mirror of
https://github.com/securego/gosec.git
synced 2024-12-24 11:35:52 +00:00
Merge pull request #24 from csstaub/cs/smarter-creds-check
Smarter hard-coded credentials check
This commit is contained in:
commit
c5d271566c
1 changed files with 7 additions and 3 deletions
|
@ -15,9 +15,10 @@
|
|||
package rules
|
||||
|
||||
import (
|
||||
gas "github.com/HewlettPackard/gas/core"
|
||||
"go/ast"
|
||||
"regexp"
|
||||
|
||||
gas "github.com/HewlettPackard/gas/core"
|
||||
)
|
||||
|
||||
type CredsAssign struct {
|
||||
|
@ -30,8 +31,11 @@ func (r *CredsAssign) Match(n ast.Node, c *gas.Context) (gi *gas.Issue, err erro
|
|||
for _, i := range node.Lhs {
|
||||
if ident, ok := i.(*ast.Ident); ok {
|
||||
if r.pattern.MatchString(ident.Name) {
|
||||
gi = gas.NewIssue(c, n, r.What, r.Severity, r.Confidence)
|
||||
break
|
||||
for _, e := range node.Rhs {
|
||||
if _, ok := e.(*ast.BasicLit); ok {
|
||||
return gas.NewIssue(c, n, r.What, r.Severity, r.Confidence), nil
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue