chore(deps-dev): bump semgrep from 1.97.0 to 1.99.0

[dependabot]

Bumps semgrep from 1.97.0 to 1.99.0.

Release notes

Sourced from semgrep's releases.

Release v1.99.0

1.99.0 - 2024-12-05

Fixed

• Fix the date format used in --gitlab-sast option to match the spec and not use the RFC 3339. Thanks to Elias Haeussler for the fix. (saf-1755)

Changelog

Sourced from semgrep's changelog.

1.99.0 - 2024-12-05

Fixed

• Fix the date format used in --gitlab-sast option to match the spec and not use the RFC 3339. Thanks to Elias Haeussler for the fix. (saf-1755)

1.98.0 - 2024-12-04

Added

• taint-mode: Semgrep will now track invididual fields/keys in record/dict expressions.

  For example, in Semgrep Pro:

  def foo():
      return { 0: "safe", 1: taint }
  def test():
  t = foo()
  sink(t[0]) # safe thus NO finding
  sink(t[1]) # finding (code-7781)
  

• The TypeScript parser now supports ellipses in function parameters. For example, the following code is TypeScript (as opposed to pure JavaScript) because it uses decorators on function parameters:

  foo(x, @Bar() y, z): string { return ''; }
  

  You can match this method using the following pattern:

  function $FN(..., @Bar(...) $X, ...) { ... }
  ``` (code-7800)
  

• [Pro only] Patterns such as new $T(...) will now match C# target-typed new expressions such as new (). (csharp-new)

• Symbolic propagation will now propagate record expressions. (flow-86)

• Adds support for SwiftPM Package.resolved version 3 to Supply Chain (sc-1964)

Changed

... (truncated)

Commits

• 2bbd0a5 chore: release version 1.99.0
• 8f80dbfsemgrep/semgrep-proprietary#2744
• dff3890semgrep/semgrep-proprietary#2743
• d1f99e0semgrep/semgrep-proprietary#2742
• 978fe59semgrep/semgrep-proprietary#2741
• 289f1a7semgrep/semgrep-proprietary#2740
• 7b0ff7e capabilities: use more <caps; ..> at def site to remove boilerplate (semgrep/...
• 8309689 capabilities: new CapExec.ml and forbid all UCmd functions in SCA code and el...
• 7eb4369 Cron - update semgrep-rules and semgrep-rules-pro submodules (semgrep/semgrep...
• b219159semgrep/semgrep-proprietary#2734
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[mergify]

Merge Protections

Your pull request matches the following merge protections and will not be merged until they are valid.

🟢 Changelog requirements

Wonderful, this rule succeeded.

• any of:
  • -title ~= ^feat
  • label = need changelog
  • label = skip changelog

🟢 Enforce conventional commit

Wonderful, this rule succeeded.

Make sure that we follow https://www.conventionalcommits.org/en/v1.0.0/

• title ~= ^(fix|feat|docs|style|refactor|perf|test|build|ci|chore|revert)(?:\(.+\))?:

🟢 🔎 Reviews

Wonderful, this rule succeeded.

• #changes-requested-reviews-by = 0
• #review-requested = 0
• #review-threads-unresolved = 0