From 2d0a05a9e6f3f1e1730996c650cf04d5bcfa44a6 Mon Sep 17 00:00:00 2001 From: DMarinhoCodacy Date: Fri, 30 Jan 2026 17:21:44 +0000 Subject: [PATCH 1/2] fix codacy.generic.sql.grant-select-no-role --- docs/codacy-rules.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/codacy-rules.yaml b/docs/codacy-rules.yaml index 55101b1..11aa052 100644 --- a/docs/codacy-rules.yaml +++ b/docs/codacy-rules.yaml @@ -165,7 +165,7 @@ rules: GRANT SELECT privileges should only be given to role-based accounts (ending in '_role'). Direct grants to users or non-role accounts violate security best practices. - pattern-regex: GRANT\s+(DELETE|INSERT|SELECT|UPDATE)(\s*,\s*(DELETE|INSERT|SELECT|UPDATE))*\s+ON\s+[a-zA-Z0-9_]+(\.[a-zA-Z0-9_*]+)?\s+TO\s+(?![a-zA-Z0-9_]*_role\b)[a-zA-Z0-9_]+ + pattern-regex: GRANT\s+(?:DELETE|INSERT|SELECT|UPDATE)(?:\s*,\s*(?:DELETE|INSERT|SELECT|UPDATE))*\s+ON\s+[\w.]+\s+TO\s+\b(?!\w*_[Rr][Oo][Ll][Ee]\b)\w+\b paths: include: - "*.sql" From 20b8a02d41033549243075037a87403600978943 Mon Sep 17 00:00:00 2001 From: DMarinhoCodacy Date: Fri, 30 Jan 2026 17:27:58 +0000 Subject: [PATCH 2/2] fix test --- docs/codacy-rules.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/codacy-rules.yaml b/docs/codacy-rules.yaml index 11aa052..9b37828 100644 --- a/docs/codacy-rules.yaml +++ b/docs/codacy-rules.yaml @@ -165,7 +165,7 @@ rules: GRANT SELECT privileges should only be given to role-based accounts (ending in '_role'). Direct grants to users or non-role accounts violate security best practices. - pattern-regex: GRANT\s+(?:DELETE|INSERT|SELECT|UPDATE)(?:\s*,\s*(?:DELETE|INSERT|SELECT|UPDATE))*\s+ON\s+[\w.]+\s+TO\s+\b(?!\w*_[Rr][Oo][Ll][Ee]\b)\w+\b + pattern-regex: GRANT\s+(?:DELETE|INSERT|SELECT|UPDATE)(?:\s*,\s*(?:DELETE|INSERT|SELECT|UPDATE))*\s+ON\s+[\w.*]+\s+TO\s+(?!\w*_[Rr][Oo][Ll][Ee]\b)\b\w+ paths: include: - "*.sql"