gosec

mirror of https://github.com/securego/gosec.git synced 2024-11-05 11:35:51 +00:00

Author	SHA1	Message	Date
renovate[bot]	1fb6a46eed	chore(deps): update all dependencies Some checks failed CI / test (map[go:1.22.8 golangci:latest]) (push) Has been cancelled Details CI / test (map[go:1.23.2 golangci:latest]) (push) Has been cancelled Details Security Scan / build (push) Has been cancelled Details CI / coverage (push) Has been cancelled Details	2024-11-04 10:11:47 +01:00
renovate[bot]	d2c92ed7b3	chore(deps): update all dependencies Some checks failed CI / test (map[go:1.22.8 golangci:latest]) (push) Has been cancelled Details CI / test (map[go:1.23.2 golangci:latest]) (push) Has been cancelled Details Security Scan / build (push) Has been cancelled Details CI / coverage (push) Has been cancelled Details	2024-10-28 09:23:35 +01:00
renovate[bot]	1501618b90	chore(deps): update module google.golang.org/api to v0.201.0 Some checks failed CI / test (map[go:1.22.7 golangci:latest]) (push) Has been cancelled Details CI / test (map[go:1.23.1 golangci:latest]) (push) Has been cancelled Details Security Scan / build (push) Has been cancelled Details CI / coverage (push) Has been cancelled Details	2024-10-21 10:44:17 +02:00
renovate[bot]	7d33bc1991	chore(deps): update all dependencies Some checks failed CI / test (map[go:1.22.7 golangci:latest]) (push) Has been cancelled Details CI / test (map[go:1.23.1 golangci:latest]) (push) Has been cancelled Details Security Scan / build (push) Has been cancelled Details CI / coverage (push) Has been cancelled Details	2024-10-14 08:52:45 +02:00
renovate[bot]	bd8b4b4ece	chore(deps): update all dependencies Some checks failed CI / test (map[go:1.22.7 golangci:latest]) (push) Has been cancelled Details CI / test (map[go:1.23.1 golangci:latest]) (push) Has been cancelled Details Security Scan / build (push) Has been cancelled Details CI / coverage (push) Has been cancelled Details	2024-10-07 11:06:29 +02:00
renovate[bot]	50d1b4ae6b	chore(deps): update module google.golang.org/api to v0.199.0	2024-10-01 16:51:00 +02:00
renovate[bot]	d4617f51ba	chore(deps): update module google.golang.org/api to v0.198.0 (#1233 ) Some checks failed CI / test (map[go:1.22.7 golangci:latest]) (push) Has been cancelled Details CI / test (map[go:1.23.1 golangci:latest]) (push) Has been cancelled Details Security Scan / build (push) Has been cancelled Details CI / coverage (push) Has been cancelled Details Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2024-09-23 09:30:44 +02:00
renovate[bot]	3004932005	chore(deps): update all dependencies (#1223 ) Some checks failed CI / test (map[go:1.22.7 golangci:latest]) (push) Has been cancelled Details CI / test (map[go:1.23.1 golangci:latest]) (push) Has been cancelled Details Security Scan / build (push) Has been cancelled Details CI / coverage (push) Has been cancelled Details * chore(deps): update all dependencies * Update go.mod * Remove the toolchain directive Change-Id: I2ecbdec86e3eb8a771232f649f6da2273b3026ac Signed-off-by: Cosmin Cojocar <ccojocar@google.com> --------- Signed-off-by: Cosmin Cojocar <ccojocar@google.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Cosmin Cojocar <cosmin@cojocar.ch> Co-authored-by: Cosmin Cojocar <ccojocar@google.com>	2024-09-16 10:42:08 +02:00
renovate[bot]	5e53c8b9f7	chore(deps): update all dependencies (#1215 ) * chore(deps): update all dependencies * Update go.mod * Update go.mod --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Cosmin Cojocar <cosmin@cojocar.ch>	2024-09-09 15:20:27 +02:00
