IndexedVerified
GitLab SAST Rules
Redistributable GitLab SAST Semgrep rules indexed from the public GitLab security-products/sast-rules repository, with rule-level license metadata.
Fetch pack
greprules pack fetch gitlab-sast-rules --engine opengrepcurl https://api.greprules.io/api/packs/gitlab-sast-rules.tar.gz -o gitlab-sast-rules.tar.gzIncluded rules
Access RpcImpersonateClient ImpersonateLoggedOnUser
gitlab-sast-c-access-rule-rpcimpersonateclient-impersonateloggedonuserAccess Umaskgitlab-sast-c-access-rule-umaskBuffer Fscanf Sscanfgitlab-sast-c-buffer-rule-fscanf-sscanfBuffer G Get Home Dirgitlab-sast-c-buffer-rule-g-get-home-dirBuffer G Get Tmp Dirgitlab-sast-c-buffer-rule-g-get-tmp-dirBuffer Getenv Curl Getenvgitlab-sast-c-buffer-rule-getenv-curl-getenvBuffer Gets Gettsgitlab-sast-c-buffer-rule-gets-gettsBuffer Getwdgitlab-sast-c-buffer-rule-getwdBuffer Lstrcat Wcscatgitlab-sast-c-buffer-rule-lstrcat-wcscatBuffer Lstrcatn Wcsncatgitlab-sast-c-buffer-rule-lstrcatn-wcsncatBuffer Lstrcpy Wcscpygitlab-sast-c-buffer-rule-lstrcpy-wcscpyBuffer Lstrcpyn Wcsncpygitlab-sast-c-buffer-rule-lstrcpyn-wcsncpyBuffer Memcpy CopyMemorygitlab-sast-c-buffer-rule-memcpy-copymemoryBuffer MultiByteToWideChargitlab-sast-c-buffer-rule-multibytetowidecharBuffer Realpathgitlab-sast-c-buffer-rule-realpathBuffer Scanf Vscanfgitlab-sast-c-buffer-rule-scanf-vscanfBuffer Sprintf Vsprintfgitlab-sast-c-buffer-rule-sprintf-vsprintfBuffer StrCat StrCatAgitlab-sast-c-buffer-rule-strcat-strcataBuffer Strcatgitlab-sast-c-buffer-rule-strcatBuffer Strccpy Strcaddgitlab-sast-c-buffer-rule-strccpy-strcaddBuffer Strcpygitlab-sast-c-buffer-rule-strcpyBuffer StrcpyA StrcpyWgitlab-sast-c-buffer-rule-strcpya-strcpywBuffer Streadd Strecpygitlab-sast-c-buffer-rule-streadd-strecpyBuffer Strlen Wcslengitlab-sast-c-buffer-rule-strlen-wcslenBuffer Strncatgitlab-sast-c-buffer-rule-strncatBuffer Strncpygitlab-sast-c-buffer-rule-strncpyBuffer Strtrnsgitlab-sast-c-buffer-rule-strtrnsCrypto Crypt Crypt Rgitlab-sast-c-crypto-rule-crypt-crypt-rCrypto EVP Des Ecb EVP Des Cbcgitlab-sast-c-crypto-rule-evp-des-ecb-evp-des-cbcCrypto EVP Rc4 40 EVP Rc2 40 Cbcgitlab-sast-c-crypto-rule-evp-rc4-40-evp-rc2-40-cbcFormat Fprintf Vfprintfgitlab-sast-c-format-rule-fprintf-vfprintfFormat Printf Vprintfgitlab-sast-c-format-rule-printf-vprintfFormat Snprintf Vsnprintfgitlab-sast-c-format-rule-snprintf-vsnprintfFormat Sysloggitlab-sast-c-format-rule-syslogFree Memaligngitlab-sast-c-free-rule-memalignInteger Atoi Atolgitlab-sast-c-integer-rule-atoi-atolMisc AddAccessAllowedAcegitlab-sast-c-misc-rule-addaccessallowedaceMisc Cuseridgitlab-sast-c-misc-rule-cuseridMisc Fopen Opengitlab-sast-c-misc-rule-fopen-openMisc Getlogingitlab-sast-c-misc-rule-getloginMisc Getpassgitlab-sast-c-misc-rule-getpassMisc LoadLibrarygitlab-sast-c-misc-rule-loadlibraryMisc LoadLibraryExgitlab-sast-c-misc-rule-loadlibraryexMisc SetSecurityDescriptorDaclgitlab-sast-c-misc-rule-setsecuritydescriptordaclObsolete Gsignal Ssignalgitlab-sast-c-obsolete-rule-gsignal-ssignalObsolete Ulimitgitlab-sast-c-obsolete-rule-ulimitObsolete Usleepgitlab-sast-c-obsolete-rule-usleepRace Accessgitlab-sast-c-race-rule-accessRace Chmodgitlab-sast-c-race-rule-chmodRace Chowngitlab-sast-c-race-rule-chownRace Readlinkgitlab-sast-c-race-rule-readlinkRace Vforkgitlab-sast-c-race-rule-vforkRandom Drand48 Erand48gitlab-sast-c-random-rule-drand48-erand48Shell CreateProcessgitlab-sast-c-shell-rule-createprocessShell CreateProcessAsUser CreateProcessWithLogongitlab-sast-c-shell-rule-createprocessasuser-createprocesswithlogonShell Execl Execlpgitlab-sast-c-shell-rule-execl-execlpShell Systemgitlab-sast-c-shell-rule-systemTmpfile GetTempFileNamegitlab-sast-c-tmpfile-rule-gettempfilenameTmpfile Mkstempgitlab-sast-c-tmpfile-rule-mkstempTmpfile Mktempgitlab-sast-c-tmpfile-rule-mktempTmpfile Tmpfilegitlab-sast-c-tmpfile-rule-tmpfileTmpfile Tmpnam Tempnamgitlab-sast-c-tmpfile-rule-tmpnam-tempnamCookies CookieWithoutHttpOnlyFlaggitlab-sast-csharp-cookies-rule-cookiewithouthttponlyflagCookies CookieWithoutSSLFlaggitlab-sast-csharp-cookies-rule-cookiewithoutsslflagCrypto CertificateValidationDisabledgitlab-sast-csharp-crypto-rule-certificatevalidationdisabledCrypto WeakCipherAlgorithmgitlab-sast-csharp-crypto-rule-weakcipheralgorithmCrypto WeakCipherModegitlab-sast-csharp-crypto-rule-weakciphermodeCrypto WeakHashingFunctiongitlab-sast-csharp-crypto-rule-weakhashingfunctionCrypto WeakRNGgitlab-sast-csharp-crypto-rule-weakrngCsrf Csrfgitlab-sast-csharp-csrf-rule-csrfDeserialization