SHA256
1
0
forked from pool/gosec

Compare commits

...

36 Commits

Author SHA256 Message Date
Ana Guerrero
b3feb420b6 Accepting request 1201897 from devel:languages:go
- Update to version 2.21.3:
  * Update gosec version to v2.21.3 in github action (#1227)
  * Populate the fixes only when autofix is not empty (#1226)
  * chore(deps): update all dependencies (#1223)
  * G115 Struct Attribute Checks (#1221) (forwarded request 1201848 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1201897
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=17
2024-09-19 19:17:27 +00:00
Jeff Kowalczyk
594e5d48c9 - Update to version 2.21.3:
* Update gosec version to v2.21.3 in github action (#1227)
  * Populate the fixes only when autofix is not empty (#1226)
  * chore(deps): update all dependencies (#1223)
  * G115 Struct Attribute Checks (#1221)

OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=35
2024-09-19 00:10:02 +00:00
Ana Guerrero
a32e2a03fa Accepting request 1199817 from devel:languages:go
- Update to version 2.21.2:
  * Update the github action to v2.21.2 (#1218)
  * Update the SARIF schema URL (#1217)
  * Update go version to 1.23.1 and 1.22.7 (#1216)
  * chore(deps): update all dependencies (#1215)
  * Update gosec version to v2.21.1 in github action (#1213)
  * Rollback the SARIF version to 2.1 since github doesn't support 2.2 (#1210)
  * Update gosec in github action to v2.21.0 (#1208)
  * Update cosign version to v2.4.0 in release github workflow (#1207)
  * Improvement the int conversion overflow logic to handle bound checks (#1194)
  * fix: G602 support for nested conditionals with bounds check (#1201)
  * Update go.mod to sue go 1.22.0 toolchain
  * chore(deps): update all dependencies
  * Make variable name more clear
  * Make variable names more explicity and reduce duplications
  * Fix formatting
  * Refactor to reduce some fuctions and variable names
  * Pass the value argument directly since is an interface
  * Added suggested changes
  * Added another test case in order to increase code coverage
  * Removed function parameter which is always the same
  * Formatting problems(CI was not passing)
  * Updated analyzer to use new way of initialization
  * Migrated the rule to the analyzers folder
  * Refractored code a little bit
  * Added new rule G407(hardcoded IV/nonce)
  * Fix conversion overflow false positive when using ParseUint
  * Add a build step to measure the scan perfomance
  * Fix conversion overflow false positives when they are checked or pre-determined
  * Update go.mod
  * chore(deps): update all dependencies
  * Fix false positive in conversion overflow check from uint8/int8 type
  * Disable staticcheck SA1019 rule
  * Update the golangci linters
  * Add more test to cover more use cases for G115 rule
  * Allow excluding analyzers globally (#1180)
  * Update to Go 1.23.0 (#1183)
  * chore(deps): update all dependencies (#1182)
  * Read the AI API key also from an environment variable (#1181)
  * Add support to generate auto fixes using LLM (AI) (#1177)
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update dependency babel-standalone to v7.24.10
  * Resolve underlying type to detect overflows in type aliases
  * chore(deps): update dependency babel-standalone to v7.24.8
  * Fix multifile ignores
  * Add -enable-audit cli flag
  * Update to go 1.22.5 and 1.21.12
  * chore(deps): update all dependencies
  * Added more rules
  * Fixed coverage workflow
  * Fixed CI workflow
  * Minor changes
  * Split the G401 rule into two separate ones
  * Updated G401 corresponding CWE
  * chore(deps): update docker/build-push-action action to v6
  * Update to go versions to 1.21.11 and 1.22.4
  * chore(deps): update all dependencies
  * Fix nosec when applied to a block
  * Add more types to templates rule
  * Map the G115 rule to an CWE ID
  * chore(deps): update all dependencies
  * Update README with G115 rule description
  * Remove deprecated megacheck linter from golangci
  * Format imports
  * Update .gitignore
  * Add a new rule to detect integer overflow on integer types conversion
  * feat: add env var to override the Go version detection
  * Use the proper logic when disabling the go module version
  * Update the README with some details related to Go version used by the rules
  * Add an environment varialbe which disables the parsing of Go version from module file
  * chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.3 (forwarded request 1199812 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1199817
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=16
2024-09-10 19:13:58 +00:00
Ana Guerrero
fafc4989ab Accepting request 1174686 from devel:languages:go
- Update to version 2.20.0:
  * Update docker image in action to v2.20.0
  * Catch os.ModePerm permissions in os.WriteFile
  * Add a unit test to detect the false negative in rule G306 for os.ModePerm permissions
  * Add filepath.EvalSymlinks to clean functions in rule G304
  * chore(deps): update all dependencies
  * Update Go to version 2.22.3 in CI and release
  * chore(deps): update module golang.org/x/text to v0.15.0
  * chore(deps): update all dependencies
  * chore(deps): update module github.com/onsi/gomega to v1.33.0
  * Update to go 1.22.2
  * chore(deps): update all dependencies
  * chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.1
  * chore(deps): update all dependencies
  * fix(helpers/goversion): get from go.mod
  * chore: fix function name
  * chore(deps): update all dependencies
  * Format the imports using the gci tool
  * Fixup: delete unused variable
  * Fix test: update test to comply with the spec of generated sources
  * Refactor: use standard function to check if a file is generated
  * Fix lint warnings
  * Add support for math/rand/v2 added in Go 1.22
  * Skip the G601 tests for Go version 1.22
  * Update go version to 1.22.1 and 1.21.8
  * Ignore 'implicit memory aliasing' rule for Go 1.22+
  * chore(deps): update all dependencies
  * chore(deps): update module golang.org/x/tools to v0.18.0
  * fix(hardcoded): remove duplicated `Stripe API Key` (forwarded request 1174421 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1174686
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=15
2024-05-17 18:05:37 +00:00
Jeff Kowalczyk
b3af705157 Accepting request 1174421 from home:ph03nix
- Update to version 2.20.0:
  * Update docker image in action to v2.20.0
  * Catch os.ModePerm permissions in os.WriteFile
  * Add a unit test to detect the false negative in rule G306 for os.ModePerm permissions
  * Add filepath.EvalSymlinks to clean functions in rule G304
  * chore(deps): update all dependencies
  * Update Go to version 2.22.3 in CI and release
  * chore(deps): update module golang.org/x/text to v0.15.0
  * chore(deps): update all dependencies
  * chore(deps): update module github.com/onsi/gomega to v1.33.0
  * Update to go 1.22.2
  * chore(deps): update all dependencies
  * chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.1
  * chore(deps): update all dependencies
  * fix(helpers/goversion): get from go.mod
  * chore: fix function name
  * chore(deps): update all dependencies
  * Format the imports using the gci tool
  * Fixup: delete unused variable
  * Fix test: update test to comply with the spec of generated sources
  * Refactor: use standard function to check if a file is generated
  * Fix lint warnings
  * Add support for math/rand/v2 added in Go 1.22
  * Skip the G601 tests for Go version 1.22
  * Update go version to 1.22.1 and 1.21.8
  * Ignore 'implicit memory aliasing' rule for Go 1.22+
  * chore(deps): update all dependencies
  * chore(deps): update module golang.org/x/tools to v0.18.0
  * fix(hardcoded): remove duplicated `Stripe API Key`

