gitlab.security_code_scan.SCS0001-1

unknown
Download Count*
MIT
License

The highlighted API is used to execute a system command. If unfiltered input is passed to this API, it can lead to arbitrary command execution.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit RuleView Source
Open in Playground 
rules:
  - id: security_code_scan.SCS0001-1
    patterns:
      - pattern-inside: |
          using System.Diagnostics;
          ...
      - pattern-either:
          - patterns:
              - pattern: Process.Start($ARG)
              - pattern-not: Process.Start("...")
          - pattern: (Process $PROC).StartInfo.FileName = <...$ARG...>;
          - pattern: (Process $PROC).StartInfo.Arguments = <...$ARG...>;
          - patterns:
              - pattern-inside: |
                  $PSINFO = new ProcessStartInfo(...)
                  ...
                  Process.Start($PSINFO)
              - pattern-either:
                  - pattern: $PSINFO.Arguments = <...$ARG...>;
                  - pattern: $PSINFO.FileName = <...$ARG...>;
    message: >
      The highlighted API is used to execute a system command. If unfiltered
      input is passed to this

      API, it can lead to arbitrary command execution.
    languages:
      - csharp
    severity: ERROR
    metadata:
      category: security
      cwe: "CWE-78: Improper Neutralization of Special Elements used in an OS Command
        ('OS Command Injection')"
      license: MIT