gosec/rules at d5a9c737234eaf1ac0ac26fc299c6a5f5212730e - gosec - Gitea: Git with a cup of tea

go/gosec

mirror of https://github.com/securego/gosec.git synced 2025-01-22 03:09:59 +02:00

History

Cosmin Cojocar d5a9c73723

Remove rule G307 which checks when an error is not handled when a file or socket connection is closed (#935 )

* Remove read only types from unsafe defer rules

* Remove rule G307 which checks when an error is not handled when a file or socket connection is closed

This doesn't seem to bring much value from security perspective, and it caused a lot of controversy since
is a very common pattern in Go.

* Mentioned in documentation that rule G307 is retired

* Clean up the test for rule G307

2023-02-24 14:04:13 +01:00

..

archive.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

bind.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

blocklist.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

decompression-bomb.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

directory-traversal.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

errors.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

fileperms_test.go

fileperms: bitwise permission comparison (#883 )

2022-10-20 08:48:40 +02:00

fileperms.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

hardcoded_credentials.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

http_serve.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

implicit_aliasing.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

integer_overflow.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

math_big_rat.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

pprof.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

rand.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

readfile.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

rsa.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

rulelist.go

Remove rule G307 which checks when an error is not handled when a file or socket connection is closed (#935 )

2023-02-24 14:04:13 +01:00

rules_suite_test.go

Update to ginkgo v2 (#753 )

2022-01-03 18:11:35 +01:00

rules_test.go

Remove rule G307 which checks when an error is not handled when a file or socket connection is closed (#935 )

2023-02-24 14:04:13 +01:00

slowloris.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

sql.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

ssh.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

ssrf.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

subproc.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

tempfiles.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

templates.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

tls_config.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

tls.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

unsafe.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00

weakcrypto.go

Extract the issue in its own package

2023-02-16 09:45:28 +01:00