Comments (7)
From @mjambon:
the ocaml executables (semgrep-core and spacegrep) are compiled statically for linux but only "partially statically" for darwin i.e. only the libc is dynamically linked but the third-party libraries that we use are linked in statically.
I believe this means we can in fact simplify things by removing the PRECOMPILED_LOCATION
, COPY --from=semgrep
, and FROM ... AS semgrep
from https://github.com/returntocorp/semgrep-action/blob/develop/Dockerfile.
cc @chmccreery who could do this with the v0.36.0
update, or we could do this separately.
from semgrep-action.
Looks like PRECOMPILED_LOCATION
has been gone since semgrep/semgrep@4e97e83, which was included in the v0.31.0
release. Unless there's a specific reason for avoiding the binaries in the package I believe we simply remove the PRECOMPILED_LOCATION
variable.
Is there a reason we were pulling the binaries from a separate Docker image rather than the Python package? If we can remove the PRECOMPILED_LOCATION
I suspect we can remove the COPY --from=semgrep /usr/local/bin/semgrep-core /tmp/semgrep-core
and FROM returntocorp/semgrep:0.35.0@sha256:... AS semgrep
from the Dockerfile as well.
from semgrep-action.
Is there a reason we were pulling the binaries from a separate Docker image rather than the Python package?
The python binaries don't work on alpine.
from semgrep-action.
Oh I see, it's because we're using Alpine. We could probably make our lives a lot easier by using python:3.7-slim
instead of python:3.7-alpine
. Regardless, I wonder how its continued with work without PRECOMPILED_LOCATION
🤷♂️
from semgrep-action.
@mschwager let's do this separately. Let me know if you want to do it before this release, or if we can do it later this week.
from semgrep-action.
I think it's continued to work without PRECOMPILED_LOCATION because pipx install semgrep just works as expected comes with the spacegrep and semgrep binaries.
from semgrep-action.
Fixed by https://github.com/returntocorp/semgrep-action/pull/156.
from semgrep-action.
Related Issues (20)
- Failed with exit code 7 when running semgrep_app_rules.yaml with Type Script. HOT 5
- Unexpected input(s) 'publishDeployment', valid inputs are ['entryPoint', 'args', 'config', 'publishToken', 'generateSarif', 'auditOn'] HOT 1
- Semgrep Action failed with exit code 2 when no issues are found HOT 7
- Relative paths not working HOT 3
- UnknownLanguageError - This is an internal error, please file an issue HOT 1
- Output as json file? HOT 3
- Cannot run `semgrep ci` while logged in and with explicit config. Use semgrep.dev to configure rules to run. HOT 4
- semgrep --debug options makes the scan --strict and fail the whole scan HOT 7
- Python pip dependency conflict with semgrep version 0.86.0 and 0.87.0 HOT 6
- Passing verbose flag to semgrep-action HOT 3
- Semgrep-action no longer works with multiple configs HOT 1
- 0.89 fails with git error on CI HOT 7
- Warning: Unexpected input(s) 'generateSarif', valid inputs are ['entryPoint', 'args', 'config', 'publishToken'] HOT 10
- SARIF Error: instance additionalProperty "fixes" exists in instance when not allowed HOT 6
- 0.98.0 fails with git error on GHA HOT 1
- Semgrep command failing with exit code 7 internal error HOT 1
- Add exclude option in the Semgrep action yml file HOT 2
- semgrep-action@v1 fails with false success status when semgrep token is missing
- Add versioning for Semgrep rules as well
- Semgrep actions is full deprecated
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from semgrep-action.