From d4abdb14850d3b637f714832f39008e37fac37ae Mon Sep 17 00:00:00 2001
From: Chris Capurso <1036769+ccapurso@users.noreply.github.com>
Date: Mon, 13 May 2024 16:13:50 -0400
Subject: [PATCH] Add ToB Semgrep Rules (#26821)

* add tob goroutine rule for pr scanning

* add tob racy slice and map rules

---------

Co-authored-by: mickael e <mickael@hashicorp.com>
---
 scan.hcl | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/scan.hcl b/scan.hcl
index 6fb499794c..918a450cde 100644
--- a/scan.hcl
+++ b/scan.hcl
@@ -15,7 +15,13 @@ repository {
   plugin "semgrep" {
     use_git_ignore = true
     exclude = ["vendor"]
-    config = ["tools/semgrep/ci", "p/r2c-security-audit"]
+    config = [
+      "tools/semgrep/ci",
+      "p/r2c-security-audit",
+      "r/trailofbits.go.hanging-goroutine.hanging-goroutine",
+      "r/trailofbits.go.racy-append-to-slice.racy-append-to-slice",
+      "r/trailofbits.go.racy-write-to-map.racy-write-to-map",
+    ]
     exclude_rule = ["generic.html-templates.security.unquoted-attribute-var.unquoted-attribute-var"]
   }