Halaman utama Jelajahi Bantuan
Daftar Masuk
oscarleiva
/
energylink
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Jelajahi Sumber

Chore: Implement gosec (#16261)

See https://github.com/securego/gosec for more info.

Disabled a lot of rules. I guess we should go through them
and recheck if we really need to disable some

Fixes #16204
Oleg Gaidarenko 6 tahun lalu
induk
ad939b0583
melakukan
1d955a8762
2 mengubah file dengan 5 tambahan dan 1 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 1 1
      pkg/components/imguploader/gcsuploader.go
  2. 4 0
      scripts/backend-lint.sh

+ 1 - 1
pkg/components/imguploader/gcsuploader.go
Tampilan Berkas 

@@ -14,7 +14,7 @@ import (
 
 )
 
 
 const (
 
-	tokenUrl  string = "https://www.googleapis.com/auth/devstorage.read_write"
 
+	tokenUrl  string = "https://www.googleapis.com/auth/devstorage.read_write" // #nosec
 
 	uploadUrl string = "https://www.googleapis.com/upload/storage/v1/b/%s/o?uploadType=media&name=%s&predefinedAcl=publicRead"
 
 )

+ 4 - 0
scripts/backend-lint.sh
Tampilan Berkas 

@@ -20,6 +20,7 @@ go get -u github.com/mdempsky/unconvert
 
 go get -u github.com/opennota/check/cmd/varcheck
 
 go get -u honnef.co/go/tools/cmd/staticcheck
 
 go get -u github.com/mgechev/revive
 
+go get -u github.com/securego/gosec/cmd/gosec/...
 
 
 exit_if_fail gometalinter --enable-gc --vendor --deadline 10m --disable-all \
 
   --enable=deadcode \
 
@@ -33,3 +34,6 @@ exit_if_fail gometalinter --enable-gc --vendor --deadline 10m --disable-all \
 
 
 exit_if_fail go vet ./pkg/...
 
 exit_if_fail revive -formatter stylish -config ./conf/revive.toml
 
+
 
+# TODO recheck the rules and leave only necessary exclusions
 
+exit_if_fail gosec -quiet -exclude=G104,G107,G201,G202,G204,G301,G302,G304,G402,G501,G505,G401 ./pkg/...