Skip to content

GitLab Next

Why GitLab
Pricing
Contact Sales
Explore

Sign in
Get free trial

Upgrade Semgrep 1.23.0 -> 1.40.0 to avoid failure with upcoming rules

Review changes
Download
Patches
Plain diff

Martin Jambon requested to merge mjambon/semgrep:upgrade-semgrep into main Sep 15, 2023

Overview 9
Commits 2
Pipelines 1
Changes 3

What does this MR do?

We are about to publish new rules that will cause older Semgrep versions to fail.

This MR upgrades Semgrep from version 1.23.0 (May 24) to version 1.40.0 (September 14) to avoid these problems. It changes the version in Dockerfile and Dockerfile.fips. I didn't try to test anything.

What are the relevant issue numbers?

n/a?

Does this MR meet the acceptance criteria?

Changelog entry added
Documentation created/updated for GitLab EE, if necessary
Documentation created/updated for this project, if necessary
Documentation reviewed by technical writer or follow-up review issue created
Tests updated/added for this feature/bug
Job definition updated, if necessary
Conforms to the code review guidelines
Conforms to the Go guidelines
Security reports checked/validated by reviewer

Edited Sep 15, 2023 by Martin Jambon

Merge request reports

Assignee

Select assignees

Reviewers

Request review from

Time tracking