open-vault/tools/semgrep/physical-storage.yml

# Copyright (c) HashiCorp, Inc.
# SPDX-License-Identifier: MPL-2.0

rules:
  - id: physical-storage-bypass-encryption 
    patterns:
        - pattern-either:
              - pattern: $CORE.physical.Put(...)
              - pattern: $CORE.underlyingPhysical.Put(...)
    message: "Bypassing encryption by accessing physical storage directly"
    languages: [go]
    severity: WARNING
adding copyright header (#19555) * adding copyright header * fix fmt and a test 2023-03-15 16:00:52 +00:00			`# Copyright (c) HashiCorp, Inc.`
			`# SPDX-License-Identifier: MPL-2.0`

Add Semgrep Rules to OSS (#14513) * add semgrep yml * add semgrep ci job * remove replication semgrep rule in oss * fix makefile * add semgrep to ci * upwind triple if in ui.go semgrep refactoring 2022-03-18 18:14:03 +00:00			`rules:`
			`- id: physical-storage-bypass-encryption`
			`patterns:`
			`- pattern-either:`
			`- pattern: $CORE.physical.Put(...)`
			`- pattern: $CORE.underlyingPhysical.Put(...)`
			`message: "Bypassing encryption by accessing physical storage directly"`
			`languages: [go]`
			`severity: WARNING`