generic.ci.audit.changed-semgrepignore.changed-semgrepignore

returntocorp

Author

unknown

Download Count*

LGPL Commons Clause

License

$1 has been added to the .semgrepignore list of ignored paths. Someone from app-sec may want to audit these changes.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: changed-semgrepignore
    paths:
      include:
        - .semgrepignore
    patterns:
      - pattern-regex: |
          ^(.*)$
      - pattern-not-regex: |
          ^\n.*$
      - pattern-not-regex: |
          ^#.*$
    message: "`$1` has been added to the .semgrepignore list of ignored paths.
      Someone from app-sec may want to audit these changes."
    languages:
      - generic
    severity: WARNING
    metadata:
      technology:
        - semgrep
      references:
        - https://semgrep.dev/docs/ignoring-files-folders-code/
      category: best-practice
      license: Commons Clause License Condition v1.0[LGPL-2.1-only]

Examples

changed-semgrepignore.generic

# Ignore git items
.gitignore
.git/
:include .gitignore

# Common large paths
node_modules/
build/
dist/
vendor/
.env/
.venv/
.tox/
*.min.js

# Common test paths
test/
tests/
*_test.go

# Semgrep rules folder
.semgrep

# Semgrep-action log folder
.semgrep_logs/

Short Link: https://sg.run/rywn