InsecureDeserializationgitlab-sast-csharp-deserialization-rule-insecuredeserializationEndpoint UnvalidatedRedirectgitlab-sast-csharp-endpoint-rule-unvalidatedredirectInjection CommandInjectiongitlab-sast-csharp-injection-rule-commandinjectionInjection LdapInjectiongitlab-sast-csharp-injection-rule-ldapinjectionInjection SQLInjectiongitlab-sast-csharp-injection-rule-sqlinjectionInjection XmlDocumentXXEInjectiongitlab-sast-csharp-injection-rule-xmldocumentxxeinjectionInjection XmlReaderXXEInjectiongitlab-sast-csharp-injection-rule-xmlreaderxxeinjectionInjection XPathInjectiongitlab-sast-csharp-injection-rule-xpathinjectionOther UnsafeXSLTSettingUsedgitlab-sast-csharp-other-rule-unsafexsltsettingusedPassword PasswordComplexitygitlab-sast-csharp-password-rule-passwordcomplexityPath PathTraversalgitlab-sast-csharp-path-rule-pathtraversalValidation InputValidationgitlab-sast-csharp-validation-rule-inputvalidationXss HtmlElementXssgitlab-sast-csharp-xss-rule-htmlelementxssXss ScriptXssgitlab-sast-csharp-xss-rule-scriptxssBlocklist Blocklist Desgitlab-sast-go-blocklist-rule-blocklist-desBlocklist Blocklist Md5gitlab-sast-go-blocklist-rule-blocklist-md5Blocklist Blocklist Rc4gitlab-sast-go-blocklist-rule-blocklist-rc4Blocklist Blocklist Sha1gitlab-sast-go-blocklist-rule-blocklist-sha1Crypto Badtlssettingsgitlab-sast-go-crypto-rule-badtlssettingsCrypto Insecure Ignore Host Keygitlab-sast-go-crypto-rule-insecure-ignore-host-keyCrypto Tlsversiongitlab-sast-go-crypto-rule-tlsversionCrypto Weakkeystrengthgitlab-sast-go-crypto-rule-weakkeystrengthCrypto Weakrandsourcegitlab-sast-go-crypto-rule-weakrandsourceFile Permissions Filepermgitlab-sast-go-file-permissions-rule-filepermFile Permissions Mkdirgitlab-sast-go-file-permissions-rule-mkdirFilesystem Decompression Bombgitlab-sast-go-filesystem-rule-decompression-bombFilesystem Filereadgitlab-sast-go-filesystem-rule-filereadFilesystem Httprootdirgitlab-sast-go-filesystem-rule-httprootdirFilesystem Poorwritepermissionsgitlab-sast-go-filesystem-rule-poorwritepermissionsFilesystem Tempfilesgitlab-sast-go-filesystem-rule-tempfilesFilesystem Ziparchivegitlab-sast-go-filesystem-rule-ziparchiveHttp Http Servegitlab-sast-go-http-rule-http-serveInjection Ssrfgitlab-sast-go-injection-rule-ssrfInjection Template Injectiongitlab-sast-go-injection-rule-template-injectionLeak Pprof Endpointgitlab-sast-go-leak-rule-pprof-endpointMemory Integer Overflowgitlab-sast-go-memory-rule-integer-overflowMemory Memoryaliasinggitlab-sast-go-memory-rule-memoryaliasingNetwork Bind To All Interfacesgitlab-sast-go-network-rule-bind-to-all-interfacesSql Concat Sqligitlab-sast-go-sql-rule-concat-sqliSubproc Subprocgitlab-sast-go-subproc-rule-subprocUnsafe Unsafegitlab-sast-go-unsafe-rule-unsafeCookie CookieInsecuregitlab-sast-java-cookie-rule-cookieinsecureCookie HttpResponseSplittinggitlab-sast-java-cookie-rule-httpresponsesplittingCookie RequestParamToHeadergitlab-sast-java-cookie-rule-requestparamtoheaderCors PermissiveCORSInjectiongitlab-sast-java-cors-rule-permissivecorsinjectionCrypto BlowfishKeySizegitlab-sast-java-crypto-rule-blowfishkeysizeCrypto CipherDESedeInsecuregitlab-sast-java-crypto-rule-cipherdesedeinsecureCrypto CipherDESInsecuregitlab-sast-java-crypto-rule-cipherdesinsecureCrypto CipherECBModegitlab-sast-java-crypto-rule-cipherecbmodeCrypto CipherIntegritygitlab-sast-java-crypto-rule-cipherintegrityCrypto CipherPaddingOraclegitlab-sast-java-crypto-rule-cipherpaddingoracleCrypto CustomMessageDigestgitlab-sast-java-crypto-rule-custommessagedigestCrypto HazelcastSymmetricEncryptiongitlab-sast-java-crypto-rule-hazelcastsymmetricencryptionCrypto InsufficientKeySizeRsagitlab-sast-java-crypto-rule-insufficientkeysizersaCrypto NullCiphergitlab-sast-java-crypto-rule-nullcipherCrypto RsaNoPaddinggitlab-sast-java-crypto-rule-rsanopaddingCrypto WeakMessageDigestgitlab-sast-java-crypto-rule-weakmessagedigestCrypto WeakTLSProtocolDefaultHttpClientgitlab-sast-java-crypto-rule-weaktlsprotocoldefaulthttpclientCrypto WeakTLSProtocolSSLContextgitlab-sast-java-crypto-rule-weaktlsprotocolsslcontextCrypto WeakTLSProtocolVersiongitlab-sast-java-crypto-rule-weaktlsprotocolversionEndpoint HostnameVerifiergitlab-sast-java-endpoint-rule-hostnameverifierEndpoint UnvalidatedRedirectgitlab-sast-java-endpoint-rule-unvalidatedredirectEndpoint X509TrustManagergitlab-sast-java-endpoint-rule-x509trustmanagerFile FilenameUtilsgitlab-sast-java-file-rule-filenameutilsFile FileUploadFileNamegitlab-sast-java-file-rule-fileuploadfilenameInject