Skip to content

Release v1.109.0

Latest
Latest
Compare
Choose a tag to compare
@semgrep-ci semgrep-ci released this 19 Feb 18:32
· 4 commits to main since this release
v1.109.0
d0803ee
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

1.109.0 - 2025-02-19

Changed

  • Pyproject.toml files are now parsed using a toml parser (tomli). (sc-2054)

Fixed

  • pro: taint-mode: Fixed limitation in custom taint propagators.
    See https://semgrep.dev/playground/s/ReJQO (code-7967)
  • taint-mode: Disable symbolic-propagation when matching taint propagators
    to prevent unintended interactions. See https://semgrep.dev/playground/s/7KE0k. (code-8054)
  • Fixed pattern match deduplication to avoid an O(n^2) worst-case complexity, and
    optimized the matching of ordered ..., PAT, ... patterns. (saf-682)
Assets 3
Loading