1.117.0 - 2025-04-02
Added
- Add temporary backward compatibility in Semgrepignore v2 for patterns
that start with./. For example, the pattern./*.pyshould be written as
/*.pyto have the desired effect of excluding the.pyfiles
located in the same directory as the.semgrepignorefile containing
the pattern.
To minimize surprises for users switching to Semgrepignore v2,
we'll be interpreting automatically./*.pyas/*.pyfor the time
being so as to match the legacy Semgrepignore v1 behavior. Users should not
rely on this since it doesn't comply with the Gitignore/Semgrepignore
standard and will be removed in the future. (tolerate-semgrepignore-v1-dotslash) - Target file selection now uses
Semgrepignore v2 by default. This brings the behavior of the Semgrepignore file
exclusions closer to Git and.gitignorefiles. There can now
be multiple.semgrepignorefiles in the project. The.semgrepignorefile
in the current folder is no longer consulted unless it in the project.
Negated patterns are now supported such as!scanme.pyas with Gitignore.
Some bugs were fixed. (use-semgrepignore-v2)
Changed
- Upgrade Semgrep from OCaml 5.2.1 to 5.3.0 (#3)
Fixed
- In Semgrepignore v2, allow wildcards
*and?to match file names with a leading period. This matches the behavior of Gitignore and Semgrepignore v1. (semgrepignore-dotfiles)