CommandInjectiongitlab-sast-java-inject-rule-commandinjectionInject ELInjectiongitlab-sast-java-inject-rule-elinjectionInject FileDisclosureRequestDispatchergitlab-sast-java-inject-rule-filedisclosurerequestdispatcherInject FileDisclosureSpringFrameworkgitlab-sast-java-inject-rule-filedisclosurespringframeworkInject HttpParameterPollutiongitlab-sast-java-inject-rule-httpparameterpollutionInject LDAPInjectiongitlab-sast-java-inject-rule-ldapinjectionInject OgnlInjectiongitlab-sast-java-inject-rule-ognlinjectionInject SpotbugsPathTraversalAbsolutegitlab-sast-java-inject-rule-spotbugspathtraversalabsoluteLdap AnonymousLDAPgitlab-sast-java-ldap-rule-anonymousldapPassword ConstantDBPasswordgitlab-sast-java-password-rule-constantdbpasswordPassword EmptyDBPasswordgitlab-sast-java-password-rule-emptydbpasswordPassword HardcodePasswordgitlab-sast-java-password-rule-hardcodepasswordPerm DangerousPermissionsgitlab-sast-java-perm-rule-dangerouspermissionsPerm OverlyPermissiveFilePermissionInlinegitlab-sast-java-perm-rule-overlypermissivefilepermissioninlineScript ScriptInjectiongitlab-sast-java-script-rule-scriptinjectionScript SpringSpelExpressionParsergitlab-sast-java-script-rule-springspelexpressionparserSmtp InsecureSmtpgitlab-sast-java-smtp-rule-insecuresmtpSmtp SmtpClientgitlab-sast-java-smtp-rule-smtpclientSsrf SSRFgitlab-sast-java-ssrf-rule-ssrfStrings BadHexConversiongitlab-sast-java-strings-rule-badhexconversionStrings FormatStringManipulationgitlab-sast-java-strings-rule-formatstringmanipulationStrings ModifyAfterValidationgitlab-sast-java-strings-rule-modifyaftervalidationStrings NormalizeAfterValidationgitlab-sast-java-strings-rule-normalizeaftervalidationTemplateinjection TemplateInjectiongitlab-sast-java-templateinjection-rule-templateinjectionUnsafe ExternalConfigControlgitlab-sast-java-unsafe-rule-externalconfigcontrolXml SAMLIgnoreCommentsgitlab-sast-java-xml-rule-samlignorecommentsXml XmlDecodergitlab-sast-java-xml-rule-xmldecoderXml XsltTransformgitlab-sast-java-xml-rule-xslttransformXss WicketXSSgitlab-sast-java-xss-rule-wicketxssXss XSSReqParamToServletWritergitlab-sast-java-xss-rule-xssreqparamtoservletwriterXxe XMLRdrgitlab-sast-java-xxe-rule-xmlrdrBuf Buffer Noassert Readgitlab-sast-javascript-buf-rule-buffer-noassert-readBuf Buffer Noassert Writegitlab-sast-javascript-buf-rule-buffer-noassert-writeBuf Detect New Buffergitlab-sast-javascript-buf-rule-detect-new-bufferDos Non Literal Regexpgitlab-sast-javascript-dos-rule-non-literal-regexpEval Eval With Expressiongitlab-sast-javascript-eval-rule-eval-with-expressionRandom Pseudo Random Bytesgitlab-sast-javascript-random-rule-pseudo-random-bytesReact Dangerouslysetinnerhtmlgitlab-sast-javascript-react-rule-dangerouslysetinnerhtmlRequire Non Literal Requiregitlab-sast-javascript-require-rule-non-literal-requireTiming Possible Timing Attacksgitlab-sast-javascript-timing-rule-possible-timing-attacksXss Mustache Escapegitlab-sast-javascript-xss-rule-mustache-escapeAssert Assert Usedgitlab-sast-python-assert-rule-assert-usedBind All Interfaces General Bindall Interfacesgitlab-sast-python-bind-all-interfaces-rule-general-bindall-interfacesCrypto Cipher Modesgitlab-sast-python-crypto-rule-cipher-modesCrypto Crypto Cipher Blowfishgitlab-sast-python-crypto-rule-crypto-cipher-blowfishCrypto Crypto Cipher Desgitlab-sast-python-crypto-rule-crypto-cipher-desCrypto Crypto Cipher Rc2gitlab-sast-python-crypto-rule-crypto-cipher-rc2Crypto Crypto Cipher Rc4gitlab-sast-python-crypto-rule-crypto-cipher-rc4Crypto Crypto Cipher Xorgitlab-sast-python-crypto-rule-crypto-cipher-xorCrypto Crypto Encrypt Dsa Rsagitlab-sast-python-crypto-rule-crypto-encrypt-dsa-rsaCrypto Crypto Encrypt Ecgitlab-sast-python-crypto-rule-crypto-encrypt-ecCrypto Crypto Hash Md5gitlab-sast-python-crypto-rule-crypto-hash-md5Crypto Crypto Hash Sha1gitlab-sast-python-crypto-rule-crypto-hash-sha1Crypto Crypto Hazmat Cipher Arc4gitlab-sast-python-crypto-rule-crypto-hazmat-cipher-arc4Crypto Crypto Hazmat Cipher Blowfishgitlab-sast-python-crypto-rule-crypto-hazmat-cipher-blowfishCrypto Crypto Hazmat Cipher Ideagitlab-sast-python-crypto-rule-crypto-hazmat-cipher-ideaCrypto Crypto Hazmat Hash Md5gitlab-sast-python-crypto-rule-crypto-hazmat-hash-md5Crypto Crypto Hazmat Hash Sha1gitlab-sast-python-crypto-rule-crypto-hazmat-hash-sha1Crypto Hash Md2gitlab-sast-python-crypto-rule-hash-md2Crypto Hash Md4gitlab-sast-python-crypto-rule-hash-md4Crypto Hash Md5gitlab-sast-python-crypto-rule-hash-md5Crypto Hash Sha1gitlab-sast-python-crypto-rule-hash-sha1Crypto Hashlib New