|
+
RUN mkdir -p /workspace
|
|
20
36
|
|
|
21
|
-
|
|
22
|
-
CMD ["node", "build/index.js"]
|
|
37
|
+
CMD ["node", "build/index.js"]
|
package/README.md
CHANGED
|
@@ -1,11 +1,12 @@
|
|
|
1
1
|
# MCP Server Semgrep
|
|
2
|
-
[](https://smithery.ai/server/@VetCoders/mcp-server-semgrep)
|
|
3
|
+
[](https://glama.ai/mcp/servers/VetCoders/mcp-server-semgrep)
|
|
3
4
|
### POWERED BY:
|
|
4
5
|
[](https://semgrep.dev)
|
|
5
6
|
|
|
6
7
|
|
|
7
8
|
## About the Project
|
|
8
|
-
[](https://github.com/
|
|
9
|
+
[](https://github.com/VetCoders/mcp-server-semgrep)
|
|
9
10
|
This project was initially inspired by robustness of [Semgrep tool](https://semgrep.dev), [The Replit Team](https://github.com/replit) and their [Agent V2](https://replit.com), as well as the implementation by [stefanskiasan/semgrep-mcp-server](https://github.com/stefanskiasan/semgrep-mcp-server), but has evolved with significant architectural changes for enhanced and easier installation and maintenance.
|
|
10
11
|
|
|
11
12
|
MCP Server Semgrep is a [Model Context Protocol](https://modelcontextprotocol.io) compliant server that integrates the powerful Semgrep static analysis tool with AI assistants like Anthropic Claude. It enables advanced code analysis, security vulnerability detection, and code quality improvements directly through a conversational interface.
|
|
@@ -80,9 +81,9 @@ Semgrep MCP Server provides the following tools:
|
|
|
80
81
|
|
|
81
82
|
The easiest way to install and use MCP Server Semgrep is through Smithery.ai:
|
|
82
83
|
|
|
83
|
-
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@
|
|
84
|
+
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@VetCoders/mcp-server-semgrep)
|
|
84
85
|
2. Follow the installation instructions to add it to your MCP-compatible clients
|
|
85
|
-
3. Configure any optional settings like the Semgrep API token
|
|
86
|
+
3. Configure any optional settings like the Semgrep API token and allowed workspace roots
|
|
86
87
|
|
|
87
88
|
This is the recommended method for Claude Desktop and other MCP clients as it handles all dependencies and configuration automatically.
|
|
88
89
|
|
|
@@ -100,26 +101,26 @@ yarn global add mcp-server-semgrep
|
|
|
100
101
|
```
|
|
101
102
|
|
|
102
103
|
The package is also available on other registries:
|
|
103
|
-
- [MCP.so](https://mcp.so/@
|
|
104
|
+
- [MCP.so](https://mcp.so/@VetCoders/mcp-server-semgrep)
|
|
104
105
|
|
|
105
106
|
### Option 3: Install from GitHub
|
|
106
107
|
|
|
107
108
|
```bash
|
|
108
109
|
# Using npm
|
|
109
|
-
npm install -g git+https://github.com/
|
|
110
|
+
npm install -g git+https://github.com/VetCoders/mcp-server-semgrep.git
|
|
110
111
|
|
|
111
112
|
# Using pnpm
|
|
112
|
-
pnpm add -g git+https://github.com/
|
|
113
|
+
pnpm add -g git+https://github.com/VetCoders/mcp-server-semgrep.git
|
|
113
114
|
|
|
114
115
|
# Using yarn
|
|
115
|
-
yarn global add git+https://github.com/
|
|
116
|
+
yarn global add git+https://github.com/VetCoders/mcp-server-semgrep.git
|
|
116
117
|
```
|
|
117
118
|
|
|
118
119
|
### Option 4: Local Development Setup
|
|
119
120
|
|
|
120
121
|
1. Clone the repository:
|
|
121
122
|
```bash
|
|
122
|
-
git clone https://github.com/
|
|
123
|
+
git clone https://github.com/VetCoders/mcp-server-semgrep.git
|
|
123
124
|
cd mcp-server-semgrep
|
|
124
125
|
```
|
|
125
126
|
|
|
@@ -149,6 +150,22 @@ yarn build
|
|
|
149
150
|
|
|
150
151
|
> **Note**: The installation process will automatically check for Semgrep availability. If Semgrep is not found, you'll receive instructions on how to install it.