OBS-URL: https://build.opensuse.org/request/show/1174421
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=31
2024-05-16 21:07:16 +00:00
Ana Guerrero
9fdddf4569 Accepting request 1146391 from devel:languages:go
- Update to version 2.19.0:
  * Update gosec version to v2.19.0 in the Github action
  * Update CI to go version 1.22
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update dependency babel-standalone to v7.23.7
  * chore(deps): update module golang.org/x/crypto to v0.17.0 [security]
  * chore(deps): update all dependencies
  * chore(deps): update actions/setup-go action to v5
  * Fix lint warnings by properly formatting the files
  * chore: Refactor Sample Code to Separate Files
  * Update go version to 1.21.5 and 1.20.12 (#1084)
  * chore(deps): update all dependencies (#1080)
  * Ignore the issues from generated files when using the analysis framework (#1079)
  * Update README with upload-sarif v2 (#1078)
  * chore(deps): update dependency babel-standalone to v7.23.4 (forwarded request 1146309 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1146391
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=14
2024-02-13 21:44:27 +00:00
Jeff Kowalczyk
ebc3d38705 Accepting request 1146309 from home:ph03nix
- Update to version 2.19.0:
  * Update gosec version to v2.19.0 in the Github action
  * Update CI to go version 1.22
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update all dependencies
  * chore(deps): update dependency babel-standalone to v7.23.7
  * chore(deps): update module golang.org/x/crypto to v0.17.0 [security]
  * chore(deps): update all dependencies
  * chore(deps): update actions/setup-go action to v5
  * Fix lint warnings by properly formatting the files
  * chore: Refactor Sample Code to Separate Files
  * Update go version to 1.21.5 and 1.20.12 (#1084)
  * chore(deps): update all dependencies (#1080)
  * Ignore the issues from generated files when using the analysis framework (#1079)
  * Update README with upload-sarif v2 (#1078)
  * chore(deps): update dependency babel-standalone to v7.23.4

