UNPKG

mcp-server-semgrep

Version:

MCP Server for Semgrep Integration - static code analysis with AI

github.com/Szowesgad/mcp-server-semgrep

Szowesgad/mcp-server-semgrep

40 lines (33 loc) 843 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
const Sandbox = require('sandbox'); function test1(userInput, cb) { const s = new Sandbox(); // ruleid: sandbox-code-injection s.run('lol('+userInput+')', cb); } function test2(userInput, cb) { const s = new Sandbox(); var code = 'lol('+userInput+')' // ruleid: sandbox-code-injection s.run(code, cb); } function test3(userInput, cb) { const s = new Sandbox(); // ruleid: sandbox-code-injection s.run(`lol(${userInput})`, cb); } function okTest1(cb) { const s = new Sandbox(); // ok: sandbox-code-injection s.run('lol("hi")', cb); } function okTest2(cb) { const s = new Sandbox(); var code = 'lol("hi")' // ok: sandbox-code-injection s.run(code, cb); } function okTest3(cb) { const s = new Sandbox(); // ok: sandbox-code-injection s.run(`lol("hi")`, cb); }