actions/gosec
1
0
Fork 0
mirror of https://github.com/securego/gosec.git synced 2024-11-05 19:45:51 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Commit graph

  • 27b2fd9cd3 Merge pull request #136 from lanzafame/experimental Grant Murphy 2017-10-05 00:02:19 +1000
  • 6de76c9261 Merge pull request #135 from cosmincojocar/update_mondern_tls_chipers Grant Murphy 2017-10-05 00:01:47 +1000
  • 849abfc86f add issue tests Adrian Lanzafame 2017-10-01 12:25:16 +1000
  • 5a1133682a remove commited binary Adrian Lanzafame 2017-10-01 10:31:51 +1000
  • 9c959ca0a9 Issue.Line is already a string Adrian Lanzafame 2017-10-01 10:31:39 +1000
  • 3caf7c3154 Add test cases Grant Murphy 2017-09-16 10:12:27 +1000
  • c36954f04a Add the CHACHA20 to good ciphers in modern tls check Cosmin Cojocar 2017-08-30 16:00:56 +0200
  • f22c701483 Merge pull request #133 from awiens/master Grant Murphy 2017-08-10 15:37:29 -0400
  • b120a3ec3f Updating Dockerfile with requested changes Amber Wiens 2017-08-09 13:00:19 -0600
  • 5f0f8f89a6 Adding Docker container and changing README Amber Wiens 2017-08-03 11:50:58 -0600
  • 6943f9e5e4 Major rework of codebase Grant Murphy 2017-07-19 15:17:00 -0600
  • f4b705a864 Use glide to manage vendored dependencies Grant Murphy 2017-05-09 21:59:12 -0700
  • 026fe4c534 Simplify analyzer and command line interface Grant Murphy 2017-05-09 21:26:53 -0700
  • 65b18da711 Hack to address circular dependency in rulelist Grant Murphy 2017-05-09 21:26:12 -0700
  • 5160048ba6 Move rule definitions into own file Grant Murphy 2017-05-09 21:24:43 -0700
  • 50bbc53a34 Isolate import tracking functionality Grant Murphy 2017-05-09 21:23:37 -0700
  • bf78d027a9 Restructure and introduce a standalone config Grant Murphy 2017-04-28 14:46:26 -0700
  • cacf21f3c0 Restructure to focus on lib rather than cli Grant Murphy 2017-04-26 08:08:46 -0700
  • 8df48f9769 Fix to reporting to use output formats Grant Murphy 2017-04-25 17:57:12 -0700
  • 9b081744c9 Process via packages instead of files Grant Murphy 2017-04-25 16:01:28 -0700
  • 18293b7a2c Merge 604a0ad449 into 1beec25f77 Cosmin Cojocar 2017-04-12 06:27:00 +0000
  • 1beec25f77 Merge pull request #128 from cosmincojocar/improve_skip Grant Murphy 2017-04-11 12:38:53 -0700
  • e94e23200a Merge pull request #129 from cosmincojocar/big_exp Grant Murphy 2017-04-11 12:36:57 -0700
  • 7dc4638db8 Update the README Cosmin Cojocar 2017-04-10 19:40:27 +0200
  • 5b71c2b05f Add a test for math/big.Int.Exp rule Cosmin Cojocar 2017-04-10 16:10:24 +0200
  • 65b8e74ecd Add a rule for big.Exp function call Cosmin Cojocar 2017-04-10 14:25:48 +0200
  • 3ae2762bb1 Add support for partial path match in the skip option Cosmin Cojocar 2017-04-10 11:18:02 +0200
  • 05738474a1 Merge pull request #125 from mockturtl/patch-1 Grant Murphy 2017-03-29 20:00:40 -0700
  • b74c83e7e7 BindsToAllNetworkInterfaces should check TLS also mockturtl 2017-03-28 13:24:22 -0400
  • 604a0ad449 Format the code by inserting some blank lines Cosmin Cojocar 2017-03-26 10:03:11 +0200
  • 6904ae69e7 Remove fixture file Cosmin Cojocar 2017-03-26 09:46:03 +0200
  • 5e495f6f73 Clean up the files slice before parsing the package Cosmin Cojocar 2017-03-26 09:33:40 +0200
  • d7fefc9cde Fix the package name parsing Cosmin Cojocar 2017-03-22 19:30:08 +0100
