Import 3rd party rules
nbeguier opened this issue ยท 1 comments
nbeguier commented
Hello,
I plan to use njsscan with 3rd party rules, for instance from semgrep.dev (https://semgrep.dev/r/?q=postMessage&lang=JavaScript).
According to you, how is the best way to enrich your the built-in rules ?
Thanks ๐๐ป
ajinabraham commented
Hi @nbeguier njsscan focus only on server side javascript/html code.
If there are server side rules that you would like to include, you can send a PR to include them here: https://github.com/ajinabraham/njsscan/tree/master/njsscan/rules/semantic_grep along with unit tests.
The rule that you are referring to is a client side javascript rule and we do not plan to include them in njsscan.