Skip to content

Comments

CI: Setup semgrep#2729

Merged
mergify[bot] merged 6 commits intodevelopfrom
jg/semgrep
Jun 9, 2022
Merged

CI: Setup semgrep#2729
mergify[bot] merged 6 commits intodevelopfrom
jg/semgrep

Conversation

@trianglesphere
Copy link
Contributor

@trianglesphere trianglesphere commented Jun 8, 2022

Description
This enables semgrep scanning to CI. Rules are set at semgrep.dev.
This defaults to only scanning new code.

@changeset-bot
Copy link

changeset-bot bot commented Jun 8, 2022

⚠️ No Changeset found

Latest commit: e1a39fc

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@mergify mergify bot requested review from Inphi and mslipper June 8, 2022 23:13
@trianglesphere trianglesphere changed the title Jg/semgrep CI: Setup semgrep Jun 9, 2022
@trianglesphere trianglesphere marked this pull request as ready for review June 9, 2022 00:21
@mergify mergify bot requested a review from Inphi June 9, 2022 13:04
@mergify
Copy link
Contributor

mergify bot commented Jun 9, 2022

This PR has been added to the merge queue, and will be merged soon.

@mergify
Copy link
Contributor

mergify bot commented Jun 9, 2022

This PR is next in line to be merged, and will be merged as soon as checks pass.

@mergify mergify bot merged commit e55b9b7 into develop Jun 9, 2022
@mergify mergify bot deleted the jg/semgrep branch June 9, 2022 13:17
@mergify mergify bot removed the on-merge-train label Jun 9, 2022
roninjin10 pushed a commit that referenced this pull request Jun 9, 2022
* Add semgrep to CI

* Add ignore file

* Flag only new semgrep findings

* Update config.yml

Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
This was referenced Jun 9, 2022
theochap pushed a commit that referenced this pull request Dec 10, 2025
## Overview

Updates the `zepter` configuration to allow `alloy-hardforks` +
`alloy-op-hardforks`' `serde` feature to propagate, since they've now
fixed the "serde implies `std`" issue.

_note_: The last exception is `miniz_oxide`, which now has the fix
merged, but not released: Frommi/miniz_oxide#178
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants