Some custom semgrep rules used in Kondukto
Kondukto is an Application Security Testing orchestration and correlation platform that helps you centralize and automate your entire AppSec related vulnerability management process. Providing an interface where security health of applications can be continuously monitored, and a command line interface where your AppSec operations can be integrated into DevOps pipelines, Kondukto lets you manage your AppSec processes automatically with ease.
Semgrep is a multi-language, highly customizable SAST tool for easily detecting and preventing bugs or anti-patterns in your codebase.