semgrep
--safe
flag when invoking interpreter
or by configuring safe_mode
in your config file.
The safe mode setting has three options:
off
: disables the safety toolkit (default)ask
: prompts you to confirm that you want to scan codeauto
: automatically scans codecustom_instructions
in your config file to include instructions for the model to scan packages with guarddog before installing them.