OBS-URL: https://build.opensuse.org/request/show/1146309
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=29
2024-02-13 12:34:07 +00:00
Ana Guerrero
e1b0d750bb Accepting request 1128786 from devel:languages:go
- update to 2.18.2:
  * Disable dot-imports in revive linter
  * Run the gosec with data race detector active during
    tests
  * Fix data race in the analyzer
  * Fix test that checks the overriden nosec directive
  * Clean global state in flgs tests
  * Format the file
  * Update README with details which describe the current
    of #nosec
  * Ensure the ignores are parsed before analysing the
    package

- Update to version 2.18.2:
  * Added ppc64le support
  * chore(deps): update all dependencies
  * Ensure ignores are handled properly for multi-line issues
  * Update Go to version 1.21.4 and 1.20.11
  * chore(deps): update module golang.org/x/text to v0.14.0
  * chore(deps): update all dependencies
  * Remove the hardcoded GOOS value when building the Linux binary to enable support for container image for ARM
  * Avoid allocations with `(*regexp.Regexp).MatchString`
  * Fix some typos
  * Update local installation instructions by removing the details for Go 1.16

OBS-URL: https://build.opensuse.org/request/show/1128786
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=13
2023-11-26 18:37:34 +00:00
89db85e435 - update to 2.18.2:
* Disable dot-imports in revive linter
  * Run the gosec with data race detector active during
    tests
  * Fix data race in the analyzer
  * Fix test that checks the overriden nosec directive
  * Clean global state in flgs tests
  * Format the file
  * Update README with details which describe the current
    of #nosec
  * Ensure the ignores are parsed before analysing the
    package

- Update to version 2.18.2:
  * Added ppc64le support
  * chore(deps): update all dependencies
  * Ensure ignores are handled properly for multi-line issues
  * Update Go to version 1.21.4 and 1.20.11
  * chore(deps): update module golang.org/x/text to v0.14.0
  * chore(deps): update all dependencies
  * Remove the hardcoded GOOS value when building the Linux binary to enable support for container image for ARM
  * Avoid allocations with `(*regexp.Regexp).MatchString`
  * Fix some typos
  * Update local installation instructions by removing the details for Go 1.16

OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=27
2023-11-25 19:22:44 +00:00
Ana Guerrero
444d33c6b1 Accepting request 1118372 from devel:languages:go
- Update to version 2.18.1:
  * chore(deps): update all dependencies
  * Update gosec to version 2.18.1 in the action
  * Update cosign version to v2.2.0
  * Refactor how ignored issues are tracked
  * Restrict the maximum depth when tracking the slice bounds
  * Handle empty ssa results
  * Handle gracefully any panic that occurs when building the SSA representation of a package
  * Fix typo
  * Handle new function when getting the call info in case is overriden
  * Bump golang.org/x/net from 0.16.0 to 0.17.0 (#1037)
  * Update to Go 1.21.3 and 1.20.10 (#1035)
  * Update the list of unsafe functions detected by the unsafe rule (#1033) (forwarded request 1118368 from jfkw)

OBS-URL: https://build.opensuse.org/request/show/1118372
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=12
2023-10-18 19:25:30 +00:00
Jeff Kowalczyk
4a6b103660 Accepting request 1118368 from home:jfkw:branches:devel:languages:go
- Update to version 2.18.1:
  * chore(deps): update all dependencies
  * Update gosec to version 2.18.1 in the action
  * Update cosign version to v2.2.0
  * Refactor how ignored issues are tracked
  * Restrict the maximum depth when tracking the slice bounds
  * Handle empty ssa results
  * Handle gracefully any panic that occurs when building the SSA representation of a package
  * Fix typo
  * Handle new function when getting the call info in case is overriden
  * Bump golang.org/x/net from 0.16.0 to 0.17.0 (#1037)
  * Update to Go 1.21.3 and 1.20.10 (#1035)
  * Update the list of unsafe functions detected by the unsafe rule (#1033)

