A project devoted to secure programming in the Go language. Licensed under the Apache License, Version 2.0 (the "License"). You may not use this file except in compliance with the License. You can integrate third-party code analysis tools with GitHub code scanning by uploading data as SARIF files. The workflow shows an example of running the gosec as a step in a GitHub action workflow that outputs the results.sarif file. The workflow then uploads the results.sarif file to GitHub using the upload-serif action. Gosec can be configured to only run a subset of rules, to exclude certain file paths, and produce reports in different formats. By default, all rules will be run against the supplied input files.

Features

  • CI Installation
  • You can run gosec as a GitHub action
  • Integrate with code scanning
  • Gosec can be configured to only run a subset of rules
  • Exclude certain file paths
  • Produce reports in different formats

Project Samples

gosec Screenshot 1

Project Activity

See All Activity >

Categories

Static Code Analysis

License

Apache License V2.0

Follow gosec

gosec Web Site

You Might Also Like
Our Free Plans just got better! | Auth0 by Okta Icon
Our Free Plans just got better! | Auth0 by Okta

With up to 25k MAUs and unlimited Okta connections, our Free Plan lets you focus on what you do best—building great apps.

You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your secuirty. Auth0 now, thank yourself later.
Try free now
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of gosec!

Additional Project Details

Programming Language

Go

Related Categories

Go Static Code Analysis Tool

Registered

2023-03-30
Report inappropriate content