Go rules

Go is a very powerful language that makes you write performant code while having a lot of verification. Still, developers can make issues. Thankfully, the Codiga Static Code Analysis engine checks your Go code and flags the most important issues.

G103

Security

Error

Use of unsafe calls should be audited.

Learn more

G304

Best practice

Error

Potential file inclusion via variable

Learn more

G306

Security

Error

Expect WriteFile permissions to be 0600 or less

Learn more

G307

Security

Warning

Deferring unsafe method "Close" on type "*os.File"

Learn more

G401

Security

Error

Use of weak cryptographic primitive

Learn more

G402

Best practice

Critical

TLS InsecureSkipVerify set true.

Learn more

G501

Security

Error

Blocklisted import crypto/md5: weak cryptographic primitive

Learn more

G204

Security

Error

Subprocess launched with variable

Learn more

G302

Security

Error

Expect file permissions to be 0600 or less

Learn more

SA1019

Best practice

Error

strings.Title has been deprecated since Go 1.18. Use golang.org/x/text/cases instead.

SA4006

Error prone

Informational

Value never used

SA9008

Error prone

Warning

Value refers to the result of a failed type assertion and is a zero value, not the value that was being type-asserted.

ST1005

Best practice

Warning

Error string should not be capitalized

U1000

Design

Warning

Unused field.

S1005

Best practice

Warning

Unnecessary assignment to the blank identifier

G101

Security

Critical

Hardcoded credentials

Learn more

G102

Security

Error

Bind to all interfaces

Learn more

G104

Security

Error

Audit errors not checked

Learn more

G107

Security

Error

Url provided to HTTP request as taint input

Learn more

G201

Security

Critical

SQL query construction using format string/string concatenation

Learn more

G202

Security

Critical

SQL query construction using format string/string concatenation

Learn more

G108

Security

Warning

Profiling endpoint is automatically exposed on /debug/pprof

Learn more

G301

Security

Error

Expect directory permissions to be 0750 or less

Learn more

G505

Best practice

Error

Weak crypto primitive

Learn more

revive/exported

Design

Informational

exported function should have comment or be unexported

revive/var-declaration

Best practice

Warning

should omit type string from declaration of var

Learn more

G502

Security

Error

Blocklisted import crypto/des: weak cryptographic primitive

Learn more

G305

Security

Warning

File traversal when extracting zip/tar archive

Learn more

revive/package-comments

Documentation

Informational

Packages should have comments.

Learn more

.css-hn8jfb{width:var(--chakra-sizes-20);height:var(--chakra-sizes-20);display:inline-block;line-height:1em;-webkit-flex-shrink:0;-ms-flex-negative:0;flex-shrink:0;color:currentColor;}Go rules

G103

G304

G306

G307

G401

G402

G501

G204

G302

SA1019

SA4006

SA9008

ST1005

U1000

S1005

G101

G102

G104

G107

G201

G202

G108

G301

G505

revive/exported

revive/var-declaration

G502

G305

revive/package-comments

Go rules