rpm/gosec
SHA256
1
0
Fork 0
forked from pool/gosec
Code Pull Requests Activity

Commit Graph

  • a32e2a03fa Accepting request 1199817 from devel:languages:go factory Ana Guerrero 2024-09-10 19:13:58 +0000
  • 68e7081560 - Update to version 2.21.2: * Update the github action to v2.21.2 (#1218) * Update the SARIF schema URL (#1217) * Update go version to 1.23.1 and 1.22.7 (#1216) * chore(deps): update all dependencies (#1215) * Update gosec version to v2.21.1 in github action (#1213) * Rollback the SARIF version to 2.1 since github doesn't support 2.2 (#1210) * Update gosec in github action to v2.21.0 (#1208) * Update cosign version to v2.4.0 in release github workflow (#1207) * Improvement the int conversion overflow logic to handle bound checks (#1194) * fix: G602 support for nested conditionals with bounds check (#1201) * Update go.mod to sue go 1.22.0 toolchain * chore(deps): update all dependencies * Make variable name more clear * Make variable names more explicity and reduce duplications * Fix formatting * Refactor to reduce some fuctions and variable names * Pass the value argument directly since is an interface * Added suggested changes * Added another test case in order to increase code coverage * Removed function parameter which is always the same * Formatting problems(CI was not passing) * Updated analyzer to use new way of initialization * Migrated the rule to the analyzers folder * Refractored code a little bit * Added new rule G407(hardcoded IV/nonce) * Fix conversion overflow false positive when using ParseUint * Add a build step to measure the scan perfomance * Fix conversion overflow false positives when they are checked or pre-determined * Update go.mod * chore(deps): update all dependencies * Fix false positive in conversion overflow check from uint8/int8 type * Disable staticcheck SA1019 rule * Update the golangci linters * Add more test to cover more use cases for G115 rule * Allow excluding analyzers globally (#1180) * Update to Go 1.23.0 (#1183) * chore(deps): update all dependencies (#1182) * Read the AI API key also from an environment variable (#1181) * Add support to generate auto fixes using LLM (AI) (#1177) * chore(deps): update all dependencies * chore(deps): update all dependencies * chore(deps): update all dependencies * chore(deps): update dependency babel-standalone to v7.24.10 * Resolve underlying type to detect overflows in type aliases * chore(deps): update dependency babel-standalone to v7.24.8 * Fix multifile ignores * Add -enable-audit cli flag * Update to go 1.22.5 and 1.21.12 * chore(deps): update all dependencies * Added more rules * Fixed coverage workflow * Fixed CI workflow * Minor changes * Split the G401 rule into two separate ones * Updated G401 corresponding CWE * chore(deps): update docker/build-push-action action to v6 * Update to go versions to 1.21.11 and 1.22.4 * chore(deps): update all dependencies * Fix nosec when applied to a block * Add more types to templates rule * Map the G115 rule to an CWE ID * chore(deps): update all dependencies * Update README with G115 rule description * Remove deprecated megacheck linter from golangci * Format imports * Update .gitignore * Add a new rule to detect integer overflow on integer types conversion * feat: add env var to override the Go version detection * Use the proper logic when disabling the go module version * Update the README with some details related to Go version used by the rules * Add an environment varialbe which disables the parsing of Go version from module file * chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.3 devel Jeff Kowalczyk 2024-09-10 08:03:04 +0000
  • fafc4989ab Accepting request 1174686 from devel:languages:go Ana Guerrero 2024-05-17 18:05:37 +0000
