Announcing custom rules for Semgrep Secrets

Semgrep Secrets has introduced the capability for users to create custom rules, allowing them to tailor the security tool to their specific codebases and achieve an in-house SAST-like solution at a reduced cost. Users can start by writing a new rule or modifying an existing one, such as creating a custom GitHub validation rule to properly validate tokens against both GitHub and GitHub Enterprise Server. The process involves using the Semgrep Playground to update rule IDs and validation URLs, and users can integrate these rules into their policies to monitor or replace existing rules. This new functionality extends Semgrep Secrets' applicability to custom subdomains, internal applications, or unsupported applications, with support resources available for users needing assistance.