slow-pattern-top-ellipsis
...
at the top of the pattern drastically slows down the rule performance.multi-line-message
message: >-
, not message: |
.metadata-owasp
owasp
tag in Semgrep rule metadata should start with the format “A00:YYYY”, where A00 is the OWASP top ten number and YYYY is the OWASP top ten year.metadata-references
metadata-category
metadata-confidence-incorrect-value
duplicate-pattern
duplicate-id
metadata-likelihood-incorrect-value
yaml-key-indentation-check
$KEY
, put a space between the hyphen and what comes after! Otherwise, it reads as a single string.metadata-technology
metadata-subcategory
metadata-cwe
metadata-subcategory-incorrect-value
metadata-impact-incorrect-value
metadata-likelihood
interfile-true-under-metadata-and-no-options
interfile: true
should be under the options
field, not the metadata
field.slow-pattern-general-func
function (...) {...}
is too general it will probably slow down the rule performance.missing-language-field
unnecessary-parent-operator
message-whitespace-check
metadata-impact
missing-message-field
metadata-confidence
metadata-incorrect-option
empty-message
slow-pattern-single-metavariable
missing-deconstructed-value
const {...} =
var {...} =
and let {...} =
to provide accurate coverage consider adding the missing patterns in a pattern-inside
for better coverage.unsatisfiable-rule
interfile-true-under-metadata-and-options-already-present
interfile: true
should be under the options
field, not the metadata
field.slow-pattern-general-property
$X.$Y
may be too general and may slow down the rule performance.metadata-deepsemgrep
deepsemgrep: true
, please use interfile:true