|
|
151
152
|
|
|
153
|
+
### Workspace Root Contract
|
|
154
|
+
|
|
155
|
+
This server only reads and writes files inside explicitly allowed workspace roots.
|
|
156
|
+
|
|
157
|
+
- By default, the allowed root is the process working directory (`process.cwd()`).
|
|
158
|
+
- For Claude Desktop, Smithery, or any launcher that does not start the server inside your project root, set `MCP_SERVER_SEMGREP_ALLOWED_ROOTS` to one or more absolute directories.
|
|
159
|
+
- Use your platform path delimiter for multiple roots: `:` on macOS/Linux, `;` on Windows.
|
|
160
|
+
|
|
161
|
+
### Authentication Modes
|
|
162
|
+
|
|
163
|
+
This server does not implement its own Semgrep account handling. It shells out to the installed `semgrep` CLI and relies on Semgrep's normal authentication behavior.
|
|
164
|
+
|
|
165
|
+
- Local terminal and local development runs can often use an existing `semgrep login` session from the current OS account.
|
|
166
|
+
- Managed launches such as Claude Desktop, Smithery, containers, or CI should prefer an explicit `SEMGREP_APP_TOKEN` for deterministic behavior.
|
|
167
|
+
- `SEMGREP_APP_TOKEN` is still the safest option when you need portable configuration across machines or runners.
|
|
168
|
+
|
|
152
169
|
### Semgrep Installation Options
|
|
153
170
|
|
|
154
171
|
Semgrep can be installed in several ways:
|
|
@@ -193,14 +210,16 @@ There are two ways to integrate MCP Server Semgrep with Claude Desktop:
|
|
|
193
210
|
|
|
194
211
|
### Method 1: Install via Smithery.ai (Recommended)
|
|
195
212
|
|
|
196
|
-
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@
|
|
213
|
+
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@VetCoders/mcp-server-semgrep)
|
|
197
214
|
2. Click "Install in Claude Desktop"
|
|
198
215
|
3. Follow the on-screen instructions
|
|
199
216
|
|
|
200
217
|
### Method 2: Manual Configuration
|
|
201
218
|
|
|
202
219
|
1. Install Claude Desktop
|
|
203
|
-
2. Update the Claude Desktop configuration file (`claude_desktop_config.json`) and add this to your servers section
|
|
220
|
+
2. Update the Claude Desktop configuration file (`claude_desktop_config.json`) and add this to your servers section.
|
|
221
|
+
|
|
222
|
+
For local launches started under a user account that is already authenticated with `semgrep login`, the Semgrep CLI may be able to reuse that login. For desktop-managed or shared environments, we still recommend setting `SEMGREP_APP_TOKEN` explicitly:
|
|
204
223
|
|
|
205
224
|
```json
|
|
206
225
|
{
|
|
@@ -210,22 +229,25 @@ There are two ways to integrate MCP Server Semgrep with Claude Desktop:
|
|
|
210
229
|
"args": [
|
|
211
230
|
"/your_path/mcp-server-semgrep/build/index.js"
|
|
212
231
|
],
|
|
213
|
-
|
|
214
|
-
|
|
232
|
+
"env": {
|
|
233
|
+
"SEMGREP_APP_TOKEN": "your_semgrep_app_token",
|
|
234
|
+
"MCP_SERVER_SEMGREP_ALLOWED_ROOTS": "/Users/you/projects"
|
|
215
235
|
}
|
|
216
236
|
}
|
|
217
237
|
}
|
|
218
238
|
}
|
|
219
239
|
```
|
|
220
240
|
|
|
221
|
-
3. Launch Claude Desktop and start asking questions about code analysis
|
|
241
|
+
3. Launch Claude Desktop and start asking questions about code analysis.
|
|
242
|
+
|
|
243
|
+
If you want to scan more than one workspace, set `MCP_SERVER_SEMGREP_ALLOWED_ROOTS` to a platform-delimited list of absolute paths.
