gosec: add G602 analyzer #4906

ldez · 2024-08-14T11:04:14Z

G602 is not a rule but an analyzer inside gosec, this means that this "rule" cannot be excluded.

$ gosec -exclude=G602 ./...
[gosec] 2024/08/14 12:55:19 Including rules: default
[gosec] 2024/08/14 12:55:19 Excluding rules: G602
[gosec] 2024/08/14 12:55:19 Import directory: sandbox
[gosec] 2024/08/14 12:55:19 Checking package: sandbox
[gosec] 2024/08/14 12:55:19 Checking file: sandbox/main.go
Results:


[sandbox/main.go:7] - G602 (CWE-118): slice bounds out of range (Confidence: HIGH, Severity: LOW)
    6:  s := make([]byte, 0)
  > 7:  fmt.Println(s[:3])
    8: }

Autofix: 

Summary:
  Gosec  : dev
  Files  : 1
  Lines  : 8
  Nosec  : 0
  Issues : 1

So I removed the element of the JSONSchema and the configuration.

Related to securego/gosec#1175

gosec: add G602 analyzer

d2bae7c

ldez added bug Something isn't working linter: update Update the linter implementation inside golangci-lint labels Aug 14, 2024

ldez added this to the next milestone Aug 14, 2024

ldez requested review from alexandear, bombsimon and Antonboom August 14, 2024 20:27

bombsimon approved these changes Aug 14, 2024

View reviewed changes

ldez merged commit ca0b09e into golangci:master Aug 14, 2024
16 checks passed

ldez deleted the fix/gosec-g602 branch August 14, 2024 21:54

ldez mentioned this pull request Aug 20, 2024

build(deps): bump github.com/securego/gosec/v2 from 5f0084eb01a9 to 81cda2f91fbe #4927

Merged

ldez modified the milestones: next, v1.60 Aug 20, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

gosec: add G602 analyzer #4906

gosec: add G602 analyzer #4906

ldez commented Aug 14, 2024 •

edited

Loading

gosec: add G602 analyzer #4906

gosec: add G602 analyzer #4906

Conversation

ldez commented Aug 14, 2024 • edited Loading

ldez commented Aug 14, 2024 •

edited

Loading