OBS-URL: https://build.opensuse.org/request/show/1118368
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=25
2023-10-17 20:28:40 +00:00
Ana Guerrero
e27b1b4080 Accepting request 1116475 from devel:languages:go
- Update to version 2.18.0:
  * Update the action to use gosec version v2.18.0 (#1029)
  * Use a step ID in github release action to get the digest of the image (#1028)
  * Update to go version 1.21.2 and 1.20.9 (#1027)
  * chore(deps): update all dependencies (#1026)
  * Enable gochecknoinits; fix lint issues; use consts for some vars (#1022)
  * Fix typos in struct fields, comments, and docs (#1023)
  * chore(deps): update all dependencies
  * Fix lint warning
  * Add a new rule which detects when a file is created with os.Create but the configured permissions are less than 0666
  * Fix lint warnings
  * Update ginkgo to latest version
  * Redesign and reimplement the slice out of bounds check using SSA code representation
  * docs: add reMarkable to users list
  * chore(deps): update all dependencies
  * Drop support for go 1.19.x since go team doesn't ship anymore security fixes for it
  * Update to latest go version
  * chore(deps): update all dependencies (#1011)
  * Fix hardcoded_credentials rule to only match on more specific patterns (#1009)
  * chore(deps): update all dependencies (#1008)
  * Exclude maps from slince bounce check rule (#1006)
  * Ignore struct pointers in G601 (#1003)
  * Update gosec image version to 2.17.0 in the Github action (#1002)
- Packaging improvements:
  * Use BuildRequires: golang(API) >= 1.20 instead of go >= 1.20.
    The go metapackage points to a single go version that
    increments at a date TBD after each go1.x major release. The
    expression golang(API) is available immediately upon each go1.x
    major release and is stable for expressing the minimum version
    or a temporarily pinned version.
  * Summary and Description clarify the purpose of this CLI tool
  * Use Group: Development/Languages/Go instead of Other
  * Drop BuildRequires: golang-packaging. The recommended Go
    toolchain dependency is BuildRequires: golang(API) >= 1.x or
    optionally the metapackage BuildRequires: go
  * Drop Requires: golang-packaging. The original macros for file
    movements into GOPATH are obsolete with Go modules. Macro
    go_nostrip is no longer needed with current binutils and Go.
  * Remove %%{go_nostrip} macro which is no longer recommended (forwarded request 1116472 from jfkw)

OBS-URL: https://build.opensuse.org/request/show/1116475
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=11
2023-10-10 18:59:54 +00:00
Jeff Kowalczyk
6a366dca8c Accepting request 1116472 from home:jfkw:branches:devel:languages:go
- Update to version 2.18.0:
  * Update the action to use gosec version v2.18.0 (#1029)
  * Use a step ID in github release action to get the digest of the image (#1028)
  * Update to go version 1.21.2 and 1.20.9 (#1027)
  * chore(deps): update all dependencies (#1026)
  * Enable gochecknoinits; fix lint issues; use consts for some vars (#1022)
  * Fix typos in struct fields, comments, and docs (#1023)
  * chore(deps): update all dependencies
  * Fix lint warning
  * Add a new rule which detects when a file is created with os.Create but the configured permissions are less than 0666
  * Fix lint warnings
  * Update ginkgo to latest version
  * Redesign and reimplement the slice out of bounds check using SSA code representation
  * docs: add reMarkable to users list
  * chore(deps): update all dependencies
  * Drop support for go 1.19.x since go team doesn't ship anymore security fixes for it
  * Update to latest go version
  * chore(deps): update all dependencies (#1011)
  * Fix hardcoded_credentials rule to only match on more specific patterns (#1009)
  * chore(deps): update all dependencies (#1008)
  * Exclude maps from slince bounce check rule (#1006)
  * Ignore struct pointers in G601 (#1003)
  * Update gosec image version to 2.17.0 in the Github action (#1002)
- Packaging improvements:
  * Use BuildRequires: golang(API) >= 1.20 instead of go >= 1.20.
    The go metapackage points to a single go version that
    increments at a date TBD after each go1.x major release. The
    expression golang(API) is available immediately upon each go1.x
    major release and is stable for expressing the minimum version
    or a temporarily pinned version.
  * Summary and Description clarify the purpose of this CLI tool
  * Use Group: Development/Languages/Go instead of Other
  * Drop BuildRequires: golang-packaging. The recommended Go
    toolchain dependency is BuildRequires: golang(API) >= 1.x or
    optionally the metapackage BuildRequires: go
  * Drop Requires: golang-packaging. The original macros for file
    movements into GOPATH are obsolete with Go modules. Macro
    go_nostrip is no longer needed with current binutils and Go.
  * Remove %%{go_nostrip} macro which is no longer recommended

