Posts tagged call graph

📝 Emulating Semgrep SAST Pro Taint Mode with Join Mode

Semgrep’s Join Mode[1] is a seldom discussed yet interesting experimental feature of the Semgrep OSS SAST engine which can be used to achieve rudimentary taint interprocedural and interfile analyses. In this snippet I document how to combine one search mode and two join mode rules in order to identify intrafile, intraprocedural, interfile and interprocedural tainted sinks.

Tags
APT
FOSS
ancestry
art
asdf-vm
bash
belonging
best practices
blogging
books
call graph
ci/cd
communication
cyberpunk
data flow
design
destruction
ephemerality
fear
freedom
git
github
gitlab
golang
growth
hacking
haiku
human interaction
imagination
inner work
internet culture
kata
linear algebra
linux
love
macos
math
migration
movie