mirror of
https://github.com/securego/gosec.git
synced 2024-12-25 03:55:54 +00:00
Make G201 ignore CallExpr with no args (#262)
This commit is contained in:
parent
443f84fd4d
commit
41809946d4
2 changed files with 13 additions and 0 deletions
|
@ -134,6 +134,11 @@ func (s *sqlStrFormat) Match(n ast.Node, c *gosec.Context) (*gosec.Issue, error)
|
|||
}
|
||||
}
|
||||
|
||||
// no formatter
|
||||
if len(node.Args) == 0 {
|
||||
return nil, nil
|
||||
}
|
||||
|
||||
var formatter string
|
||||
|
||||
// concats callexpr arg strings together if needed before regex evaluation
|
||||
|
|
|
@ -309,6 +309,14 @@ func main(){
|
|||
panic(err)
|
||||
}
|
||||
defer rows.Close()
|
||||
}`}, 0}, {[]string{`
|
||||
package main
|
||||
import (
|
||||
"fmt"
|
||||
)
|
||||
|
||||
func main(){
|
||||
fmt.Sprintln()
|
||||
}`}, 0}}
|
||||
|
||||
// SampleCodeG202 - SQL query string building via string concatenation
|
||||
|
|
Loading…
Reference in a new issue