OBS-URL: https://build.opensuse.org/request/show/1116472
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=23
2023-10-09 13:34:07 +00:00
Jeff Kowalczyk
cb31542fce Accepting request 1116406 from home:ph03nix
- Update to version 2.18.0:
  * Update the action to use gosec version v2.18.0 (#1029)
  * Use a step ID in github release action to get the digest of the image (#1028)
  * Update to go version 1.21.2 and 1.20.9 (#1027)
  * chore(deps): update all dependencies (#1026)
  * Enable gochecknoinits; fix lint issues; use consts for some vars (#1022)
  * Fix typos in struct fields, comments, and docs (#1023)
  * chore(deps): update all dependencies
  * Fix lint warning
  * Add a new rule which detects when a file is created with os.Create but the configured permissions are less than 0666
  * Fix lint warnings
  * Update ginkgo to latest version
  * Redesign and reimplement the slice out of bounds check using SSA code representation
  * docs: add reMarkable to users list
  * chore(deps): update all dependencies
  * Drop support for go 1.19.x since go team doesn't ship anymore security fixes for it
  * Update to latest go version
  * chore(deps): update all dependencies (#1011)
  * Fix hardcoded_credentials rule to only match on more specific patterns (#1009)
  * chore(deps): update all dependencies (#1008)
  * Exclude maps from slince bounce check rule (#1006)
  * Ignore struct pointers in G601 (#1003)
  * Update gosec image version to 2.17.0 in the Github action (#1002)

OBS-URL: https://build.opensuse.org/request/show/1116406
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=22
2023-10-09 13:09:06 +00:00
Ana Guerrero
11afb2c274 Accepting request 1104424 from devel:languages:go
- Update to version 2.17.0:
  * Update cosign to version v2.1.1 (#1000)
  * Enable go 1.21.0 in the CI build (#998)
  * chore(deps): update all dependencies (#997)
  * Update to go version 1.20.7 and 1.19.12 (#993)
  * chore(deps): update all dependencies (#992)
  * chore(deps): update module github.com/onsi/gomega to v1.27.10 (#991)
  * fix: correctly identify infixed concats as potential SQL injections (#987)
  * chore(deps): update all dependencies (#989)
  * Add a new flag terse to show only the results and summary (#986)
  * Switch to a maintained fork of zxcvbn module (#984)

- Require go 1.20 (forwarded request 1104395 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1104424
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=10
2023-08-18 17:28:11 +00:00
Jeff Kowalczyk
6247685edb Accepting request 1104395 from home:ph03nix
- Update to version 2.17.0:
  * Update cosign to version v2.1.1 (#1000)
  * Enable go 1.21.0 in the CI build (#998)
  * chore(deps): update all dependencies (#997)
  * Update to go version 1.20.7 and 1.19.12 (#993)
  * chore(deps): update all dependencies (#992)
  * chore(deps): update module github.com/onsi/gomega to v1.27.10 (#991)
  * fix: correctly identify infixed concats as potential SQL injections (#987)
  * chore(deps): update all dependencies (#989)
  * Add a new flag terse to show only the results and summary (#986)
  * Switch to a maintained fork of zxcvbn module (#984)

- Require go 1.20

OBS-URL: https://build.opensuse.org/request/show/1104395
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=20
2023-08-17 14:14:59 +00:00
Dominique Leuenberger
a641f4c7d1 Accepting request 1088705 from devel:languages:go
- Update to version 2.16.0
* Update cosign to latest version in release Github action
* chore(deps): update all dependencies
* Update go version in build and release scripts
* chore(deps): update all dependencies
* Update Go version to 1.20.3
* chore(deps): update all dependencies
* Fix for Dockerfile smell DL3059
* README: upgrade GitHub action in examples
* enable ginkgolinter linter
* chore(deps): update all dependencies
* correct gci linter
* remove deprecated linters
* increase timeout to 5m
* chore(deps): update all dependencies
* Use the latest version
* Fix some linting warnings
* Fix lint warning
* Bump the go versions and golanci
* chore(deps): update all dependencies
* Check nil pointer when variable is declared in a different file
* fix dead link to issue.go in README.md
* Remove rule G307 which checks when an error is not handled when a file or socket connection is closed
* Fix rule index reference into sarif report
* Bump golang.org/x/net from 0.6.0 to 0.7.0
* Format file
* Use the gosec issue in the go analysers
* Fix file formatting
* Update Go version in CI builds
* Fix method name in the comment
* Extract the issue in its own package
* Add support for Go analysis framework and SSA code representation
* chore(deps): update all dependencies
* Remove the version form ci github action
* Pin github action to latest release version 2.15.0
* Revert the image tag in github action until a working solution is found
* Fix version interpolation in github action image
* Add gosec version as an input parameter to GitHub action
* Update release build script (forwarded request 1088575 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1088705
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=9
2023-05-24 18:22:28 +00:00
Jeff Kowalczyk
826d609a07 Accepting request 1088575 from home:ph03nix
- Update to version 2.16.0
* Update cosign to latest version in release Github action
* chore(deps): update all dependencies
* Update go version in build and release scripts
* chore(deps): update all dependencies
* Update Go version to 1.20.3
* chore(deps): update all dependencies
* Fix for Dockerfile smell DL3059
* README: upgrade GitHub action in examples
* enable ginkgolinter linter
* chore(deps): update all dependencies
* correct gci linter
* remove deprecated linters
* increase timeout to 5m
* chore(deps): update all dependencies
* Use the latest version
* Fix some linting warnings
* Fix lint warning
* Bump the go versions and golanci
* chore(deps): update all dependencies
* Check nil pointer when variable is declared in a different file
* fix dead link to issue.go in README.md
* Remove rule G307 which checks when an error is not handled when a file or socket connection is closed
* Fix rule index reference into sarif report
* Bump golang.org/x/net from 0.6.0 to 0.7.0
* Format file
* Use the gosec issue in the go analysers
* Fix file formatting
* Update Go version in CI builds
* Fix method name in the comment
* Extract the issue in its own package
* Add support for Go analysis framework and SSA code representation
* chore(deps): update all dependencies
* Remove the version form ci github action
* Pin github action to latest release version 2.15.0
* Revert the image tag in github action until a working solution is found
* Fix version interpolation in github action image
* Add gosec version as an input parameter to GitHub action
* Update release build script

