Collection of personal Semgrep rules for security analysis and research.
- Install semgrep
- Clone this repo
- Select target rule(s) and source dir
$ semgrep --config path/to/rules path/to/source
- Analyze results and tune rules as needed
- Repeat!
| Rule Path | Language | Vuln | Description |
|---|---|---|---|
| ruby/sanitize_sql-misuse | Ruby | SQL Injection | Detect sanitize_sql misuse |
| ruby/find_by_sql-multiple-args | Ruby | SQL Injection | Warn on sanitization behavior |
| ruby/pundit-missing-authorize | Ruby | Access Bypass | Pundit authorization check template |