From 802292c54f533a0ba16f7ed0638e43c944f7ce44 Mon Sep 17 00:00:00 2001 From: Cosmin Cojocar Date: Wed, 15 Apr 2020 16:10:21 +0200 Subject: [PATCH] Fix the configuration parsing for hardcoded credentials Signed-off-by: Cosmin Cojocar --- rules/hardcoded_credentials.go | 28 ++++++++++++++++++---------- 1 file changed, 18 insertions(+), 10 deletions(-) diff --git a/rules/hardcoded_credentials.go b/rules/hardcoded_credentials.go index 3224cba..65ddd56 100644 --- a/rules/hardcoded_credentials.go +++ b/rules/hardcoded_credentials.go @@ -105,28 +105,36 @@ func NewHardcodedCredentials(id string, conf gosec.Config) (gosec.Rule, []ast.No ignoreEntropy := false var truncateString = 16 if val, ok := conf["G101"]; ok { - conf := val.(map[string]string) + conf := val.(map[string]interface{}) if configPattern, ok := conf["pattern"]; ok { - pattern = configPattern + if cfgPattern, ok := configPattern.(string); ok { + pattern = cfgPattern + } } if configIgnoreEntropy, ok := conf["ignore_entropy"]; ok { - if parsedBool, err := strconv.ParseBool(configIgnoreEntropy); err == nil { - ignoreEntropy = parsedBool + if cfgIgnoreEntropy, ok := configIgnoreEntropy.(bool); ok { + ignoreEntropy = cfgIgnoreEntropy } } if configEntropyThreshold, ok := conf["entropy_threshold"]; ok { - if parsedNum, err := strconv.ParseFloat(configEntropyThreshold, 64); err == nil { - entropyThreshold = parsedNum + if cfgEntropyThreshold, ok := configEntropyThreshold.(string); ok { + if parsedNum, err := strconv.ParseFloat(cfgEntropyThreshold, 64); err == nil { + entropyThreshold = parsedNum + } } } if configCharThreshold, ok := conf["per_char_threshold"]; ok { - if parsedNum, err := strconv.ParseFloat(configCharThreshold, 64); err == nil { - perCharThreshold = parsedNum + if cfgCharThreshold, ok := configCharThreshold.(string); ok { + if parsedNum, err := strconv.ParseFloat(cfgCharThreshold, 64); err == nil { + perCharThreshold = parsedNum + } } } if configTruncate, ok := conf["truncate"]; ok { - if parsedInt, err := strconv.Atoi(configTruncate); err == nil { - truncateString = parsedInt + if cfgTruncate, ok := configTruncate.(string); ok { + if parsedInt, err := strconv.Atoi(cfgTruncate); err == nil { + truncateString = parsedInt + } } } }