eeafj/golangci-lint
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity

feat: use gosec severities (#4470)

Browse Source
This commit is contained in:
Ludovic Fernandez 2024-03-09 14:05:16 +01:00 committed by GitHub
parent d06296eba4
commit 1cabafc3b6
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 15 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
pkg/golinters/gosec.go
View File

@ -97,7 +97,7 @@ func runGoSec(lintCtx *linter.Context, pass *analysis.Pass, settings *config.GoS
issues := make([]goanalysis.Issue, 0, len(secIssues)) issues := make([]goanalysis.Issue, 0, len(secIssues))
for _, i := range secIssues { for _, i := range secIssues {
text := fmt.Sprintf("%s: %s", i.RuleID, i.What) // TODO: use severity and confidence text := fmt.Sprintf("%s: %s", i.RuleID, i.What)
var r *result.Range var r *result.Range
@ -118,6 +118,7 @@ func runGoSec(lintCtx *linter.Context, pass *analysis.Pass, settings *config.GoS
} }
issues = append(issues, goanalysis.NewIssue(&result.Issue{ issues = append(issues, goanalysis.NewIssue(&result.Issue{
Severity: convertScoreToString(i.Severity),
Pos: token.Position{ Pos: token.Position{
Filename: i.File, Filename: i.File,
Line: line, Line: line,
@ -149,6 +150,19 @@ func toGosecConfig(settings *config.GoSecSettings) gosec.Config {
return conf return conf
} }
func convertScoreToString(score issue.Score) string {
switch score {
case issue.Low:
return "low"
case issue.Medium:
return "medium"
case issue.High:
return "high"
default:
return ""
}
}
// based on https://github.com/securego/gosec/blob/47bfd4eb6fc7395940933388550b547538b4c946/config.go#L52-L62 // based on https://github.com/securego/gosec/blob/47bfd4eb6fc7395940933388550b547538b4c946/config.go#L52-L62
func convertGosecGlobals(globalOptionFromConfig any, conf gosec.Config) { func convertGosecGlobals(globalOptionFromConfig any, conf gosec.Config) {
globalOptionMap, ok := globalOptionFromConfig.(map[string]any) globalOptionMap, ok := globalOptionFromConfig.(map[string]any)