Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.endorlabs.com/llms.txt

Use this file to discover all available pages before exploring further.

Endor Labs uses Semgrep-compatible rules for SAST scans. Endor Labs includes hundreds of rules for multiple languages, including rules created by Endor Labs and vetted third-party rules. To this end, Endor Labs reviews existing open source rules and complements them with Endor Labs rules to cover additional technologies or vulnerability types. You can edit existing rules in your tenant to make modifications specific to your environment. You can also create new custom rules with the rule designer based on your requirements. You can also use the rule designer to add any Semgrep rule as a custom rule. From the left sidebar, navigate to Policies & Rules and select SAST RULES to view all SAST rules in the system. SAST rules You can use the toggle against a rule to enable or disable the rule during the scan. You can search for rules based on parameters such as rule name, languages, CWE, and tags.

Rule Permissions

You can create SAST rules in your tenants, and can edit, delete, or propagate them to child namespaces. But you cannot edit rules that are marked as Endor Labs or 3rd Party. You can choose to disable the rule to not apply them during scanning or clone them to modify the rules. The following sections provide more information on the actions you can do with SAST rules.