Insecure Functionsgitlab-sast-python-crypto-rule-hashlib-new-insecure-functionsCrypto Import Pycryptogitlab-sast-python-crypto-rule-import-pycryptoDeserialization Cpicklegitlab-sast-python-deserialization-rule-cpickleDeserialization Dillgitlab-sast-python-deserialization-rule-dillDeserialization Marshalgitlab-sast-python-deserialization-rule-marshalDeserialization Picklegitlab-sast-python-deserialization-rule-pickleDeserialization Shelvegitlab-sast-python-deserialization-rule-shelveDeserialization Yaml Loadgitlab-sast-python-deserialization-rule-yaml-loadDjango Django Extra Usedgitlab-sast-python-django-rule-django-extra-usedEscaping Jinja2 Autoescape Falsegitlab-sast-python-escaping-rule-jinja2-autoescape-falseEscaping Use Of Mako Templatesgitlab-sast-python-escaping-rule-use-of-mako-templatesEval Evalgitlab-sast-python-eval-rule-evalExec Exec Usedgitlab-sast-python-exec-rule-exec-usedExec Linux Command Wildcard Injectiongitlab-sast-python-exec-rule-linux-command-wildcard-injectionExec Os Pathgitlab-sast-python-exec-rule-os-pathExec Os Popen2gitlab-sast-python-exec-rule-os-popen2Exec Start Process With No Shellgitlab-sast-python-exec-rule-start-process-with-no-shellExec Subprocess Callgitlab-sast-python-exec-rule-subprocess-callExec Subprocess Popen Shell Truegitlab-sast-python-exec-rule-subprocess-popen-shell-trueExec Subprocess Shell TRUEgitlab-sast-python-exec-rule-subprocess-shell-trueFile Permissions General Bad Permissiongitlab-sast-python-file-permissions-rule-general-bad-permissionFiles Tarfile Unsafe Membersgitlab-sast-python-files-rule-tarfile-unsafe-membersFlask App Debuggitlab-sast-python-flask-rule-app-debugFtp Ftplibgitlab-sast-python-ftp-rule-ftplibLog Logging Config Insecure Listengitlab-sast-python-log-rule-logging-config-insecure-listenRandom Randomgitlab-sast-python-random-rule-randomRequests Request Without Timeoutgitlab-sast-python-requests-rule-request-without-timeoutSnmp Insecure Snmp Versiongitlab-sast-python-snmp-rule-insecure-snmp-versionSnmp Snmp Weak Cryptographygitlab-sast-python-snmp-rule-snmp-weak-cryptographySql Hardcoded Sql Expressiongitlab-sast-python-sql-rule-hardcoded-sql-expressionSsh Ssh Nohost Key Verificationgitlab-sast-python-ssh-rule-ssh-nohost-key-verificationSsl Req No Certvalidgitlab-sast-python-ssl-rule-req-no-certvalidSsl Ssl No Versiongitlab-sast-python-ssl-rule-ssl-no-versionSsl Ssl With Bad Versiongitlab-sast-python-ssl-rule-ssl-with-bad-versionSsl Unverified Contextgitlab-sast-python-ssl-rule-unverified-contextTelnet Import Telnibgitlab-sast-python-telnet-rule-import-telnibTmpdir Hardcodedtmpgitlab-sast-python-tmpdir-rule-hardcodedtmpTmpdir Mktemp Qgitlab-sast-python-tmpdir-rule-mktemp-qUrlopen Urllib Urlopengitlab-sast-python-urlopen-rule-urllib-urlopenXml Celementgitlab-sast-python-xml-rule-celementXml Elementgitlab-sast-python-xml-rule-elementXml Etreegitlab-sast-python-xml-rule-etreeXml Expatbuildergitlab-sast-python-xml-rule-expatbuilderXml Expatreadergitlab-sast-python-xml-rule-expatreaderXml Minidomgitlab-sast-python-xml-rule-minidomXml Pulldomgitlab-sast-python-xml-rule-pulldomXml Saxgitlab-sast-python-xml-rule-saxExec Start Process Partial Pathgitlab-sast-rules-gitlab-python-exec-rule-start-process-partial-pathExec Start Process Pathgitlab-sast-rules-gitlab-python-exec-rule-start-process-pathExec Subprocess Call Arraygitlab-sast-rules-gitlab-python-exec-rule-subprocess-call-arrayUnsafe InformationExposureVariant2gitlab-sast-rules-gitlab-scala-unsafe-rule-informationexposurevariant2Webview Ignore Ssl Certificate Errorsgitlab-sast-rules-lgpl-java-webview-rule-ignore-ssl-certificate-errorsWebview Webview Debugginggitlab-sast-rules-lgpl-java-webview-rule-webview-debuggingWebview Webview External Storagegitlab-sast-rules-lgpl-java-webview-rule-webview-external-storageWebview Webview Set Allow File Accessgitlab-sast-rules-lgpl-java-webview-rule-webview-set-allow-file-accessCrypto Node Aes Ecbgitlab-sast-rules-lgpl-javascript-crypto-rule-node-aes-ecbCrypto Node Aes Noivgitlab-sast-rules-lgpl-javascript-crypto-rule-node-aes-noivCrypto Node Md5gitlab-sast-rules-lgpl-javascript-crypto-rule-node-md5Crypto Node Sha1gitlab-sast-rules-lgpl-javascript-crypto-rule-node-sha1Crypto Node Timing Attackgitlab-sast-rules-lgpl-javascript-crypto-rule-node-timing-attackCrypto Node Tls Rejectgitlab-sast-rules-lgpl-javascript-crypto-rule-node-tls-rejectCrypto Node Weak Cryptogitlab-sast-rules-lgpl-javascript-crypto-rule-node-weak-cryptoDatabase Node Knex Sqli Injectiongitlab-sast-rules-lgpl-javascript-database-rule-node-knex-sqli-injectionDatabase