Fix parsing error in rulecheck-tests job of sast-rules
Proposal
A new rule, rules/lgpl-cc/java/endpoint/rule-ManuallyConstructedURLs.yml, was added in Added new rule for detecting potentially unsafe... (gitlab-org/security-products/sast-rules!363 - merged) • Jayanaka Fonseka • 16.9, however, this rule is malformed and causing a parsing error in the rulecheck-tests job in sast-rules
:
The following config files produced errors:
rules/lgpl-cc/java/endpoint/rule-ManuallyConstructedURLs.yml: Traceback (most recent call last):
<snip>
semgrep.error.SemgrepCoreError: Pattern parse error in rule java_endpoint_rule-ManuallyConstructedURLs:
Invalid pattern for Java:
--- pattern ---
if($VALIDATION){
...
new URL($ONEARG)
...
}
The purpose of this issue is to fix this invalid rule.
See this comment for more details.
/cc @tkopel