OBS-URL: https://build.opensuse.org/request/show/1088575
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=18
2023-05-23 15:11:06 +00:00
Dominique Leuenberger
b9fba275b9 Accepting request 1063471 from devel:languages:go
* Update to version 2.15.0
- Fix dependencies after renovate update
- chore(deps): update all dependencies (#922)
- Update to Go 1.20 and fix unit tests (#923)
- Update Go to latest version (#920)
- Update hardcoded_credentials.go fix: adaper equal expr which const value at left (#917)
- Fix github latest URL (#918)
- Fix github release url (#916)
- chore(deps): update module github.com/onsi/ginkgo/v2 to v2.7.0 (#914)
- Update Go version in CI script (#913)
- Track back when a file path was sanitized with filepath.Clean (#912)
- Fix the TLS config rule when parsing the settings from a variable (#911)
- Fix build after updating the dependencies (#910)
- chore(deps): update all dependencies (#909)
- Fix dependencies after renovate update (#907)
- chore(deps): update all dependencies (#906)
- Update slack badge and link (#905)
- Auto-detect TLS MinVersion integer base (#903)
- Adding s390x support (#902)
- chore(deps): update all dependencies (#904)
- chore(deps): update all dependencies (#898)
- Additional types for bad defer check (#897)
- chore(deps): update all dependencies (#894)
- chore(deps): update all dependencies (#892)
- Update Go version in CI scripts (#889)
- chore(deps): update all dependencies (#888)
- Allow to override build date with SOURCE_DATE_EPOCH (#887)
- chore(deps): update all dependencies (#886)
- chore(deps): update all dependencies (#884)
- fileperms: bitwise permission comparison (#883) (forwarded request 1063437 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/1063471
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=8
2023-02-07 17:48:54 +00:00
Jeff Kowalczyk
d85194afd4 Accepting request 1063437 from home:ph03nix
* Update to version 2.15.0
- Fix dependencies after renovate update
- chore(deps): update all dependencies (#922)
- Update to Go 1.20 and fix unit tests (#923)
- Update Go to latest version (#920)
- Update hardcoded_credentials.go fix: adaper equal expr which const value at left (#917)
- Fix github latest URL (#918)
- Fix github release url (#916)
- chore(deps): update module github.com/onsi/ginkgo/v2 to v2.7.0 (#914)
- Update Go version in CI script (#913)
- Track back when a file path was sanitized with filepath.Clean (#912)
- Fix the TLS config rule when parsing the settings from a variable (#911)
- Fix build after updating the dependencies (#910)
- chore(deps): update all dependencies (#909)
- Fix dependencies after renovate update (#907)
- chore(deps): update all dependencies (#906)
- Update slack badge and link (#905)
- Auto-detect TLS MinVersion integer base (#903)
- Adding s390x support (#902)
- chore(deps): update all dependencies (#904)
- chore(deps): update all dependencies (#898)
- Additional types for bad defer check (#897)
- chore(deps): update all dependencies (#894)
- chore(deps): update all dependencies (#892)
- Update Go version in CI scripts (#889)
- chore(deps): update all dependencies (#888)
- Allow to override build date with SOURCE_DATE_EPOCH (#887)
- chore(deps): update all dependencies (#886)
- chore(deps): update all dependencies (#884)
- fileperms: bitwise permission comparison (#883)