  • b3af705157 Accepting request 1174421 from home:ph03nix Jeff Kowalczyk 2024-05-16 21:07:16 +0000
  • 9fdddf4569 Accepting request 1146391 from devel:languages:go Ana Guerrero 2024-02-13 21:44:27 +0000
  • ebc3d38705 Accepting request 1146309 from home:ph03nix Jeff Kowalczyk 2024-02-13 12:34:07 +0000
  • e1b0d750bb Accepting request 1128786 from devel:languages:go Ana Guerrero 2023-11-26 18:37:34 +0000
  • 89db85e435 - update to 2.18.2: * Disable dot-imports in revive linter * Run the gosec with data race detector active during tests * Fix data race in the analyzer * Fix test that checks the overriden nosec directive * Clean global state in flgs tests * Format the file * Update README with details which describe the current of #nosec * Ensure the ignores are parsed before analysing the package Dirk Mueller 2023-11-25 19:22:44 +0000
  • 444d33c6b1 Accepting request 1118372 from devel:languages:go Ana Guerrero 2023-10-18 19:25:30 +0000
  • 4a6b103660 Accepting request 1118368 from home:jfkw:branches:devel:languages:go Jeff Kowalczyk 2023-10-17 20:28:40 +0000
  • e27b1b4080 Accepting request 1116475 from devel:languages:go Ana Guerrero 2023-10-10 18:59:54 +0000
  • 6a366dca8c Accepting request 1116472 from home:jfkw:branches:devel:languages:go Jeff Kowalczyk 2023-10-09 13:34:07 +0000
  • cb31542fce Accepting request 1116406 from home:ph03nix Jeff Kowalczyk 2023-10-09 13:09:06 +0000
  • 11afb2c274 Accepting request 1104424 from devel:languages:go Ana Guerrero 2023-08-18 17:28:11 +0000
  • 6247685edb Accepting request 1104395 from home:ph03nix Jeff Kowalczyk 2023-08-17 14:14:59 +0000
  • a641f4c7d1 Accepting request 1088705 from devel:languages:go Dominique Leuenberger 2023-05-24 18:22:28 +0000
  • 826d609a07 Accepting request 1088575 from home:ph03nix Jeff Kowalczyk 2023-05-23 15:11:06 +0000
  • b9fba275b9 Accepting request 1063471 from devel:languages:go Dominique Leuenberger 2023-02-07 17:48:54 +0000
  • d85194afd4 Accepting request 1063437 from home:ph03nix Jeff Kowalczyk 2023-02-06 16:13:51 +0000
  • 11a6ca5834 Accepting request 1043867 from devel:languages:go Dominique Leuenberger 2022-12-20 19:20:53 +0000
  • 9a95cd3edd Accepting request 1043862 from home:jfkw:branches:devel:languages:go Jeff Kowalczyk 2022-12-20 07:32:00 +0000
  • 66c1da04a3 Accepting request 1026508 from devel:languages:go Dominique Leuenberger 2022-10-18 10:45:07 +0000
  • afd8f8285e Accepting request 1014614 from home:ph03nix Jeff Kowalczyk 2022-10-17 14:17:43 +0000
  • 3780ea13d3 Accepting request 998691 from devel:languages:go Dominique Leuenberger 2022-08-23 12:29:35 +0000
  • 64101d2629 Accepting request 998624 from home:ph03nix Jeff Kowalczyk 2022-08-22 16:37:08 +0000
  • 8f58c1a2f6 Accepting request 984265 from devel:languages:go Dominique Leuenberger 2022-06-23 08:23:40 +0000
  • aec1c2704e Accepting request 984075 from home:jfkw:branches:devel:languages:go Jeff Kowalczyk 2022-06-21 22:37:53 +0000
  • ff94bdca60 Accepting request 982726 from home:ph03nix Jeff Kowalczyk 2022-06-15 15:15:16 +0000
  • 7bad9ae65f Accepting request 974964 from devel:languages:go Dominique Leuenberger 2022-05-05 21:06:13 +0000
  • d26a470ef6 Accepting request 974534 from home:ph03nix Jeff Kowalczyk 2022-05-04 15:16:25 +0000
  • 66481f311e Accepting request 963855 from home:ph03nix Jeff Kowalczyk 2022-03-23 07:30:13 +0000
  • 9a0c78dd09 Accepting request 958490 from devel:languages:go Dominique Leuenberger 2022-03-02 17:22:36 +0000
  • 990659287e Accepting request 958397 from home:ph03nix Jeff Kowalczyk 2022-03-02 16:23:29 +0000
  • 0d295e37d7 Accepting request 950920 from devel:languages:go Dominique Leuenberger 2022-02-07 22:37:55 +0000
  • 05290390fe Accepting request 947871 from home:ph03nix Jeff Kowalczyk 2022-02-01 21:12:11 +0000