Node Nosqli Js Injectiongitlab-sast-rules-lgpl-javascript-database-rule-node-nosqli-js-injectionDatabase Node Sqli Injectiongitlab-sast-rules-lgpl-javascript-database-rule-node-sqli-injectionDatabase Sequelize Tls Cert Validationgitlab-sast-rules-lgpl-javascript-database-rule-sequelize-tls-cert-validationDatabase Sequelize Tlsgitlab-sast-rules-lgpl-javascript-database-rule-sequelize-tlsDatabase Sequelize Weak Tlsgitlab-sast-rules-lgpl-javascript-database-rule-sequelize-weak-tlsDos Layer7 Object Dosgitlab-sast-rules-lgpl-javascript-dos-rule-layer7-object-dosDos Regex Dosgitlab-sast-rules-lgpl-javascript-dos-rule-regex-dosElectronjs Electron Allow Httpgitlab-sast-rules-lgpl-javascript-electronjs-rule-electron-allow-httpElectronjs Electron Blink Integrationgitlab-sast-rules-lgpl-javascript-electronjs-rule-electron-blink-integrationElectronjs Electron Context Isolationgitlab-sast-rules-lgpl-javascript-electronjs-rule-electron-context-isolationElectronjs Electron Disable Websecuritygitlab-sast-rules-lgpl-javascript-electronjs-rule-electron-disable-websecurityElectronjs Electron Experimental Featuresgitlab-sast-rules-lgpl-javascript-electronjs-rule-electron-experimental-featuresElectronjs Electron Nodejs Integrationgitlab-sast-rules-lgpl-javascript-electronjs-rule-electron-nodejs-integrationEval Eval Nodejsgitlab-sast-rules-lgpl-javascript-eval-rule-eval-nodejsEval Eval Requiregitlab-sast-rules-lgpl-javascript-eval-rule-eval-requireEval Grpc Insecure Connectiongitlab-sast-rules-lgpl-javascript-eval-rule-grpc-insecure-connectionEval Node Deserializegitlab-sast-rules-lgpl-javascript-eval-rule-node-deserializeEval Sandbox Code Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-sandbox-code-injectionEval Serializetojs Deserializegitlab-sast-rules-lgpl-javascript-eval-rule-serializetojs-deserializeEval Server Side Template Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-server-side-template-injectionEval Vm Code Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-vm-code-injectionEval Vm Compilefunction Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-vm-compilefunction-injectionEval Vm Runincontext Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-vm-runincontext-injectionEval Vm Runinnewcontext Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-vm-runinnewcontext-injectionEval Vm2 Code Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-vm2-code-injectionEval Vm2 Context Injectiongitlab-sast-rules-lgpl-javascript-eval-rule-vm2-context-injectionEval Yaml Deserializegitlab-sast-rules-lgpl-javascript-eval-rule-yaml-deserializeExec Shelljs Os Command Execgitlab-sast-rules-lgpl-javascript-exec-rule-shelljs-os-command-execHeaders Cookie Session Defaultgitlab-sast-rules-lgpl-javascript-headers-rule-cookie-session-defaultHeaders Cookie Session No Domaingitlab-sast-rules-lgpl-javascript-headers-rule-cookie-session-no-domainHeaders Cookie Session No Httponlygitlab-sast-rules-lgpl-javascript-headers-rule-cookie-session-no-httponlyHeaders Cookie Session No Maxagegitlab-sast-rules-lgpl-javascript-headers-rule-cookie-session-no-maxageHeaders Cookie Session No Pathgitlab-sast-rules-lgpl-javascript-headers-rule-cookie-session-no-pathHeaders Cookie Session No Samesitegitlab-sast-rules-lgpl-javascript-headers-rule-cookie-session-no-samesiteHeaders Cookie Session No Securegitlab-sast-rules-lgpl-javascript-headers-rule-cookie-session-no-secureHeaders Express Corsgitlab-sast-rules-lgpl-javascript-headers-rule-express-corsHeaders Generic Corsgitlab-sast-rules-lgpl-javascript-headers-rule-generic-corsHeaders Generic Header Injectiongitlab-sast-rules-lgpl-javascript-headers-rule-generic-header-injectionHeaders Header Xss Genericgitlab-sast-rules-lgpl-javascript-headers-rule-header-xss-genericHeaders Header Xss Luscagitlab-sast-rules-lgpl-javascript-headers-rule-header-xss-luscaHeaders Helmet Feature Disabledgitlab-sast-rules-lgpl-javascript-headers-rule-helmet-feature-disabledHeaders Host Header Injectiongitlab-sast-rules-lgpl-javascript-headers-rule-host-header-injectionJwt Hardcoded Jwt Secretgitlab-sast-rules-lgpl-javascript-jwt-rule-hardcoded-jwt-secretJwt Jwt Exposed Credentialsgitlab-sast-rules-lgpl-javascript-jwt-rule-jwt-exposed-credentialsJwt Jwt Exposed Datagitlab-sast-rules-lgpl-javascript-jwt-rule-jwt-exposed-dataJwt Jwt Express Hardcodedgitlab-sast-rules-lgpl-javascript-jwt-rule-jwt-express-hardcodedJwt Jwt Not Revokedgitlab-sast-rules-lgpl-javascript-jwt-rule-jwt-not-revokedJwt Node Jwt None