I like the idea. I'll have to play with it sometime. I'm glad you linked the slides. I started by looking at the examples in `semgrep` repo, and they all showed semgrep through a docker; which makes sense for PHP/Python etc. But would be odd for a compiled language. I would think putting the source code into a docker instance would be a security hazard.
I'll probably play with this the next time I need to do deep code search on legacy code.
