gosec/testutils/g103_samples.go

package testutils

import "github.com/securego/gosec/v2"

// SampleCodeG103 find instances of unsafe blocks for auditing purposes
var SampleCodeG103 = []CodeSample{
	{[]string{`
package main

import (
	"fmt"
	"unsafe"
)

type Fake struct{}

func (Fake) Good() {}

func main() {
	unsafeM := Fake{}
	unsafeM.Good()
	intArray := [...]int{1, 2}
	fmt.Printf("\nintArray: %v\n", intArray)
	intPtr := &intArray[0]
	fmt.Printf("\nintPtr=%p, *intPtr=%d.\n", intPtr, *intPtr)
	addressHolder := uintptr(unsafe.Pointer(intPtr)) 
	intPtr = (*int)(unsafe.Pointer(addressHolder))
	fmt.Printf("\nintPtr=%p, *intPtr=%d.\n\n", intPtr, *intPtr)
}
`}, 2, gosec.NewConfig()},
	{[]string{`
package main

import (
	"fmt"
	"unsafe"
)

func main() {
	chars := [...]byte{1, 2}
	charsPtr := &chars[0]
	str := unsafe.String(charsPtr, len(chars))
	fmt.Printf("%s\n", str)
	ptr := unsafe.StringData(str)
	fmt.Printf("ptr: %p\n", ptr)
}
`}, 2, gosec.NewConfig()},
	{[]string{`
package main

import (
	"fmt"
	"unsafe"
)

func main() {
	chars := [...]byte{1, 2}
	charsPtr := &chars[0]
	slice := unsafe.Slice(charsPtr, len(chars))
	fmt.Printf("%v\n", slice)
	ptr := unsafe.SliceData(slice)
	fmt.Printf("ptr: %p\n", ptr)
}
`}, 2, gosec.NewConfig()},
}
chore: Refactor Sample Code to Separate Files Split the code in `source.go` to individual sample files, one per rule. This will help contributors submit samples for new rules, or improvements to existing rules. The cgo sample was all that was left after refactoring, which resulted in its own sample file. Sample code was also formatted to have some level of consistency. Each sample go "file" attempts to keep the formatting of `gofmt`, and each code sample is in its own section in the sample file. Signed-off-by: Adam Kaplan <adam@adambkaplan.com> 2023-11-25 22:51:38 +00:00			`package testutils`

			`import "github.com/securego/gosec/v2"`

Fix lint warnings by properly formatting the files Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com> 2023-12-08 13:30:54 +00:00			`// SampleCodeG103 find instances of unsafe blocks for auditing purposes`
			`var SampleCodeG103 = []CodeSample{`
			{[]string{`
chore: Refactor Sample Code to Separate Files Split the code in `source.go` to individual sample files, one per rule. This will help contributors submit samples for new rules, or improvements to existing rules. The cgo sample was all that was left after refactoring, which resulted in its own sample file. Sample code was also formatted to have some level of consistency. Each sample go "file" attempts to keep the formatting of `gofmt`, and each code sample is in its own section in the sample file. Signed-off-by: Adam Kaplan <adam@adambkaplan.com> 2023-11-25 22:51:38 +00:00			`package main`

			`import (`
			`"fmt"`
			`"unsafe"`
			`)`

			`type Fake struct{}`

			`func (Fake) Good() {}`

			`func main() {`
			`unsafeM := Fake{}`
			`unsafeM.Good()`
			`intArray := [...]int{1, 2}`
			`fmt.Printf("\nintArray: %v\n", intArray)`
			`intPtr := &intArray[0]`
			`fmt.Printf("\nintPtr=%p, intPtr=%d.\n", intPtr, intPtr)`
			`addressHolder := uintptr(unsafe.Pointer(intPtr))`
			`intPtr = (*int)(unsafe.Pointer(addressHolder))`
			`fmt.Printf("\nintPtr=%p, intPtr=%d.\n\n", intPtr, intPtr)`
			`}`
Allow excluding analyzers globally (#1180) * This change does not exclude analyzers for inline comment * Changed the expected issues count for G103, G109 samples for test. Previously G115 has been included in the issue count * Show analyzers IDs(G115, G602) in gosec usage help * See #1175 2024-08-20 09:43:40 +01:00			`}, 2, gosec.NewConfig()},
Fix lint warnings by properly formatting the files Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com> 2023-12-08 13:30:54 +00:00			{[]string{`
chore: Refactor Sample Code to Separate Files Split the code in `source.go` to individual sample files, one per rule. This will help contributors submit samples for new rules, or improvements to existing rules. The cgo sample was all that was left after refactoring, which resulted in its own sample file. Sample code was also formatted to have some level of consistency. Each sample go "file" attempts to keep the formatting of `gofmt`, and each code sample is in its own section in the sample file. Signed-off-by: Adam Kaplan <adam@adambkaplan.com> 2023-11-25 22:51:38 +00:00			`package main`

			`import (`
			`"fmt"`
			`"unsafe"`
			`)`

			`func main() {`
			`chars := [...]byte{1, 2}`
			`charsPtr := &chars[0]`
			`str := unsafe.String(charsPtr, len(chars))`
			`fmt.Printf("%s\n", str)`
			`ptr := unsafe.StringData(str)`
			`fmt.Printf("ptr: %p\n", ptr)`
			`}`
			`}, 2, gosec.NewConfig()},
Fix lint warnings by properly formatting the files Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com> 2023-12-08 13:30:54 +00:00			{[]string{`
chore: Refactor Sample Code to Separate Files Split the code in `source.go` to individual sample files, one per rule. This will help contributors submit samples for new rules, or improvements to existing rules. The cgo sample was all that was left after refactoring, which resulted in its own sample file. Sample code was also formatted to have some level of consistency. Each sample go "file" attempts to keep the formatting of `gofmt`, and each code sample is in its own section in the sample file. Signed-off-by: Adam Kaplan <adam@adambkaplan.com> 2023-11-25 22:51:38 +00:00			`package main`

			`import (`
			`"fmt"`
			`"unsafe"`
			`)`

			`func main() {`
			`chars := [...]byte{1, 2}`
			`charsPtr := &chars[0]`
			`slice := unsafe.Slice(charsPtr, len(chars))`
			`fmt.Printf("%v\n", slice)`
			`ptr := unsafe.SliceData(slice)`
			`fmt.Printf("ptr: %p\n", ptr)`
			`}`
			`}, 2, gosec.NewConfig()},
Fix lint warnings by properly formatting the files Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com> 2023-12-08 13:30:54 +00:00			`}`