Algorithmgitlab-sast-rules-lgpl-javascript-jwt-rule-node-jwt-none-algorithmRedirect Express Open Redirectgitlab-sast-rules-lgpl-javascript-redirect-rule-express-open-redirectRedirect Express Open Redirect2gitlab-sast-rules-lgpl-javascript-redirect-rule-express-open-redirect2Ssrf Node Ssrfgitlab-sast-rules-lgpl-javascript-ssrf-rule-node-ssrfSsrf Phantom Ssrfgitlab-sast-rules-lgpl-javascript-ssrf-rule-phantom-ssrfSsrf Playwright Ssrfgitlab-sast-rules-lgpl-javascript-ssrf-rule-playwright-ssrfSsrf Puppeteer Ssrfgitlab-sast-rules-lgpl-javascript-ssrf-rule-puppeteer-ssrfSsrf Wkhtmltoimage Ssrfgitlab-sast-rules-lgpl-javascript-ssrf-rule-wkhtmltoimage-ssrfSsrf Wkhtmltopdf Ssrfgitlab-sast-rules-lgpl-javascript-ssrf-rule-wkhtmltopdf-ssrfTraversal Admzip Path Overwritegitlab-sast-rules-lgpl-javascript-traversal-rule-admzip-path-overwriteTraversal Express Lfr Warninggitlab-sast-rules-lgpl-javascript-traversal-rule-express-lfr-warningTraversal Express Lfrgitlab-sast-rules-lgpl-javascript-traversal-rule-express-lfrTraversal Generic Path Traversalgitlab-sast-rules-lgpl-javascript-traversal-rule-generic-path-traversalTraversal Join Resolve Path Traversalgitlab-sast-rules-lgpl-javascript-traversal-rule-join-resolve-path-traversalTraversal Tar Path Overwritegitlab-sast-rules-lgpl-javascript-traversal-rule-tar-path-overwriteTraversal Zip Path Overwritegitlab-sast-rules-lgpl-javascript-traversal-rule-zip-path-overwriteXml Node Entity Expansiongitlab-sast-rules-lgpl-javascript-xml-rule-node-entity-expansionXml Node Xpath Injectiongitlab-sast-rules-lgpl-javascript-xml-rule-node-xpath-injectionXml Node Xxegitlab-sast-rules-lgpl-javascript-xml-rule-node-xxeXml Xxe Expatgitlab-sast-rules-lgpl-javascript-xml-rule-xxe-expatXss Express Xssgitlab-sast-rules-lgpl-javascript-xss-rule-express-xssXss Handlebars Noescapegitlab-sast-rules-lgpl-javascript-xss-rule-handlebars-noescapeXss Handlebars Safestringgitlab-sast-rules-lgpl-javascript-xss-rule-handlebars-safestringXss Squirrelly Autoescapegitlab-sast-rules-lgpl-javascript-xss-rule-squirrelly-autoescapeXss Xss Disable Mustache Escapegitlab-sast-rules-lgpl-javascript-xss-rule-xss-disable-mustache-escapeXss Xss Serialize Javascriptgitlab-sast-rules-lgpl-javascript-xss-rule-xss-serialize-javascriptCookie CookieHTTPOnlygitlab-sast-rules-lgpl-kotlin-cookie-rule-cookiehttponlyCookie CookieInsecuregitlab-sast-rules-lgpl-kotlin-cookie-rule-cookieinsecureCookie HttpResponseSplittinggitlab-sast-rules-lgpl-kotlin-cookie-rule-httpresponsesplittingCookie RequestParamToHeadergitlab-sast-rules-lgpl-kotlin-cookie-rule-requestparamtoheaderCors PermissiveCORSInjectiongitlab-sast-rules-lgpl-kotlin-cors-rule-permissivecorsinjectionCrypto BlowfishKeySizegitlab-sast-rules-lgpl-kotlin-crypto-rule-blowfishkeysizeCrypto CipherDESedeInsecuregitlab-sast-rules-lgpl-kotlin-crypto-rule-cipherdesedeinsecureCrypto CipherDESInsecuregitlab-sast-rules-lgpl-kotlin-crypto-rule-cipherdesinsecureCrypto CipherECBModegitlab-sast-rules-lgpl-kotlin-crypto-rule-cipherecbmodeCrypto CipherIntegritygitlab-sast-rules-lgpl-kotlin-crypto-rule-cipherintegrityCrypto CipherPaddingOraclegitlab-sast-rules-lgpl-kotlin-crypto-rule-cipherpaddingoracleCrypto CustomMessageDigestgitlab-sast-rules-lgpl-kotlin-crypto-rule-custommessagedigestCrypto HazelcastSymmetricEncryptiongitlab-sast-rules-lgpl-kotlin-crypto-rule-hazelcastsymmetricencryptionCrypto InsufficientKeySizeRsagitlab-sast-rules-lgpl-kotlin-crypto-rule-insufficientkeysizersaCrypto NullCiphergitlab-sast-rules-lgpl-kotlin-crypto-rule-nullcipherCrypto RsaNoPaddinggitlab-sast-rules-lgpl-kotlin-crypto-rule-rsanopaddingCrypto WeakMessageDigestgitlab-sast-rules-lgpl-kotlin-crypto-rule-weakmessagedigestCrypto WeakTLSProtocolgitlab-sast-rules-lgpl-kotlin-crypto-rule-weaktlsprotocolCrypto WeakTLSProtocolVersiongitlab-sast-rules-lgpl-kotlin-crypto-rule-weaktlsprotocolversionCsrf SpringCSRFDisabledgitlab-sast-rules-lgpl-kotlin-csrf-rule-springcsrfdisabledEndpoint UnvalidatedRedirectgitlab-sast-rules-lgpl-kotlin-endpoint-rule-unvalidatedredirectEndpoint WeakHostNameVerificationgitlab-sast-rules-lgpl-kotlin-endpoint-rule-weakhostnameverificationFile FilenameUtilsgitlab-sast-rules-lgpl-kotlin-file-rule-filenameutilsFile FileUploadFileNamegitlab-sast-rules-lgpl-kotlin-file-rule-fileuploadfilenameInject CommandInjectiongitlab-sast-rules-lgpl-kotlin-inject-rule-commandinjectionInject ELInjectiongitlab-sast-rules-lgpl-kotlin-inject-rule-elinjectionInject FileDisclosuregitlab-sast-rules-lgpl-kotlin-inject-rule-filedisclosureInject