Fixed
- C/C++: Fixed stack overflows (segmentation faults) when processing very large
files (#3538) - JS: Fixed stack overflows (segmentation faults) when processing very large
files (#3538) - JS: Detect numeric object keys
1and0x1as equal (#3579) - OCaml: improved parsing stats by using tree-sitter-ocaml (from 25% to 88%)
- taint-mode: Check nested functions
- taint-mode:
foo.xis now detected as tainted iffoois a source of taint - taint-mode: Do not crash when is not possible to compute range info
- Rust: recognize ellipsis in macro calls patterns (#3600)
- Ruby: represent correctly a.(b) in the AST (#3603)
Changed
- Added precise error location for the semgrep metachecker, to detect for example
duplicate patterns in a rule