From d3309fb4f5b2ca458dbc96cad5dd08f098f92e04 Mon Sep 17 00:00:00 2001
From: Cosmin Cojocar <cosmin.cojocar@gmx.ch>
Date: Thu, 19 Aug 2021 15:18:20 +0200
Subject: [PATCH] Add a more generic message for rule g204 (#688)

---
 rules/subproc.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/subproc.go b/rules/subproc.go
index 45481bc..53f8eb8 100644
--- a/rules/subproc.go
+++ b/rules/subproc.go
@@ -77,7 +77,7 @@ func (r *subprocess) Match(n ast.Node, c *gosec.Context) (*gosec.Issue, error) {
 				}
 			} else if !gosec.TryResolve(arg, c) {
 				// the arg is not a constant or a variable but instead a function call or os.Args[i]
-				return gosec.NewIssue(c, n, r.ID(), "Subprocess launched with function call as argument or cmd arguments", gosec.Medium, gosec.High), nil
+				return gosec.NewIssue(c, n, r.ID(), "Subprocess launched with a potential tainted input or cmd arguments", gosec.Medium, gosec.High), nil
 			}
 		}
 	}