HttpParameterPollutiongitlab-sast-rules-lgpl-kotlin-inject-rule-httpparameterpollutionInject LDAPInjectiongitlab-sast-rules-lgpl-kotlin-inject-rule-ldapinjectionInject OgnlInjectiongitlab-sast-rules-lgpl-kotlin-inject-rule-ognlinjectionInject SpotbugsPathTraversalAbsolutegitlab-sast-rules-lgpl-kotlin-inject-rule-spotbugspathtraversalabsoluteInject SqlInjectiongitlab-sast-rules-lgpl-kotlin-inject-rule-sqlinjectionLdap AnonymousLDAPgitlab-sast-rules-lgpl-kotlin-ldap-rule-anonymousldapPassword ConstantDBPasswordgitlab-sast-rules-lgpl-kotlin-password-rule-constantdbpasswordPassword EmptyDBPasswordgitlab-sast-rules-lgpl-kotlin-password-rule-emptydbpasswordPassword HardcodePasswordgitlab-sast-rules-lgpl-kotlin-password-rule-hardcodepasswordPerm DangerousPermissionsgitlab-sast-rules-lgpl-kotlin-perm-rule-dangerouspermissionsPerm OverlyPermissiveFilePermissionInlinegitlab-sast-rules-lgpl-kotlin-perm-rule-overlypermissivefilepermissioninlineScript ScriptInjectiongitlab-sast-rules-lgpl-kotlin-script-rule-scriptinjectionSmtp InsecureSmtpgitlab-sast-rules-lgpl-kotlin-smtp-rule-insecuresmtpSmtp SmtpClientgitlab-sast-rules-lgpl-kotlin-smtp-rule-smtpclientSsrf SSRFgitlab-sast-rules-lgpl-kotlin-ssrf-rule-ssrfStrings BadHexConversiongitlab-sast-rules-lgpl-kotlin-strings-rule-badhexconversionStrings FormatStringManipulationgitlab-sast-rules-lgpl-kotlin-strings-rule-formatstringmanipulationStrings ModifyAfterValidationgitlab-sast-rules-lgpl-kotlin-strings-rule-modifyaftervalidationStrings NormalizeAfterValidationgitlab-sast-rules-lgpl-kotlin-strings-rule-normalizeaftervalidationTemplateinjection TemplateInjectiongitlab-sast-rules-lgpl-kotlin-templateinjection-rule-templateinjectionUnsafe ExternalConfigControlgitlab-sast-rules-lgpl-kotlin-unsafe-rule-externalconfigcontrolWebview Android Kotlin Webview Debuggitlab-sast-rules-lgpl-kotlin-webview-rule-android-kotlin-webview-debugXml SAMLIgnoreCommentsgitlab-sast-rules-lgpl-kotlin-xml-rule-samlignorecommentsXml XmlDecodergitlab-sast-rules-lgpl-kotlin-xml-rule-xmldecoderXml XsltTransformgitlab-sast-rules-lgpl-kotlin-xml-rule-xslttransformXpathi XpathInjectiongitlab-sast-rules-lgpl-kotlin-xpathi-rule-xpathinjectionXss WicketXSSgitlab-sast-rules-lgpl-kotlin-xss-rule-wicketxssXss XSSReqParamToServletWritergitlab-sast-rules-lgpl-kotlin-xss-rule-xssreqparamtoservletwriterXxe SaxParserXXEgitlab-sast-rules-lgpl-kotlin-xxe-rule-saxparserxxeXxe XMLRdrgitlab-sast-rules-lgpl-kotlin-xxe-rule-xmlrdrXxe XMLStreamRdrgitlab-sast-rules-lgpl-kotlin-xxe-rule-xmlstreamrdrOther Ios Self Signed Sslgitlab-sast-rules-lgpl-oc-other-rule-ios-self-signed-sslOther Ios Webview Ignore Sslgitlab-sast-rules-lgpl-oc-other-rule-ios-webview-ignore-sslOther Ios Biometric Aclgitlab-sast-rules-lgpl-swift-other-rule-ios-biometric-aclOther Ios Dtls1 Usedgitlab-sast-rules-lgpl-swift-other-rule-ios-dtls1-usedOther Ios File No Specialgitlab-sast-rules-lgpl-swift-other-rule-ios-file-no-specialOther Ios Keychain Weak Accessibility Valuegitlab-sast-rules-lgpl-swift-other-rule-ios-keychain-weak-accessibility-valueOther Ios Tls3 Not Usedgitlab-sast-rules-lgpl-swift-other-rule-ios-tls3-not-usedCookie CookieHTTPOnlygitlab-sast-scala-cookie-rule-cookiehttponlyCookie CookieInsecuregitlab-sast-scala-cookie-rule-cookieinsecureCookie CookiePersistentgitlab-sast-scala-cookie-rule-cookiepersistentCookie CookieUsagegitlab-sast-scala-cookie-rule-cookieusageCookie HttpResponseSplittinggitlab-sast-scala-cookie-rule-httpresponsesplittingCookie RequestParamToCookiegitlab-sast-scala-cookie-rule-requestparamtocookieCookie RequestParamToHeadergitlab-sast-scala-cookie-rule-requestparamtoheaderCookie TrustBoundaryViolationgitlab-sast-scala-cookie-rule-trustboundaryviolationCors PermissiveCORSgitlab-sast-scala-cors-rule-permissivecorsCors PermissiveCORSInjectiongitlab-sast-scala-cors-rule-permissivecorsinjectionCrypto BlowfishKeySizegitlab-sast-scala-crypto-rule-blowfishkeysizeCrypto CipherDESedeInsecuregitlab-sast-scala-crypto-rule-cipherdesedeinsecureCrypto CipherDESInsecuregitlab-sast-scala-crypto-rule-cipherdesinsecureCrypto CipherECBModegitlab-sast-scala-crypto-rule-cipherecbmodeCrypto CipherIntegritygitlab-sast-scala-crypto-rule-cipherintegrityCrypto CipherPaddingOraclegitlab-sast-scala-crypto-rule-cipherpaddingoracleCrypto CustomMessageDigestgitlab-sast-scala-crypto-rule-custommessagedigestCrypto DefaultHTTPClientgitlab-sast-scala-crypto-rule-defaulthttpclientCrypto HazelcastSymmetricEncryptiongitlab-sast-scala-crypto-rule-hazelcastsymmetricencryptionCrypto InsufficientKeySizeRsagitlab-sast-scala-crypto-rule-insufficientkeysizersaCrypto