UNPKG

mcp-server-semgrep

Version:

MCP Server for Semgrep Integration - static code analysis with AI

github.com/Szowesgad/mcp-server-semgrep

Szowesgad/mcp-server-semgrep

52 lines (45 loc) 1.1 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
function test1(data) { const message = JSON.parse(data); // ruleid:unsafe-dynamic-method window[message.name](message.payload); } function test2(data) { const message = JSON.parse(data); // ruleid:unsafe-dynamic-method const action = window[message.name]; action(message.payload); } let api = { foo: function () { /* do smth */ }, bar: function () { /* do smth */ } } function okTest1(data) { const message = JSON.parse(data); if (!api.hasOwnProperty(message.name)) { return; } // ok:unsafe-dynamic-method api[message.name](message.payload); } function okTest2(data) { // ok:unsafe-dynamic-method const result = api["foo"](data); console.log(result); } function okTest3(data) { // ok:unsafe-dynamic-method const result = actions[1](data); console.log(result); } function okTest4(data) { const actions = api = { foo: function () { /* do smth */ }, bar: function () { /* do smth */ } } let result = null Object.keys(actions).forEach(a => { // ok:unsafe-dynamic-method result = actions[a](result); }) console.log(result); }