Customer needs to automate code statical analysis into the integration workflow using a SAST tool. The detailed task specification comes from ChatGPT, suggesting semgrep ran from a docker image semgrep/semgrep. I thought it wasn’t a bad idea. ChatGPT suggested to integrate the tool as a pre-commit git hook, that is fair for local development, but […]