UNPKG

mcp-server-semgrep

Version:

MCP Server for Semgrep Integration - static code analysis with AI

github.com/Szowesgad/mcp-server-semgrep

Szowesgad/mcp-server-semgrep

58 lines (50 loc) 1.61 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
const express = require('express') const app = express() const port = 3000 function testController1(req, res) { try { const defaultData = {foo: true} // ruleid: express-data-exfiltration let data = Object.assign(defaultData, req.query) doSmthWith(data) } catch (err) { this.log.error(err); } res.end('ok') }; app.get('/test1', testController1) let testController2 = function (req, res) { const defaultData = {foo: {bar: true}} // ruleid: express-data-exfiltration let data = Object.assign(defaultData, {foo: req.query}) doSmthWith(data) return res.send({ok: true}) } app.get('/test2', testController2) var testController3 = null; testController3 = function (req, res) { const defaultData = {foo: true} let newData = req.body // ruleid: express-data-exfiltration let data = Object.assign(defaultData, newData) doSmthWith(data) return res.send({ok: true}) } app.get('/test3', testController3) app.get('/ok-test', (req, res) => { const defaultData = {foo: req.body.foo} let newData = {bar: '123'} // ruleid: express-data-exfiltration let data = Object.assign(defaultData, newData) doSmthWith(data) return res.send(func()) }) let okController = function (req, res) { const defaultData = {foo: {bar: true}} // ok: express-data-exfiltration let data = Object.assign(defaultData, {foo: getFoo()}) doSmthWith(data) return res.send({ok: true}) } app.get('/ok-test2', okController) app.listen(port, () => console.log(`Example app listening at http://localhost:${port}`))