czechbol	eaedce9a8b	Improvement the int conversion overflow logic to handle bound checks (#1194 ) * add test cases Signed-off-by: czechbol <adamludes@gmail.com> * fix bounds check logic Signed-off-by: czechbol <adamludes@gmail.com> * tweak test cases Signed-off-by: czechbol <adamludes@gmail.com> * fix codestyle Signed-off-by: czechbol <adamludes@gmail.com> * improve bounds check logic Signed-off-by: czechbol <adamludes@gmail.com> * max recursion depth Signed-off-by: czechbol <adamludes@gmail.com> * add test case for len function Signed-off-by: czechbol <adamludes@gmail.com> * relax len function bounds checks Co-authored-by: Ben Krieger <ben.krieger@intel.com> * handle cases when convert instruction is after the if blocks Signed-off-by: czechbol <adamludes@gmail.com> * improve range check discovery, add tests Signed-off-by: czechbol <adamludes@gmail.com> * refactor for readability Signed-off-by: czechbol <adamludes@gmail.com> * add cap function test Signed-off-by: czechbol <adamludes@gmail.com> * calculate signed min without throwing overflow warnings Signed-off-by: czechbol <adamludes@gmail.com> * perform bounds checks int size calculations Signed-off-by: czechbol <adamludes@gmail.com> * basic equal operator logic Signed-off-by: czechbol <adamludes@gmail.com> * uintptr -> unsafe.Pointer test case Signed-off-by: czechbol <adamludes@gmail.com> * fix review comments Signed-off-by: czechbol <adamludes@gmail.com> * Rebase and fix go module Change-Id: I8da6495eaaf25b1739389aa98492bd7df338085b Signed-off-by: Cosmin Cojocar <ccojocar@google.com> * fix false positive for negated value Signed-off-by: czechbol <adamludes@gmail.com> * fix range conditions Signed-off-by: czechbol <adamludes@gmail.com> * Ignore the golangci/gosec G115 warning Change-Id: I0db56cb0a5f9ab6e815e2480ec0b66d7061b23d3 Signed-off-by: Cosmin Cojocar <ccojocar@google.com> --------- Signed-off-by: czechbol <adamludes@gmail.com> Signed-off-by: Cosmin Cojocar <ccojocar@google.com> Co-authored-by: Ben Krieger <ben.krieger@intel.com> Co-authored-by: Cosmin Cojocar <ccojocar@google.com>	2024-09-04 16:09:54 +02:00
renovate[bot]	655527dfb4	chore(deps): update all dependencies	2024-09-02 09:46:29 +02:00
renovate[bot]	aec45b0b7d	chore(deps): update all dependencies	2024-08-26 16:47:36 +02:00
renovate[bot]	91c708a620	chore(deps): update all dependencies (#1182 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2024-08-19 08:58:30 +02:00
Tran The Lam	56f943b802	Add support to generate auto fixes using LLM (AI) (#1177 ) This feature adds support to generate auto fixes for Go scanning findings using LLM (AI). In a first instance, it relies on Gemini API to get a suggestion for a solution. This can be later extended, to integrate also other AI providers. --------- Signed-off-by: Cosmin Cojocar <ccojocar@google.com> Co-authored-by: ccoVeille <3875889+ccoVeille@users.noreply.github.com> Co-authored-by: Cosmin Cojocar <ccojocar@google.com>	2024-08-12 12:52:41 +02:00
renovate[bot]	f33fd4bf29	chore(deps): update all dependencies	2024-08-12 10:21:07 +02:00
renovate[bot]	55a47f3774	chore(deps): update all dependencies	2024-08-05 17:38:32 +02:00
renovate[bot]	a5d9ef67e2	chore(deps): update all dependencies	2024-07-29 10:58:28 +02:00
renovate[bot]	466992feca	chore(deps): update all dependencies	2024-07-08 15:49:41 +02:00
renovate[bot]	30a8a9c8c3	chore(deps): update all dependencies	2024-06-11 21:31:12 +02:00
