DevSkim
DevSkim copied to clipboard
microsoft
DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.
DevSkim repo contains tests for the old "Test" command. This is obviated by the built in validation included by the must-match and must-not-match fields of AI based rules in 0.7....
Is seems that devskim cli is available for dotnet v5 but not dotnet v6 Is it planned to upgrade it so it is dotnet v6 compliant ?
This is far off, as Rider is only in its first release candidate, but it'd be nice to have.
**Is your feature request related to a problem? Please describe.** Application Inspector was created from a fork of DevSkim. It has recently had extra care taken to improve rule processing...
# Changes Rewrite VS Code to leverage the .NET CLI. Add additional functionality to .NET CLI to support this use case - the extension uses the new `--useStdin` which listens...
Similar to how AI rules are now handled. Use git submodule to pull in the rules.
Current it should be possible to modify the rules (at least in the vs code extension) but it's a little iffy. There should be a configuration option for the extension...
**Is your feature request related to a problem? Please describe.** The process of editing and testing rules isn't very fluid. **Describe the solution you'd like** A (likely blazor wasm) rules...