OBS-URL: https://build.opensuse.org/request/show/1063437
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=16
2023-02-06 16:13:51 +00:00
Dominique Leuenberger
11a6ca5834 Accepting request 1043867 from devel:languages:go
- Switch OBS source service from tar_scm to obs_scm.
  * Embed version info with go build arg GIT_TAG="v%{version}"
  * _service obs_scm switch from tar_scm
  * _service obs_scm switch param revision (branch) to version (tag)
  * _service tar set to buildtime
  * _service recompress set to buildtime
  * _service recompress change tar compression from gz to xz (forwarded request 1043862 from jfkw)

OBS-URL: https://build.opensuse.org/request/show/1043867
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=7
2022-12-20 19:20:53 +00:00
Jeff Kowalczyk
9a95cd3edd Accepting request 1043862 from home:jfkw:branches:devel:languages:go
- Switch OBS source service from tar_scm to obs_scm.
  * Embed version info with go build arg GIT_TAG="v%{version}"
  * _service obs_scm switch from tar_scm
  * _service obs_scm switch param revision (branch) to version (tag)
  * _service tar set to buildtime
  * _service recompress set to buildtime
  * _service recompress change tar compression from gz to xz

OBS-URL: https://build.opensuse.org/request/show/1043862
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=14
2022-12-20 07:32:00 +00:00
Dominique Leuenberger
66c1da04a3 Accepting request 1026508 from devel:languages:go
* Update to versin 2.14.0
- Pin release build to Go version 1.19.2 (#882)
- Refactor to support duplicate imports with different aliases (#865)
- chore(deps): update all dependencies (#881)
- go.mod: ginkgo/v2 v2.3.1, golang.org/x/text v0.3.8, update go versions (#880)
- Update Go version to 1.19 in the makefile (#876)
- chore(deps): update all dependencies (#875)
- Add CWE-676 to cwe mapping (#874)
- chore(deps): update all dependencies (#872)
- Add a way to use private repositories on GitHub (#869)
- chore(deps): update all dependencies (#868)
- Check go version when installing govulncheck
- Check go version when running govulncheck
- Add vulncheck to the test steps
- chore(deps): update all dependencies
- Fix false positives for G404 with aliased packages
- chore(deps): update all dependencies
- chore(deps): update all dependencies
- fix: add a CWE ID mapping to rule G114
- chore(deps): update golang.org/x/crypto digest to bc19a97

OBS-URL: https://build.opensuse.org/request/show/1026508
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=6
2022-10-18 10:45:07 +00:00
Jeff Kowalczyk
afd8f8285e Accepting request 1014614 from home:ph03nix
* Update to versin 2.14.0
- Pin release build to Go version 1.19.2 (#882)
- Refactor to support duplicate imports with different aliases (#865)
- chore(deps): update all dependencies (#881)
- go.mod: ginkgo/v2 v2.3.1, golang.org/x/text v0.3.8, update go versions (#880)
- Update Go version to 1.19 in the makefile (#876)
- chore(deps): update all dependencies (#875)
- Add CWE-676 to cwe mapping (#874)
- chore(deps): update all dependencies (#872)
- Add a way to use private repositories on GitHub (#869)
- chore(deps): update all dependencies (#868)
- Check go version when installing govulncheck
- Check go version when running govulncheck
- Add vulncheck to the test steps
- chore(deps): update all dependencies
- Fix false positives for G404 with aliased packages
- chore(deps): update all dependencies
- chore(deps): update all dependencies
- fix: add a CWE ID mapping to rule G114
- chore(deps): update golang.org/x/crypto digest to bc19a97

OBS-URL: https://build.opensuse.org/request/show/1014614
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=12
2022-10-17 14:17:43 +00:00
Dominique Leuenberger
3780ea13d3 Accepting request 998691 from devel:languages:go
Update to version 2.13.1 (forwarded request 998624 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/998691
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=5
2022-08-23 12:29:35 +00:00
Jeff Kowalczyk
64101d2629 Accepting request 998624 from home:ph03nix
Update to version 2.13.1

OBS-URL: https://build.opensuse.org/request/show/998624
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=10
2022-08-22 16:37:08 +00:00
Dominique Leuenberger
8f58c1a2f6 Accepting request 984265 from devel:languages:go
- Enable _service tar_scm changelog automation
- Commit _servicedata to support tar_scm changelog automation
- Update to version 2.12.0: (forwarded request 984075 from jfkw)

OBS-URL: https://build.opensuse.org/request/show/984265
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=4
2022-06-23 08:23:40 +00:00
Jeff Kowalczyk
aec1c2704e Accepting request 984075 from home:jfkw:branches:devel:languages:go
- Enable _service tar_scm changelog automation
- Commit _servicedata to support tar_scm changelog automation
- Update to version 2.12.0:

