mcp-server-semgrep/semgrep-rules/python/lang/best-practice/hardcoded-tmp-path.yaml

MCP Server for Semgrep Integration - static code analysis with AI

rules:
  - id: hardcoded-tmp-path
    pattern: open("=~/^\/tmp.*/", ...)
    message: >-
      Detected hardcoded temp directory. Consider using 'tempfile.TemporaryFile' instead.
    metadata:
      references:
        - https://docs.python.org/3/library/tempfile.html#tempfile.TemporaryFile
      category: best-practice
      technology:
        - python
    severity: WARNING
    languages:
      - python