Fix G115 false positive when going from parsed uint to larger int

Signed-off-by: Dave Henderson <dhenderson@gmail.com>
2025-11-25 22:22:17 +02:00 · 2024-11-25 21:04:20 -05:00
parent 08ea2a57db
commit 9b13cd5ab4
2 changed files with 40 additions and 1 deletions
--- a/analyzers/conversion_overflow.go
+++ b/analyzers/conversion_overflow.go
@@ -226,7 +226,12 @@ func isStringToIntConversion(instr *ssa.Convert, dstType string) bool {
 						if err != nil {
 							return false
 						}
-						isSafe := bitSizeValue <= dstInt.size && signed == dstInt.signed
+
+						// we're good if:
+						// - signs match and bit size is <= than destination
+						// - parsing unsigned and bit size is < than destination
+						isSafe := (bitSizeValue <= dstInt.size && signed == dstInt.signed) ||
+							(bitSizeValue < dstInt.size && !signed)
 						return isSafe
 					}
 				}