renovate[bot]	45fbb27d87	chore(deps): update all dependencies	2024-05-27 13:03:14 +02:00
renovate[bot]	b633c4c0ec	chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.3	2024-05-20 10:36:33 +02:00
renovate[bot]	d34f8b77d5	chore(deps): update all dependencies	2024-05-13 14:19:10 +02:00
renovate[bot]	d3b2359ae2	chore(deps): update module golang.org/x/text to v0.15.0	2024-05-06 12:35:14 +02:00
renovate[bot]	cf29d543e2	chore(deps): update all dependencies	2024-05-02 10:27:10 +02:00
renovate[bot]	09d62bd630	chore(deps): update module github.com/onsi/gomega to v1.33.0	2024-04-22 09:11:31 +02:00
renovate[bot]	31009c3db8	chore(deps): update all dependencies	2024-04-08 11:41:11 +02:00
renovate[bot]	daf6f670f7	chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.1	2024-04-02 09:51:47 +02:00
renovate[bot]	e27f442499	chore(deps): update all dependencies	2024-03-25 11:02:28 +01:00
renovate[bot]	accd7a1319	chore(deps): update all dependencies	2024-03-11 11:56:06 +01:00
renovate[bot]	582e91af06	chore(deps): update all dependencies	2024-03-04 10:10:31 +01:00
renovate[bot]	198a40ca23	chore(deps): update module golang.org/x/tools to v0.18.0	2024-02-19 09:41:51 +01:00
renovate[bot]	e60b8d88e0	chore(deps): update all dependencies	2024-02-12 09:36:56 +01:00
renovate[bot]	cf4ab3ea7c	chore(deps): update all dependencies	2024-01-29 09:48:13 +01:00
renovate[bot]	277553c23d	chore(deps): update all dependencies	2024-01-22 09:42:14 +01:00
renovate[bot]	57ec76b97b	chore(deps): update all dependencies	2024-01-15 09:52:33 +01:00
renovate[bot]	53aa3f7883	chore(deps): update module golang.org/x/crypto to v0.17.0 [security]	2023-12-19 09:36:09 +01:00
renovate[bot]	187adabe34	chore(deps): update all dependencies	2023-12-18 10:42:31 +01:00
renovate[bot]	79a6b475f0	chore(deps): update all dependencies (#1080 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-12-04 10:06:03 +01:00
renovate[bot]	c736581f85	chore(deps): update all dependencies	2023-11-13 09:45:27 +01:00
renovate[bot]	870103b709	chore(deps): update module golang.org/x/text to v0.14.0	2023-11-06 09:43:30 +01:00
renovate[bot]	b50e4936af	chore(deps): update all dependencies	2023-10-30 10:16:50 +01:00
renovate[bot]	4656817593	chore(deps): update module github.com/onsi/gomega to v1.28.1	2023-10-23 09:37:22 +02:00
renovate[bot]	7846db034c	chore(deps): update all dependencies	2023-10-16 09:29:43 +02:00
dependabot[bot]	5b7867d125	Bump golang.org/x/net from 0.16.0 to 0.17.0 (#1037 ) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.16.0 to 0.17.0. - [Commits](https://github.com/golang/net/compare/v0.16.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-10-12 09:10:25 +02:00
renovate[bot]	7f7c47fefe	chore(deps): update all dependencies (#1026 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-10-09 09:22:00 +02:00
renovate[bot]	665e87b287	chore(deps): update all dependencies	2023-10-05 12:58:26 +02:00
Cosmin Cojocar	ac482cb87c	Update ginkgo to latest version Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com>	2023-09-20 10:19:51 +02:00
renovate[bot]	b192f06cca	chore(deps): update all dependencies (#1011 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-11 10:53:32 +02:00
renovate[bot]	325eb19a54	chore(deps): update all dependencies (#1008 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-04 09:12:42 +02:00
renovate[bot]	4b458c4f59	chore(deps): update all dependencies (#997 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-08-14 09:36:16 +02:00

1 2 3 4

184 commits