CI: add security rules from `semgrep` #949

rndquu · 2024-07-26T12:50:13Z

Check this repository which introduces a workflow for scanning security issues from https://semgrep.dev/p/smart-contracts.

What should be done:

add a new workflow to scan for security issues via semgrep

The text was updated successfully, but these errors were encountered:

molecula451 · 2024-07-26T16:46:38Z

do we want this to be run each time a PR is opened no?

molecula451 · 2024-07-26T16:53:19Z

/start

ubiquibot · 2024-07-26T16:53:26Z



Deadline Fri, Jul 26, 6:53 PM UTC

Registered Wallet
0x4D0704f400D57Ba93eEa88765C3FcDBD826dCFc4

Tips:

Use /wallet 0x0000...0000 if you want to update your registered payment wallet address.
Be sure to open a draft pull request as soon as possible to communicate updates on your progress.
Be sure to provide timely updates to us when requested, or you will be automatically unassigned from the task.

rndquu · 2024-07-28T15:17:25Z

do we want this to be run each time a PR is opened no?

Yes

molecula451 · 2024-07-29T21:23:41Z

obeys · 2024-09-14T20:29:09Z

/start

ubiquity-os · 2024-09-14T20:29:17Z

Warning! This task was created over 50 days ago. Please confirm that this issue specification is accurate before starting. Deadline Sat, Sep 14, 10:29 PM UTC Beneficiary 0x31BcF24D34F018B3Aee4c6E97307221aFe47bc96

Tips:

Use /wallet 0x0000...0000 if you want to update your registered payment wallet address.
Be sure to open a draft pull request as soon as possible to communicate updates on your progress.
Be sure to provide timely updates to us when requested, or you will be automatically unassigned from the task.

ubiquity-os · 2024-09-21T03:48:05Z

@cohow, this task has been idle for a while. Please provide an update.

obeys · 2024-09-21T14:11:53Z

waiting on code review.

rndquu · 2024-10-01T07:37:58Z

@gentlementlegen Why was the permitGeneration setting commented out in the bot's config? Typo?

gentlementlegen · 2024-10-01T07:56:46Z

@rndquu I was testing a fix earlier and commented it out to avoid generating permits, forgot to revert it, my bad.

ubiquity-os · 2024-10-01T07:58:17Z

[ 75.032 WXDAI ]
@cohow

Contributions Overview

View	Contribution	Count	Reward
Issue	Task	1	75
Issue	Comment	1	0.032
Review	Comment	5	0

Conversation Incentives

Comment	Formatting	Relevance	Reward
waiting on code review.	0.32 content: content: p: score: 0 elementCount: 1 result: 0 regex: wordCount: 4 wordValue: 0.1 result: 0.32	0.1	0.032
Resolves #949QA: https://github.com/cohow/ubiquity-dollar/pull…	0 content: content: p: score: 0 elementCount: 3 result: 0 regex: wordCount: 26 wordValue: 0 result: 0	0.6	-
I've pushed a fix that should fix that and scan only files in th…	8.99 content: content: p: score: 0 elementCount: 3 result: 0 regex: wordCount: 88 wordValue: 0.2 result: 8.99	0.8	-
Ok i'm not sure how I missed that but I managed to make it run w…	8.2 content: content: p: score: 0 elementCount: 4 result: 0 regex: wordCount: 79 wordValue: 0.2 result: 8.2	0.9	-
@rndquu 🙂	0.2 content: content: p: score: 0 elementCount: 1 result: 0 regex: wordCount: 1 wordValue: 0.2 result: 0.2	0.1	-
Merged.	0.2 content: content: p: score: 0 elementCount: 1 result: 0 regex: wordCount: 1 wordValue: 0.2 result: 0.2	0.5	-

[ 5.752 WXDAI ]
@molecula451

Contributions Overview

View	Contribution	Count	Reward
Issue	Comment	2	5.752

Conversation Incentives

Comment

Formatting

Relevance

Reward

do we want this to be run each time a PR is opened no?

