Shiloh/brotherton-erpnext
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8bbec42fa0
brotherton-erpnext/.github/helper/semgrep_rules/security.yml
Ankush Menat 28d52c4a95
chore: remove warning rules 
semgrep-action doesn't consider severity, hence ignoring these rules for now.
2021-07-21 19:54:06 +05:30

11 lines
282 B
YAML
Raw Blame History

rules:
- id: frappe-codeinjection-eval
patterns:
- pattern-not: eval("...")
- pattern: eval(...)
message: |
Detected the use of eval(). eval() can be dangerous if used to evaluate
dynamic content. Avoid it or use safe_eval().
languages: [python]
severity: ERROR
Reference in New Issue View Git Blame Copy Permalink