|
|
222
244
|
|
|
223
245
|
## Usage Examples
|
|
224
246
|
|
|
225
247
|
### Project Scanning
|
|
226
248
|
|
|
227
249
|
```
|
|
228
|
-
Could you scan my source code in the /projects/my-application directory for potential security issues?
|
|
250
|
+
Could you scan my source code in the /projects/my-application directory for potential security issues? That directory is already included in MCP_SERVER_SEMGREP_ALLOWED_ROOTS.
|
|
229
251
|
```
|
|
230
252
|
|
|
231
253
|
### Style Consistency Analysis
|
|
@@ -290,7 +312,6 @@ pnpm test
|
|
|
290
312
|
|
|
291
313
|
```
|
|
292
314
|
├── src/
|
|
293
|
-
│ ├── config.ts # Server configuration
|
|
294
315
|
│ └── index.ts # Main entry point and all handler implementations
|
|
295
316
|
├── scripts/
|
|
296
317
|
│ └── check-semgrep.js # Semgrep detection and installation helper
|
package/README_PL.md
CHANGED
|
@@ -78,7 +78,7 @@ MCP Server Semgrep zapewnia następujące narzędzia:
|
|
|
78
78
|
|
|
79
79
|
1. Sklonuj repozytorium:
|
|
80
80
|
```bash
|
|
81
|
-
git clone https://github.com/
|
|
81
|
+
git clone https://github.com/VetCoders/mcp-server-semgrep.git
|
|
82
82
|
cd mcp-server-semgrep
|
|
83
83
|
```
|
|
84
84
|
|
|
@@ -89,6 +89,14 @@ pnpm install
|
|
|
89
89
|
|
|
90
90
|
> **Uwaga**: Proces instalacji automatycznie sprawdzi dostępność Semgrep. Jeśli Semgrep nie zostanie znaleziony, otrzymasz instrukcje dotyczące jego instalacji.
|
|
91
91
|
|
|
92
|
+
#### Kontrakt katalogów roboczych
|
|
93
|
+
|
|
94
|
+
Serwer odczytuje i zapisuje pliki tylko wewnątrz jawnie dozwolonych katalogów roboczych.
|
|
95
|
+
|
|
96
|
+
- Domyślnie dozwolonym katalogiem jest bieżący katalog procesu (`process.cwd()`).
|
|
97
|
+
- Dla Claude Desktop, Smithery i innych launcherów, które nie uruchamiają serwera w katalogu projektu, ustaw `MCP_SERVER_SEMGREP_ALLOWED_ROOTS` na jedną lub więcej ścieżek absolutnych.
|
|
98
|
+
- Dla wielu katalogów użyj separatora właściwego dla platformy: `:` na macOS/Linux, `;` na Windows.
|
|
99
|
+
|
|
92
100
|
#### Opcje instalacji Semgrep
|
|
93
101
|
|
|
94
102
|
Semgrep można zainstalować na kilka sposobów:
|
|
@@ -125,7 +133,7 @@ pnpm run build
|
|
|
125
133
|
Aby zintegrować MCP Server Semgrep z Claude Desktop:
|
|
126
134
|
|
|
127
135
|
1. Zainstaluj Claude Desktop
|
|
128
|
-
2. Zaktualizuj plik konfiguracyjny Claude Desktop (`claude_desktop_config.json`) i dodaj poniższy wpis. Zalecane jest dodanie SEMGREP_APP_TOKEN
|
|
136
|
+
2. Zaktualizuj plik konfiguracyjny Claude Desktop (`claude_desktop_config.json`) i dodaj poniższy wpis. Zalecane jest dodanie `SEMGREP_APP_TOKEN` oraz `MCP_SERVER_SEMGREP_ALLOWED_ROOTS`:
|
|
129
137
|
|
|
130
138
|
```json
|
|
131
139
|
{
|
|
@@ -135,22 +143,23 @@ Aby zintegrować MCP Server Semgrep z Claude Desktop:
|
|
|
135
143
|
"args": [
|
|
136
144
|
"/twoja_ścieżka/mcp-server-semgrep/build/index.js"
|
|
137
145
|
],
|
|
138
|
-
|
|
139
|
-
|
|
146
|
+
"env": {
|
|
147
|
+
"SEMGREP_APP_TOKEN": "twój_token_semgrep",
|
|
148
|
+
"MCP_SERVER_SEMGREP_ALLOWED_ROOTS": "/Users/you/projects"
