Upgrade Semgrep 1.23.0 -> 1.40.0 to avoid failure with upcoming rules
What does this MR do?
We are about to publish new rules that will cause older Semgrep versions to fail.
This MR upgrades Semgrep from version 1.23.0 (May 24) to version 1.40.0 (September 14) to avoid these problems. It changes the version in Dockerfile
and Dockerfile.fips
. I didn't try to test anything.
What are the relevant issue numbers?
n/a?
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests updated/added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer
Edited by Martin Jambon