Vulnerability Reduction using Semgrep null Bangalore Meet 17 December 2022 null + owasp Monthly Meet
Abstract
This talk is about the basics of Semgrep and 4 major features of this tool that helps in reducing false positives.
Outline of this talk:
- Semgrep
- grep vs. Semgrep
- Reduce false positives (demo)
- Benefits and Limitations
Please check slides for links to examples of insecure source codes
Practice your rules here
References:
- https://semgrep.dev/docs/getting-started/
- https://semgrep.dev/docs/writing-rules/rule-syntax/
- https://github.com/shwetankarora/semgrep-rules
Social:
Speaker
Timing
Starts at Saturday December 17 2022, 12:10 PM. The sessions runs for about 1 hour.