ed3f51e663
Add more types to templates rule
...
Add additional types such as CSS, JSStr and Srcset to the template rule.
These types are marked as a security risk in the godoc
https://pkg.go.dev/html/template .
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-28 10:39:33 +02:00
c3209fcaac
Map the G115 rule to an CWE ID
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-27 15:12:55 +02:00
45fbb27d87
chore(deps): update all dependencies
2024-05-27 13:03:14 +02:00
43bef719b4
Update README with G115 rule description
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-27 13:03:01 +02:00
555fe448dd
Remove deprecated megacheck linter from golangci
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-27 13:03:01 +02:00
81b076f53d
Format imports
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-27 13:03:01 +02:00
f775eb19c5
Update .gitignore
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-27 13:03:01 +02:00
4bf5667f66
Add a new rule to detect integer overflow on integer types conversion
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-27 13:03:01 +02:00
5f0084eb01
feat: add env var to override the Go version detection
2024-05-25 11:00:44 +02:00
75dd9d61ff
Use the proper logic when disabling the go module version
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-22 10:31:43 +02:00
1e1fc91d15
Update the README with some details related to Go version used by the rules
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-22 10:24:44 +02:00
9a036658b7
Add an environment varialbe which disables the parsing of Go version from module file
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-22 10:24:44 +02:00
b633c4c0ec
chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.3
2024-05-20 10:36:33 +02:00
40f29c8d4a
Update docker image in action to v2.20.0
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-14 15:57:16 +02:00
6fbd381238
Catch os.ModePerm permissions in os.WriteFile
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-14 15:33:23 +02:00
dc5e5a99d0
Add a unit test to detect the false negative in rule G306 for os.ModePerm permissions
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-14 15:33:23 +02:00
417a44c73b
Add filepath.EvalSymlinks to clean functions in rule G304
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-13 17:19:29 +02:00
d34f8b77d5
chore(deps): update all dependencies
2024-05-13 14:19:10 +02:00
8658b8eab6
Update Go to version 2.22.3 in CI and release
...
Signed-off-by: Cosmin Cojocar <cosmin@cojocar.ch >
2024-05-12 11:40:57 +02:00
d3b2359ae2
chore(deps): update module golang.org/x/text to v0.15.0
2024-05-06 12:35:14 +02:00
cf29d543e2
chore(deps): update all dependencies
2024-05-02 10:27:10 +02:00
09d62bd630
chore(deps): update module github.com/onsi/gomega to v1.33.0
2024-04-22 09:11:31 +02:00
3b23ec8f09
Update to go 1.22.2
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com >
2024-04-08 11:51:51 +02:00
31009c3db8
chore(deps): update all dependencies
2024-04-08 11:41:11 +02:00
daf6f670f7
chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.1
2024-04-02 09:51:47 +02:00
e27f442499
chore(deps): update all dependencies
2024-03-25 11:02:28 +01:00
551361539e
fix(helpers/goversion): get from go.mod
2024-03-20 11:43:30 +01:00
43b8b75d88
chore: fix function name
...
Signed-off-by: avoidalone <wuguangdong@outlook.com >
2024-03-11 11:56:41 +01:00
accd7a1319
chore(deps): update all dependencies
2024-03-11 11:56:06 +01:00
48aa72e1ef
Format the imports using the gci tool
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com >
2024-03-08 12:15:42 +01:00
b6df69cd07
Fixup: delete unused variable
2024-03-08 12:15:42 +01:00
ccb0a08221
Fix test: update test to comply with the spec of generated sources
...
https://pkg.go.dev/cmd/go#hdr-Generate_Go_files_by_processing_source says:
> This line must appear before the first non-comment, non-blank text in the file.
Original test cases fail with the previous commit because test source does not comply with this spec.
So, probably we should update test case to comply with the spec.
(This is a breaking change, though)
2024-03-08 12:15:42 +01:00
3a0ea5176b
Refactor: use standard function to check if a file is generated
...
As of Go1.21, we can use https://pkg.go.dev/go/ast#IsGenerated to check if a file is generated.
Probably we want to use this instead of own implementation.
2024-03-08 12:15:42 +01:00
11c32522c5
Fix lint warnings
2024-03-07 16:33:18 +01:00
be378e682f
Add support for math/rand/v2 added in Go 1.22
2024-03-07 16:33:18 +01:00
36878a9423
Skip the G601 tests for Go version 1.22
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com >
2024-03-07 12:23:46 +01:00
903c75b05e
Update go version to 1.22.1 and 1.21.8
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com >
2024-03-07 12:23:46 +01:00
f25ccd9fb5
Ignore 'implicit memory aliasing' rule for Go 1.22+
...
Signed-off-by: Janusz Marcinkiewicz <januszm@nvidia.com >
2024-03-04 10:24:32 +01:00
582e91af06
chore(deps): update all dependencies
2024-03-04 10:10:31 +01:00
198a40ca23
chore(deps): update module golang.org/x/tools to v0.18.0
2024-02-19 09:41:51 +01:00
c824a5d308
fix(hardcoded): remove duplicated Stripe API Key
2024-02-13 10:02:03 +01:00
d13d7dac9b
Update gosec version to v2.19.0 in the Github action
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com >
2024-02-12 10:31:37 +01:00
26e57d6b34
Update CI to go version 1.22
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com >
2024-02-12 10:08:56 +01:00
e60b8d88e0
chore(deps): update all dependencies
2024-02-12 09:36:56 +01:00
1285eb7300
chore(deps): update all dependencies
2024-02-05 09:59:32 +01:00
cf4ab3ea7c
chore(deps): update all dependencies
2024-01-29 09:48:13 +01:00
277553c23d
chore(deps): update all dependencies
2024-01-22 09:42:14 +01:00
57ec76b97b
chore(deps): update all dependencies
2024-01-15 09:52:33 +01:00
8fa46c1e3e
chore(deps): update dependency babel-standalone to v7.23.7
2024-01-03 09:54:15 +01:00
53aa3f7883
chore(deps): update module golang.org/x/crypto to v0.17.0 [security]
2023-12-19 09:36:09 +01:00
