Go Vulnerability Checks
Tools for checking vulnerabilities in Go code.
Govulncheck
1# Install
2go install golang.org/x/vuln/cmd/govulncheck@latest
3
4# Check current module
5govulncheck ./...
6
7# JSON output
8govulncheck -json ./...
Gosec
1# Install
2go install github.com/securego/gosec/v2/cmd/gosec@latest
3
4# Scan project
5gosec ./...
6
7# Output formats
8gosec -fmt=json -out=results.json ./...
9gosec -fmt=html -out=results.html ./...
Nancy
1# Install
2go install github.com/sonatype-nexus-community/nancy@latest
3
4# Check dependencies
5go list -json -m all | nancy sleuth
CI/CD Integration
1# GitHub Actions
2name: Security Scan
3
4on: [push, pull_request]
5
6jobs:
7 security:
8 runs-on: ubuntu-latest
9 steps:
10 - uses: actions/checkout@v3
11
12 - name: Set up Go
13 uses: actions/setup-go@v4
14 with:
15 go-version: '1.21'
16
17 - name: Run Gosec
18 uses: securego/gosec@master
19 with:
20 args: './...'
21
22 - name: Run Govulncheck
23 run: |
24 go install golang.org/x/vuln/cmd/govulncheck@latest
25 govulncheck ./...
Related Snippets
- C/C++ Code Smells
Common code smells in C/C++ and how to fix them. Memory Leaks 1// ❌ Bad 2void … - C/C++ Secure Coding
Secure coding practices for C/C++ applications. Buffer Overflow Prevention 1// ❌ … - C/C++ Vulnerability Checks
Tools for checking vulnerabilities in C/C++ code. Valgrind 1# Install 2sudo apt … - Common Antipatterns
Common software antipatterns to avoid across all languages and architectures. … - Common Code Smells
Common code smells to watch for during code reviews with examples and fixes. … - Developer Pre-Submission Checklist
Comprehensive checklist for developers before submitting a pull request. Code … - Go Code Smells
Common code smells in Go and how to fix them. Ignoring Errors 1// ❌ Bad 2result, … - Go Secure Coding
Secure coding practices for Go applications. SQL Injection Prevention 1// ❌ … - Haskell Code Smells
Common code smells in Haskell and how to fix them. Partial Functions 1-- ❌ Bad: … - Haskell Secure Coding
Secure coding practices for Haskell applications. SQL Injection Prevention 1-- ❌ … - Haskell Vulnerability Checks
Tools for checking vulnerabilities in Haskell code. Cabal Outdated 1# Check … - Python Code Smells
Common code smells in Python and how to fix them. Mutable Default Arguments 1# ❌ … - Python Secure Coding
Secure coding practices for Python applications. SQL Injection Prevention 1# ❌ … - Python Vulnerability Checks
Tools for checking vulnerabilities in Python code. Safety - Dependency Scanner … - Reviewer Checklist
Comprehensive checklist for code reviewers to ensure thorough and constructive … - Rust Code Smells
Common code smells in Rust and how to fix them. Unwrap/Expect Abuse 1// ❌ Bad … - Rust Secure Coding
Secure coding practices for Rust applications. SQL Injection Prevention 1// ❌ … - Rust Vulnerability Checks
Tools for checking vulnerabilities in Rust code. Cargo Audit 1# Install 2cargo … - TypeScript Code Smells
Common code smells in TypeScript and how to fix them. Using any 1// ❌ Bad … - TypeScript Secure Coding
Secure coding practices for TypeScript applications. XSS Prevention 1// ❌ … - TypeScript Vulnerability Checks
Tools for checking vulnerabilities in TypeScript/JavaScript code. npm audit 1# …