|
|
140
149
|
}
|
|
141
150
|
}
|
|
142
151
|
}
|
|
143
152
|
}
|
|
144
153
|
```
|
|
145
154
|
|
|
146
|
-
3. Uruchom Claude Desktop i zacznij zadawać pytania dotyczące analizy kodu
|
|
155
|
+
3. Uruchom Claude Desktop i zacznij zadawać pytania dotyczące analizy kodu.
|
|
147
156
|
|
|
148
157
|
## Przykłady użycia
|
|
149
158
|
|
|
150
159
|
### Skanowanie projektu
|
|
151
160
|
|
|
152
161
|
```
|
|
153
|
-
Mógłbyś przeskanować mój kod źródłowy w katalogu /projekty/moja-aplikacja pod kątem potencjalnych problemów bezpieczeństwa?
|
|
162
|
+
Mógłbyś przeskanować mój kod źródłowy w katalogu /projekty/moja-aplikacja pod kątem potencjalnych problemów bezpieczeństwa? Ten katalog jest już uwzględniony w MCP_SERVER_SEMGREP_ALLOWED_ROOTS.
|
|
154
163
|
```
|
|
155
164
|
|
|
156
165
|
### Analiza spójności stylu
|
|
@@ -215,7 +224,6 @@ pnpm test
|
|
|
215
224
|
|
|
216
225
|
```
|
|
217
226
|
├── src/
|
|
218
|
-
│ ├── config.ts # Konfiguracja serwera
|
|
219
227
|
│ └── index.ts # Główny punkt wejścia i wszystkie implementacje handlerów
|
|
220
228
|
├── scripts/
|
|
221
229
|
│ └── check-semgrep.js # Helper do wykrywania i instalacji Semgrep
|
package/SECURITY.md
ADDED
|
@@ -0,0 +1,44 @@
|
|
|
1
|
+
# Security Policy
|
|
2
|
+
|
|
3
|
+
## Supported Versions
|
|
4
|
+
|
|
5
|
+
| Version | Supported |
|
|
6
|
+
|---------|-----------|
|
|
7
|
+
| 1.0.1 | ✅ |
|
|
8
|
+
| 1.0.0 | ❌ (CVE candidate — see CHANGELOG) |
|
|
9
|
+
| < 1.0.0 | ❌ |
|
|
10
|
+
|
|
11
|
+
## Reporting a Vulnerability
|
|
12
|
+
|
|
13
|
+
We appreciate responsible disclosure. Please report security issues privately
|
|
14
|
+
through one of the following channels:
|
|
15
|
+
|
|
16
|
+
- **GitHub Security Advisory** (preferred):
|
|
17
|
+
<https://github.com/VetCoders/mcp-server-semgrep/security/advisories/new>
|
|
18
|
+
- Email: `void@div0.space`
|
|
19
|
+
|
|
20
|
+
Please include:
|
|
21
|
+
- A clear description of the issue
|
|
22
|
+
- Steps to reproduce (PoC welcome, defanged if possible)
|
|
23
|
+
- Affected version(s)
|
|
24
|
+
- Suggested remediation, if you have one
|
|
25
|
+
|
|
26
|
+
We will acknowledge within 72 hours and aim to ship a fix within 14 days for
|
|
27
|
+
critical issues. We credit reporters in the changelog and (if you wish) in any
|
|
28
|
+
GHSA we publish.
|
|
29
|
+
|
|
30
|
+
## Hardening notes for operators
|
|
31
|
+
|
|
32
|
+
- This server is intended for **local-first** use over `stdio`. Do not expose
|
|
33
|
+
the MCP transport to untrusted networks without an authenticated proxy in
|
|
34
|
+
front.
|
|
35
|
+
- All path arguments are restricted to the configured workspace roots. By
|
|
36
|
+
default this is `process.cwd()`. For desktop launchers and remote-managed
|
|
37
|
+
installs, set `MCP_SERVER_SEMGREP_ALLOWED_ROOTS` to the smallest set of
|
|
38
|
+
absolute directories the assistant should touch.