NullCiphergitlab-sast-scala-crypto-rule-nullcipherCrypto RsaNoPaddinggitlab-sast-scala-crypto-rule-rsanopaddingCrypto WeakMessageDigestgitlab-sast-scala-crypto-rule-weakmessagedigestCrypto WeakTLSProtocolgitlab-sast-scala-crypto-rule-weaktlsprotocolEndpoint JaxRsEndpointgitlab-sast-scala-endpoint-rule-jaxrsendpointEndpoint JaxWsEndpointgitlab-sast-scala-endpoint-rule-jaxwsendpointEndpoint UnencryptedSocketgitlab-sast-scala-endpoint-rule-unencryptedsocketEndpoint UnvalidatedRedirectgitlab-sast-scala-endpoint-rule-unvalidatedredirectEndpoint WeakHostNameVerificationgitlab-sast-scala-endpoint-rule-weakhostnameverificationFile FilenameUtilsgitlab-sast-scala-file-rule-filenameutilsFile FileUploadFileNamegitlab-sast-scala-file-rule-fileuploadfilenameForm FormValidategitlab-sast-scala-form-rule-formvalidateInject AWSQueryInjectiongitlab-sast-scala-inject-rule-awsqueryinjectionInject BeanPropertyInjectiongitlab-sast-scala-inject-rule-beanpropertyinjectionInject CLRFInjectionLogsgitlab-sast-scala-inject-rule-clrfinjectionlogsInject CommandInjectiongitlab-sast-scala-inject-rule-commandinjectionInject CustomInjectiongitlab-sast-scala-inject-rule-custominjectionInject CustomInjectionSQLStringgitlab-sast-scala-inject-rule-custominjectionsqlstringInject ELInjectiongitlab-sast-scala-inject-rule-elinjectionInject FileDisclosuregitlab-sast-scala-inject-rule-filedisclosureInject HttpParameterPollutiongitlab-sast-scala-inject-rule-httpparameterpollutionInject LDAPInjectiongitlab-sast-scala-inject-rule-ldapinjectionInject OgnlInjectiongitlab-sast-scala-inject-rule-ognlinjectionInject PathTraversalIngitlab-sast-scala-inject-rule-pathtraversalinInject PathTraversalOutgitlab-sast-scala-inject-rule-pathtraversaloutInject SpotbugsPathTraversalAbsolutegitlab-sast-scala-inject-rule-spotbugspathtraversalabsoluteInject SpotbugsPathTraversalRelativegitlab-sast-scala-inject-rule-spotbugspathtraversalrelativeInject SqlInjectiongitlab-sast-scala-inject-rule-sqlinjectionLdap AnonymousLDAPgitlab-sast-scala-ldap-rule-anonymousldapLdap EntryPoisoninggitlab-sast-scala-ldap-rule-entrypoisoningPassword ConstantDBPasswordgitlab-sast-scala-password-rule-constantdbpasswordPassword EmptyDBPasswordgitlab-sast-scala-password-rule-emptydbpasswordPassword HardcodePasswordgitlab-sast-scala-password-rule-hardcodepasswordPerm DangerousPermissionsgitlab-sast-scala-perm-rule-dangerouspermissionsPerm OverlyPermissiveFilePermissionInlinegitlab-sast-scala-perm-rule-overlypermissivefilepermissioninlinePerm OverlyPermissiveFilePermissionObjgitlab-sast-scala-perm-rule-overlypermissivefilepermissionobjScript ScriptInjectiongitlab-sast-scala-script-rule-scriptinjectionScript SpelViewgitlab-sast-scala-script-rule-spelviewSmtp InsecureSmtpgitlab-sast-scala-smtp-rule-insecuresmtpSmtp SmtpClientgitlab-sast-scala-smtp-rule-smtpclientSsrf PlaySSRFgitlab-sast-scala-ssrf-rule-playssrfSsrf SSRFgitlab-sast-scala-ssrf-rule-ssrfStrings BadHexConversiongitlab-sast-scala-strings-rule-badhexconversionStrings FormatStringManipulationgitlab-sast-scala-strings-rule-formatstringmanipulationStrings ImproperUnicodegitlab-sast-scala-strings-rule-improperunicodeStrings ModifyAfterValidationgitlab-sast-scala-strings-rule-modifyaftervalidationStrings NormalizeAfterValidationgitlab-sast-scala-strings-rule-normalizeaftervalidationTemplateinjection TemplateInjectiongitlab-sast-scala-templateinjection-rule-templateinjectionUnsafe ExternalConfigControlgitlab-sast-scala-unsafe-rule-externalconfigcontrolUnsafe InformationExposuregitlab-sast-scala-unsafe-rule-informationexposureUnsafe SensitiveDataExposuregitlab-sast-scala-unsafe-rule-sensitivedataexposureXml ApacheXmlRpcgitlab-sast-scala-xml-rule-apachexmlrpcXml SAMLIgnoreCommentsgitlab-sast-scala-xml-rule-samlignorecommentsXml XmlDecodergitlab-sast-scala-xml-rule-xmldecoderXml XsltTransformgitlab-sast-scala-xml-rule-xslttransformXpathi XpathInjectiongitlab-sast-scala-xpathi-rule-xpathinjectionXss MVCApigitlab-sast-scala-xss-rule-mvcapiXss RequestWrappergitlab-sast-scala-xss-rule-requestwrapperXss WicketXSSgitlab-sast-scala-xss-rule-wicketxssXss XSSReqParamToServletWritergitlab-sast-scala-xss-rule-xssreqparamtoservletwriterXss XSSServletgitlab-sast-scala-xss-rule-xssservletXxe Documentgitlab-sast-scala-xxe-rule-documentXxe SaxParserXXEgitlab-sast-scala-xxe-rule-saxparserxxeXxe Transgitlab-sast-scala-xxe-rule-transXxe XMLRdrgitlab-sast-scala-xxe-rule-xmlrdrXxe XMLStreamRdrgitlab-sast-scala-xxe-rule-xmlstreamrdrXxe XPathXXEgitlab-sast-scala-xxe-rule-xpathxxe