Skip to content

Releases: usdAG/sah

SAH v2.0.1

06 Aug 12:19
@fhaag95 fhaag95
v2.0.1
bb4386f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
SAH v2.0.1 Latest
Latest

Static Analysis Hero v2.0.1

logo

The Static Analysis Hero (SAH) in version 2.0.1 is our first public release of this tool. It comes with handy features to help tremendously in security code-reviews.

Overview of features in all brevity:

  • All project related information is stored in a project state for sharing with collaborators
  • Integrates scanning with semgrep or its OSS fork opengrep
  • Import of already performed semgrep/ opengrep scans (in JSON format)
  • Matches view with the ability to filter for state of a match, criticality, path and more
  • Jump directly to interesting code-locations from the matches view with our "Jump to Code" button
  • Playground for testing and developing custom opengrep/ semgrep rules

To get started just download the pre-built vsix file below and load it into VSCode.

Give it a try, submit feedback or pull requests. Happy hacking!

Assets 3
Loading