go/gosec
1
0
Fork 0
mirror of https://github.com/securego/gosec.git synced 2025-07-07 00:35:35 +02:00
Code Issues Releases Activity

Improve the TLS version checking

Browse Source 
Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch>
This commit is contained in:
Cosmin Cojocar
2020-06-23 11:34:08 +02:00
committed by Cosmin Cojocar
parent ad1cb7e47e
commit 55d368f2e5
2 changed files with 68 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
testutils/source.go
View File

@ -1887,7 +1887,25 @@ func main() {
if err != nil {
fmt.Println(err)
}
}`}, 1, gosec.NewConfig()}}
}`}, 1, gosec.NewConfig()}, {[]string{`
// secure max version when min version is specified
package main
import (
"crypto/tls"
"fmt"
"net/http"
)
func main() {
tr := &http.Transport{
TLSClientConfig: &tls.Config{MaxVersion: 0, MinVersion: tls.VersionTLS13},
}
client := &http.Client{Transport: tr}
_, err := client.Get("https://golang.org/")
if err != nil {
fmt.Println(err)
}
}
}`}, 0, gosec.NewConfig()}}
// SampleCodeG403 - weak key strength
SampleCodeG403 = []CodeSample{