Skip to content

coderabbitai/ast-grep-essentials

4 Branches0 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

ESS-ENNSakshis
ESS-ENN
and
Sakshis
Remove Nested nthChild and if_statement Conditions and Rule Comments (#…
Mar 31, 2025
7312010 · Mar 31, 2025

History

153 Commits
rules
rules
Mar 31, 2025
tests
tests
Mar 31, 2025
utils
utils
Mar 28, 2024
.gitignore
.gitignore
Apr 16, 2024
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
Apr 15, 2024
CONTRIBUTING.md
CONTRIBUTING.md
Apr 16, 2024
LICENSE
LICENSE
Apr 15, 2024
README.md
README.md
Nov 22, 2024
package-lock.json
package-lock.json
Mar 7, 2025
package.json
package.json
Dec 11, 2024
sgconfig.yml
sgconfig.yml
Mar 28, 2024

Repository files navigation

AST-GREP Essentials

CodeRabbit Reviews

Overview

ast-grep-essentials is a community-led collection of ast-grep rules to help developers mitigate security vulnerabilities and enforce best practices in their codebases.

Tip

Please read the CodeRabbit documentation to understand how to use ast-grep in CodeRabbit reviews.

Structure

ast-grep-essentials
│
├── rules
│   ├── javascript
│   │   ├── jwt
│   │   │   ├── rule1.yml
│   │   │   ├── rule2.yml
│   │   │   └── ...
│   │   ├── ...
│   │   └── ...
│   └── go
│       ├── jwt-go
│       │   ├── rule1.yml
│
├── utils
│   ├── script1.yml
│   ├── script2.yml
│   └── ...
│
└── tests
    ├── javascript
    │   ├── rule1-test.yml
    │   ├── rule2-test.yml
    │   └── ...
    ├── ...
    └── ...

The package is organized into three main directories:

  • rules: Contains ast-grep rules categorized by language and security category.
  • utils: Houses utility configs to support rule management.
  • tests: Includes test cases for validating the effectiveness of the rules across different languages.

Rules Structure

Within the rules directory, you'll find the following structure:

  • language: Each language supported by ast-grep (e.g., Python, JavaScript).
  • category: Rules categorized based on security concerns (e.g., Input Validation, Authentication).

Rule file structure

Tip

Read the ast-grep > documentation to understand the rule configuration and the rule object properties.

Each rule file should have the following structure:

# Unique across the package, not just the language
id: rule-id
# The language property that the rule is going to get matched against
language: "language" # e.g., javaScript, go
# A short description of the rule
message: "Rule message"
# A more detailed explanation of the rule
note: "Rule note"
# Severity level of the rule (e.g., hint, warning)
severity: "severity"
# ast-grep rule property, check documentation for more information
rule: ...

Tests Structure

Inside the tests directory, tests are organized by language:

  • language: Test cases specific to the corresponding language's rules.
  • rule-file: each test rule file should have by convention the rule-file-name-test.yml format.

Note

Tests should follow the ast-grep testing rules format. Please refer to the ast-grep documentation

Contributing

This project relies on the community to contribute rules. Please open a pull request with your rules and tests. Please ensure that the rules are truly essential and have a low false positive rate.

Community

Join the discussion on our Discord server.

About

Community-led collection of essential ast-grep rules.

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

44 stars

Watchers

3 watching

Forks

6 forks
Report repository

Contributors 5