0.94

content:
  content:
    p:
      score: 0
      elementCount: 1
  result: 0
regex:
  wordCount: 14
  wordValue: 0.1
  result: 0.94

0.8

0.752

![Screenshot from 2024-07-29 17-22-00](https://github.com/user-a…

5

content:
  content:
    p:
      score: 0
      elementCount: 1
    img:
      score: 5
      elementCount: 1
  result: 5
regex:
  wordCount: 0
  wordValue: 0.1
  result: 0

-

5

[ 38.597 WXDAI ]
@rndquu

Contributions Overview

View	Contribution	Count	Reward
Issue	Specification	1	25.2
Issue	Comment	2	5
Review	Comment	2	8.397

Conversation Incentives

Comment	Formatting	Relevance	Reward
Check [this](https://github.com/Decurity/semgrep-smart-contracts…	8.4 content: content: p: score: 0 elementCount: 2 a: score: 5 elementCount: 1 ul: score: 1 elementCount: 1 li: score: 0.5 elementCount: 1 result: 6.5 regex: wordCount: 32 wordValue: 0.1 result: 1.9	1	25.2
Yes	0.2 content: content: p: score: 0 elementCount: 1 result: 0 regex: wordCount: 1 wordValue: 0.2 result: 0.2	-	-
@gentlementlegen Why was the `permitGeneration` setting …	6.77 content: content: p: score: 0 elementCount: 1 a: score: 5 elementCount: 1 result: 5 regex: wordCount: 13 wordValue: 0.2 result: 1.77	-	5
In the provided [QA run](https://github.com/cohow/ubiquity-dolla…	7.54 content: content: p: score: 0 elementCount: 2 a: score: 5 elementCount: 1 pre: score: 0 elementCount: 1 result: 5 regex: wordCount: 45 wordValue: 0.1 result: 2.54	0.8	7.032
To sum up there are 2 semgep security related findings.First (…	1.95 content: content: p: score: 0 elementCount: 4 pre: score: 0 elementCount: 2 result: 0 regex: wordCount: 33 wordValue: 0.1 result: 1.95	0.7	1.365

[ 0 WXDAI ]
@gentlementlegen

Contributions Overview

View	Contribution	Count	Reward
Issue	Comment	1	0

Conversation Incentives

Comment	Formatting	Relevance	Reward
@rndquu I was testing a fix earlier and commented it out to avoi…	1.33 content: content: p: score: 0 elementCount: 1 result: 0 regex: wordCount: 21 wordValue: 0.1 result: 1.33	-	-

rndquu added Time: <2 Hours Priority: 1 (Normal) labels Jul 26, 2024

ubiquibot bot added Price: 75 USD labels Jul 26, 2024

ubiquibot bot assigned molecula451 Jul 26, 2024

ubiquity-os bot unassigned molecula451 Sep 10, 2024

devpool-directory-superintendent bot mentioned this issue Sep 10, 2024

CI: add security rules from semgrep ubiquity/devpool-directory#1458

Closed

ubiquity-os bot assigned obeys Sep 14, 2024

obeys mentioned this issue Sep 14, 2024

feat: add semgrep security issues scanning #961

Merged

rndquu closed this as completed in #961 Oct 1, 2024

gentlementlegen reopened this Oct 1, 2024

gentlementlegen closed this as completed Oct 1, 2024

ubiquity deleted a comment from ubiquity-os bot Oct 1, 2024

CI: add security rules from semgrep #949

CI: add security rules from semgrep #949

Comments

rndquu commented Jul 26, 2024

molecula451 commented Jul 26, 2024

molecula451 commented Jul 26, 2024

ubiquibot bot commented Jul 26, 2024

Tips:

rndquu commented Jul 28, 2024

molecula451 commented Jul 29, 2024

obeys commented Sep 14, 2024

ubiquity-os bot commented Sep 14, 2024

Tips:

ubiquity-os bot commented Sep 21, 2024

obeys commented Sep 21, 2024

rndquu commented Oct 1, 2024

gentlementlegen commented Oct 1, 2024

ubiquity-os bot commented Oct 1, 2024 • edited Loading

@cohow

Contributions Overview

Conversation Incentives

Contributions Overview

Conversation Incentives

Contributions Overview

Conversation Incentives

Contributions Overview

Conversation Incentives

CI: add security rules from `semgrep` #949

CI: add security rules from `semgrep` #949

ubiquity-os bot commented Oct 1, 2024 •

edited

Loading