OBS-URL: https://build.opensuse.org/request/show/984075
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=8
2022-06-21 22:37:53 +00:00
Jeff Kowalczyk
ff94bdca60 Accepting request 982726 from home:ph03nix
Update to version 2.12.0

OBS-URL: https://build.opensuse.org/request/show/982726
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=7
2022-06-15 15:15:16 +00:00
Dominique Leuenberger
7bad9ae65f Accepting request 974964 from devel:languages:go
* Use build-linux target on x86_64 to include git tag and version (for `gosec -version`)
* Add additional build check (forwarded request 974534 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/974964
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=3
2022-05-05 21:06:13 +00:00
Jeff Kowalczyk
d26a470ef6 Accepting request 974534 from home:ph03nix
* Use build-linux target on x86_64 to include git tag and version (for `gosec -version`)
* Add additional build check

OBS-URL: https://build.opensuse.org/request/show/974534
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=5
2022-05-04 15:16:25 +00:00
Jeff Kowalczyk
66481f311e Accepting request 963855 from home:ph03nix
Update to v2.11.0

OBS-URL: https://build.opensuse.org/request/show/963855
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=4
2022-03-23 07:30:13 +00:00
Dominique Leuenberger
9a0c78dd09 Accepting request 958490 from devel:languages:go
Update to v2.10.0 (forwarded request 958397 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/958490
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=2
2022-03-02 17:22:36 +00:00
Jeff Kowalczyk
990659287e Accepting request 958397 from home:ph03nix
Update to v2.10.0

OBS-URL: https://build.opensuse.org/request/show/958397
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=3
2022-03-02 16:23:29 +00:00
Dominique Leuenberger
0d295e37d7 Accepting request 950920 from devel:languages:go
Add gosec package to Tumbleweed

OBS-URL: https://build.opensuse.org/request/show/950920
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=1
2022-02-07 22:37:55 +00:00
Jeff Kowalczyk
05290390fe Accepting request 947871 from home:ph03nix
Add gosec package (includes new released version)

OBS-URL: https://build.opensuse.org/request/show/947871
OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/gosec?expand=0&rev=1
2022-02-01 21:12:11 +00:00
9 changed files with 20 additions and 14 deletions

View File

@ -4,7 +4,7 @@
<param name="filename">gosec</param>
<param name="url">https://github.com/securego/gosec.git</param>
<param name="scm">git</param>
<param name="version">v2.21.2</param>
<param name="version">v2.21.3</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="versionrewrite-pattern">v(.*)</param>
<param name="versionrewrite-replacement">\1</param>

View File

@ -1,4 +1,4 @@
<servicedata>
<service name="tar_scm">
<param name="url">https://github.com/securego/gosec.git</param>
<param name="changesrevision">5f3194b581979e508b0ba1ee22f1f1f85a314e16</param></service></servicedata>
<param name="changesrevision">a83689867d8e15cac0f94c1b55979c45df8f69d6</param></service></servicedata>

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:7078eb954f6862de1a0777dd13bb05b588d135dea2914a0ca6db1ffeff93fee4
size 643084

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:6b10defe29bea117bc3aba36079f8354ba7a299a29ec580ffc41af0f3dcb3a1f
size 770572

3
gosec-2.21.3.obscpio Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:16214750aee3054b9ce383a087bf331ae5ab69b2d84d83adb659e0bea7f60410
size 773132

View File

@ -1,3 +1,12 @@
-------------------------------------------------------------------
Wed Sep 18 18:34:55 UTC 2024 - felix.niederwanger@suse.de
- Update to version 2.21.3:
* Update gosec version to v2.21.3 in github action (#1227)
* Populate the fixes only when autofix is not empty (#1226)
* chore(deps): update all dependencies (#1223)
* G115 Struct Attribute Checks (#1221)
-------------------------------------------------------------------
Tue Sep 10 07:42:28 UTC 2024 - felix.niederwanger@suse.de

View File

@ -1,4 +1,4 @@
name: gosec
version: 2.21.2
mtime: 1725891657
commit: 5f3194b581979e508b0ba1ee22f1f1f85a314e16
version: 2.21.3
mtime: 1726661447
commit: a83689867d8e15cac0f94c1b55979c45df8f69d6

View File

@ -17,7 +17,7 @@
Name: gosec
Version: 2.21.2
Version: 2.21.3
Release: 0
Summary: CLI tool to scan the Go AST and SSA code representations for security problems
License: Apache-2.0

View File

@ -1,3 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:805a7fc0d75c03d85d7c8508c27716e67230d1ae93040d6b4e9e2d8c41bc8c34
size 6783826
oid sha256:672519a7143ddcdd618e3a4d25af9db33a787d44d3e4e7fabff7433ab521399b
size 6787054