  • 177fa7dde0 Merge pull request #122 from GoASTScanner/testfixes Grant Murphy 2017-03-22 10:51:44 -0700
  • 5a90e097fa Add some tests for analyzer Cosmin Cojocar 2017-03-22 18:04:11 +0100
  • dd2d38a857 Fix the tests Cosmin Cojocar 2017-03-22 17:47:49 +0100
  • 56a2e28174 Add more logging messages Cosmin Cojocar 2017-03-22 16:06:47 +0100
  • 5c80b4c782 Refactor the code to be able to analyze package which consists of multiple files Cosmin Cojocar 2017-03-22 15:45:30 +0100
  • 622440f167 Correct bad test cases and intermitent failure Grant Murphy 2017-03-15 08:47:40 -0700
  • 5c302fb1b3 Merge pull request #121 from cosmincojocar/tls Grant Murphy 2017-03-15 08:38:07 -0700
  • 2262f5d474 Add a check for PreferServerCipherSuites flag of tls.Config Cosmin Cojocar 2017-03-15 15:05:44 +0100
  • 1c8e7ff686 Merge pull request #118 from GoASTScanner/issue/117 Grant Murphy 2017-01-27 09:22:21 -0800
  • 1c99e45d1c Fix recursive case on Windows platforms Grant Murphy 2017-01-27 09:16:36 -0800
  • 72caf3de41 Merge pull request #115 from GoASTScanner/bugfix Grant Murphy 2017-01-14 15:25:58 -0800
  • 3e9b66a91a Temporarily disable typechecker fatal error Grant Murphy 2017-01-14 15:21:55 -0800
  • f6aeaa8dec Merge pull request #114 from GoASTScanner/feature Grant Murphy 2017-01-14 14:46:19 -0800
  • 4099783722 Go 1.5 does not support width precision specifier Grant Murphy 2017-01-14 14:39:22 -0800
  • 4b70300e15 Exclude vendor directory from go vet Grant Murphy 2017-01-14 14:03:31 -0800
  • aaddac5e4b Add the zxcvbn library to vendor list Grant Murphy 2017-01-14 13:48:53 -0800
  • 9bc02396e8 Introduce entropy checking of string Grant Murphy 2017-01-14 13:45:34 -0800
  • cc52ef5b26 Merge pull request #112 from GoASTScanner/bugfix Grant Murphy 2017-01-13 13:34:33 -0800
  • a7ec9ccc63 Backport test case for 1.5 Grant Murphy 2017-01-13 13:31:22 -0800
  • f9868aa8c8 Fix additional test case Grant Murphy 2017-01-13 12:46:16 -0800
  • ab4867bc76 Fix test cases with invalid sample code Grant Murphy 2017-01-13 12:40:49 -0800
  • d3f0a08f0d Report a failure and exit if type checking fails Grant Murphy 2017-01-13 11:27:17 -0800
  • bc21a39c66 Merge pull request #110 from GoASTScanner/bugfix Grant Murphy 2017-01-11 10:25:58 -0800
  • d1303fee0b Improve specitivity of error message for GenDecl Grant Murphy 2017-01-11 10:12:11 -0800
  • 0545d13d8a Merge pull request #109 from GoASTScanner/bugfix Grant Murphy 2017-01-11 10:03:53 -0800
  • 1e736c8838 Fix test case (invalid sample code) Grant Murphy 2017-01-11 09:51:25 -0800
  • d1e67fc995 Ensure hardcoded credentials only examines strings Grant Murphy 2017-01-11 09:41:35 -0800
  • 4e348ef19f Merge 361e0fb4ff into d4f9b88cbf Grant Murphy 2016-12-14 06:50:25 +0000
  • d4f9b88cbf Merge pull request #104 from endophage/help_fix Grant Murphy 2016-12-13 15:00:18 -0800
  • 5f1c2df44a updating skip cli help and readme description David Lawrence 2016-12-13 14:36:51 -0800
  • c68ed64f6c Merge pull request #102 from GoASTScanner/bugfix Grant Murphy 2016-12-02 15:43:33 -0800
  • 94ac200d79 Tests broken if logger is not initialized Grant Murphy 2016-12-02 15:39:01 -0800
  • 1ba8b93565 Reduce logging messages a tad Grant Murphy 2016-12-02 15:34:12 -0800