|
|
39
|
+
- `SEMGREP_APP_TOKEN`, when set, is forwarded to `semgrep` via `--oauth-token`
|
|
40
|
+
using `child_process.execFile` (no shell) and is **redacted** in stderr
|
|
41
|
+
logs. Treat the token as a secret and rotate it on suspected exposure.
|
|
42
|
+
- The container image installs `semgrep` at build time (`pip3 install
|
|
43
|
+
--break-system-packages`). When running in production, prefer a pinned
|
|
44
|
+
semgrep version and rebuild on upstream advisories.
|
package/USAGE.md
CHANGED
|
@@ -10,7 +10,7 @@ First, make sure you have Node.js (v18+) installed. The server offers multiple w
|
|
|
10
10
|
|
|
11
11
|
The simplest way to install and use MCP Server Semgrep is directly through Smithery.ai:
|
|
12
12
|
|
|
13
|
-
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@
|
|
13
|
+
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@VetCoders/mcp-server-semgrep)
|
|
14
14
|
2. Click the "Install" button for your preferred MCP client
|
|
15
15
|
3. Follow the on-screen instructions to complete the installation
|
|
16
16
|
|
|
@@ -33,7 +33,7 @@ yarn global add mcp-server-semgrep
|
|
|
33
33
|
|
|
34
34
|
```bash
|
|
35
35
|
# Install directly from GitHub repository
|
|
36
|
-
npm install -g git+https://github.com/
|
|
36
|
+
npm install -g git+https://github.com/VetCoders/mcp-server-semgrep.git
|
|
37
37
|
```
|
|
38
38
|
|
|
39
39
|
### Semgrep Installation Options:
|
|
@@ -64,6 +64,14 @@ pip install semgrep
|
|
|
64
64
|
|
|
65
65
|
The server will automatically detect your Semgrep installation regardless of how it was installed, and will provide helpful guidance if it's missing.
|
|
66
66
|
|
|
67
|
+
## Workspace Roots
|
|
68
|
+
|
|
69
|
+
The server only accepts absolute paths that live inside an allowed workspace root.
|
|
70
|
+
|
|
71
|
+
- Default behavior: use `process.cwd()` as the only allowed root.
|
|
72
|
+
- Recommended for desktop clients and managed launchers: set `MCP_SERVER_SEMGREP_ALLOWED_ROOTS` to one or more absolute directories.
|
|
73
|
+
- Multiple roots use your platform delimiter: `:` on macOS/Linux, `;` on Windows.
|
|
74
|
+
|
|
67
75
|
## Running the Server
|
|
68
76
|
|
|
69
77
|
```bash
|
|
@@ -118,7 +126,7 @@ The integration enhances developer experience through:
|
|
|
118
126
|
In Claude Desktop, you might ask:
|
|
119
127
|
|
|
120
128
|
```
|
|
121
|
-
Could you scan my project directory at /path/to/code for security vulnerabilities?
|
|
129
|
+
Could you scan my project directory at /path/to/code for security vulnerabilities? That directory is already covered by MCP_SERVER_SEMGREP_ALLOWED_ROOTS.
|
|
122
130
|
```
|
|
123
131
|
|
|
124
132
|
Behind the scenes, the MCP server handles requests like:
|
|
@@ -369,7 +377,7 @@ There are two ways to integrate with Claude Desktop:
|
|
|
369
377
|
|
|
370
378
|
### Method 1: Install via Smithery.ai (Recommended)
|
|
371
379
|
|
|
372
|
-
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@
|
|
380
|
+
1. Visit [MCP Server Semgrep on Smithery.ai](https://smithery.ai/server/@VetCoders/mcp-server-semgrep)
|
|
373
381
|
2. Click "Install in Claude Desktop"
|
|
374
382
|
3. Follow the on-screen instructions to complete the setup
|
|
375
383
|
4. Launch Claude Desktop and the server will be available automatically
|
|
@@ -453,4 +461,4 @@ For maximum benefit:
|
|
|
453
461
|
- Create team-specific rulesets
|
|
454
462
|
- Regular reviews and updates of rules
|
|
455
463
|
- Share and celebrate improvements over time
|
|
456
|
-
- Use humor (like our example rules) to make the process enjoyable
|
|
464
|
+
- Use humor (like our example rules) to make the process enjoyable
|