Skip to content

GitLab Next

Why GitLab
Pricing
Contact Sales
Explore

Sign in
Get free trial

Update semgrep to 1.23.0

Review changes
Download
Patches
Plain diff

Isaac Dawson requested to merge bump_semgrep_version_1_23_0 into main May 28, 2023

Overview 17
Commits 12
Pipelines 13
Changes 17

What does this MR do?

Updates semgrep 1.21.0 -> 1.23.0 to fix a potential vulnerability in a third party dependency.

ref: https://nvd.nist.gov/vuln/detail/CVE-2023-32758

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Changelog entry added
Documentation created/updated for GitLab EE, if necessary
Documentation created/updated for this project, if necessary
Documentation reviewed by technical writer or follow-up review issue created
Tests updated/added for this feature/bug
Job definition updated, if necessary
Conforms to the code review guidelines
Conforms to the Go guidelines
Security reports checked/validated by reviewer

Merge request reports

Assignee

Select assignees

Reviewers

Request review from

Time tracking