1
0
mirror of https://github.com/securego/gosec.git synced 2024-12-28 21:08:22 +02:00
gosec/rules
Chris Bandy 27a5ffb5c8
Quiet warnings about integer truncation (#586)
Both MinVersion and MaxVersion of crypto/tls.Config are uint16, so the
int16 fields of rules.insecureConfigTLS are too small. GetInt()
interprets integer literals as fitting within 64-bits, so simplify
things by using int64.
2021-03-03 10:05:33 +01:00
..
archive.go feat: adds support for path.Join and for tar archives in G305 2020-08-03 09:17:45 +02:00
bad_defer.go Update bad_defer.go 2020-05-06 16:23:04 +02:00
bind.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
blocklist.go Rename file for consistency 2020-06-29 13:52:47 +02:00
decompression-bomb.go Add io.CopyBuffer function to rule G110 2020-07-29 14:25:45 +02:00
errors.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
fileperms.go fix: WriteParams rule to work also with golang 1.16 (#577) 2021-02-22 09:22:04 +01:00
hardcoded_credentials.go Enhance the hardcoded credentials rule to check the equality and non-equality of strings 2020-04-20 03:08:39 -07:00
implicit_aliasing.go Improve the SQL concatenation and string formatting rules to be applied only in the database/sql context 2020-05-27 10:16:56 +02:00
integer_overflow.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
pprof.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
rand.go Extend the insecure random rule with more insecure random functions 2020-06-15 15:12:02 +02:00
readfile.go Add also filepath.Rel as a sanitization method for input argument in the G304 rule 2020-08-19 09:40:07 +02:00
rsa.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
rulelist.go Change naming rule from blacklist to blocklist 2020-06-29 13:45:44 +02:00
rules_suite_test.go Major rework of codebase 2017-07-19 15:17:00 -06:00
rules_test.go Assert that sample code compiles 2021-01-04 09:28:00 +01:00
sql.go Improve the SQL strings concat rules to handle multiple string concatenation 2020-05-27 10:16:56 +02:00
ssh.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
ssrf.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
subproc.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
tempfiles.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
templates.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
tls_config.go Update the tls configuration generate to handle also the NSS alternative names 2020-09-03 10:54:08 +02:00
tls.go Quiet warnings about integer truncation (#586) 2021-03-03 10:05:33 +01:00
unsafe.go Handle properly the gosec module version v2 2020-04-06 09:06:23 -07:00
weakcrypto.go Change naming rule from blacklist to blocklist 2020-06-29 13:45:44 +02:00