Download Latest Version
gosec_2.24.7_linux_s390x.tar.gz (20.8 MB)
Get an email when there's a new version of gosec
Changelog
- [398ad5] feat: Support for adding taint analysis engine (#1486)
- [6eacd5] chore(deps): update all dependencies (#1494)
- [181a7c] chore(deps): update all dependencies (#1494)
- [e2fa6a] chore(deps): update all dependencies (#1488)
- [eb252b] Fix G602 analyzer panic that kills gosec process (#1491)
- [20d71a] update go version to 1.25.7 (#1492)
- [a631af] Fix URL regexp and remove redundant Google regex patterns (#1485)
- [896850] feat: implement global cache usage in rules (#1480)
- [04f729] chore(deps): update module google.golang.org/genai to v1.43.0 (#1484)
- [ade0e8] refactor: optimize nosec parsing and reduce allocations (#1478)
- [d24bbf] Fix SARIF artifactChanges null validation error (#1483)
- [15cba7] feat: optimize GetCallInfo with per-package sync.Pool caching (#1481)
- [528867] feat: implement entropy pre-filtering to optimize secret detection (#1479)
- [d9a9bc] feat: ensure GoVersion is cached using sync.Once (#1477)
- [516260] Fix [#1240]: nosec comments now work with trailing open brackets (#1475)
- [be0fd6] Debug Build Profiling Support: Code improvement suggestions for PR#1471 (#1476)
- [b57952] Update the go version to 1.25.6 and 1.24.12 (#1474)
- [bd3c73] G115: Enhance RangeAnalyzer with constant propagation and chained arithmetic support (#1470)
- [6897b3] chore(deps): update all dependencies (#1473)
- [9f2021] feat: support path-based rule exclusions via exclude-rules (#1465)
- [726d84] Optimize analyzer with parallel package processing (#1466)
- [3150b2] feat: add goanalysis package for nogo (#1449)
- [7284e1] Refactor Analyzers: Unify Range Logic & Optimize Allocations (#1464)
- [7a4cce] Optimize G115, G602, G407 analyzers to reduce allocations and memory (#1463)
- [833d79] refactor(g115): improve coverage (#1462)
- [0cc9e0] Refine G407 to improve detection and coverage of hardcoded nonces (#1460)
- [303f84] chore(deps): update all dependencies (#1461)
- [7387d2] Refactor rules to use callListRule base structure (#1458)
- [52f5db] feat(slice): enhance slice bounds analysis with dynamic bounds handling (#1457)
- [649e2c] remove deprecated ast.Object (#1455)
- [35a92b] feat(sql): enhance SQL injection detection with improved string concatenation checks (#1454)
- [bc9d2b] feat(rules): enhance subprocess variable checks (#1453)
- [8a5404] feat(resolve): enhance TryResolve to handle KeyValueExpr, IndexExpr, and SliceExpr (#1452)
- [0f6f21] feat: add secrets serialization G117 (#1451)
- [717706] feat(rules): add support for detecting high entropy strings in composite literals (#1447)
- [082deb] whitelist crypto/rand Read from error checks (#1446)
- [095d52] chore(deps): update all dependencies (#1443)
- [c07362] Improve slice bound check (#1442)
- [538a05] docs: add documentation for using gosec with private modules (#1441)
- [258043] chore(deps): update all dependencies (#1440)
- [872b33] docs: add G116 rule description to README (#1439)
- [dcf93a] Update GitHub action to gosec 2.22.11 (#1438)