  • 465338b05b Merge pull request #101 from GoASTScanner/bugfix Grant Murphy 2016-12-02 15:25:32 -0800
  • 191750f44c Recreate fileset each time we process a file Grant Murphy 2016-12-02 15:21:13 -0800
  • b5308ff621 Merge pull request #98 from endophage/recursive Grant Murphy 2016-12-02 14:21:02 -0800
  • 365e9f6cbc Merge pull request #99 from mcpeak/fix-nosec Grant Murphy 2016-12-02 14:06:55 -0800
  • 1a481fad70 adding support for arbitrary paths with ... David Lawrence 2016-12-02 10:40:36 -0800
  • 942f40acf5 Fix nosec to work as documented Travis McPeak 2016-12-02 15:45:59 -0600
  • 39113216a8 Merge pull request #97 from GoASTScanner/experimental Grant Murphy 2016-12-02 10:35:02 -0800
  • 6ace60b950 Address unhandled error conditions Grant Murphy 2016-12-02 10:20:23 -0800
  • 8f78248b61 Merge pull request #92 from GoASTScanner/experimental Grant Murphy 2016-12-02 09:01:30 -0800
  • e1e435cf33 Merge pull request #93 from GoASTScanner/bugfix Grant Murphy 2016-12-01 09:27:52 -0800
  • dcfd97c57d Remove ast.Print debug message from tryresolve Grant Murphy 2016-12-01 09:24:58 -0800
  • 129be1561b Update error test case Grant Murphy 2016-11-18 14:09:10 -0800
  • 5242a2c1df Extend helpers and call list Grant Murphy 2016-11-18 09:57:34 -0800
  • d29c64800e Add match call by type Grant Murphy 2016-11-17 20:18:31 -0800
  • d30c5cde36 Merge pull request #91 from GoASTScanner/experimental Grant Murphy 2016-11-15 14:00:59 -0800
  • 63e8b1af23 Update unsafe rule to match package explicitly Grant Murphy 2016-11-15 13:53:36 -0800
  • b26f5cf3c6 Merge pull request #90 from GoASTScanner/experimental Grant Murphy 2016-11-15 12:40:07 -0800
  • 39b18a1539 Remove debug print messages Grant Murphy 2016-11-15 12:30:02 -0800
  • 361e0fb4ff Also remove import Grant Murphy 2016-11-15 12:31:47 -0800
  • 134407914b Remove debug print messages Grant Murphy 2016-11-15 12:30:02 -0800
  • 5b3192b656 Merge pull request #88 from GoASTScanner/experimental Grant Murphy 2016-11-15 12:01:53 -0800
  • ca42de24ba Initialize fresh import info for each file Grant Murphy 2016-11-15 11:58:28 -0800
  • 6ef59ba3ae Merge pull request #86 from GoASTScanner/experimental Grant Murphy 2016-11-14 15:20:54 -0800
  • c7bb2dd3b7 Fix additional crash condition Grant Murphy 2016-11-14 15:15:17 -0800
  • 5012c34d48 Handle inbalanced declaration of constants Grant Murphy 2016-11-14 13:57:55 -0800
  • 93016846d2 Merge pull request #83 from GoASTScanner/experimental Grant Murphy 2016-11-13 13:08:58 -0800
  • a3fcd96f57 Update hardcoded credentials rule for GenDecls Grant Murphy 2016-11-13 12:57:59 -0800
  • bf103da519 Allow rules to register against multiple ast nodes Grant Murphy 2016-11-13 12:55:31 -0800
  • c6587df4a5 Merge pull request #82 from GoASTScanner/experimental Grant Murphy 2016-11-12 18:03:20 -0800
  • 1d732b8ae3 Ensure os.OpenFile file permissions are checked Grant Murphy 2016-11-12 17:57:20 -0800
  • 423a303712 Merge pull request #81 from GoASTScanner/experimental Grant Murphy 2016-11-08 09:22:18 -0800
  • 97dcc72a8b Incorrect rule mapping in rulelist Grant Murphy 2016-11-08 08:48:45 -0800
  • 7dd3032823 Merge pull request #76 from GoASTScanner/experimental Grant Murphy 2016-11-07 20:13:48 -0800
  • be96ef273d Fix alias logic Grant Murphy 2016-11-07 20:10:30 -0800