Skip to content

fix(deps): update module github.com/securego/gosec/v2 to v2.22.10 #35

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix(deps): update module github.com/securego/gosec/v2 to v2.22.10 #35

wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Sep 19, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
github.com/securego/gosec/v2 v2.20.1-0.20240625111827-9a4a741e6b37 -> v2.22.10 age confidence

Release Notes

securego/gosec (github.com/securego/gosec/v2)

v2.22.10

Compare Source

Changelog

  • 6be2b51 Update go to version 1.25.3 and 1.24.9 in CI (#​1404)
  • fddb942 chore(deps): update all dependencies (#​1402)
  • f676031 Update go to version 1.25.2 and 2.24.8 in CI (#​1401)
  • 35f7ec2 chore(deps): update all dependencies (#​1399)
  • 01029f0 check nil slices, partially check bounds (#​1396)
  • 34db3de Remove unused target from the makefile
  • f5a3b7a Use the ginkgo command install by the dependencies
  • 761fcbc Keep the go module at 1.24 version for compatibility reasons
  • 2238079 Remove manual test deps
  • bb08aa3 fix: text must be supplied when markdown is used
  • 23597d2 fix: improve error message of CheckAnalyzers
  • 8d7e9d5 fix: log panic on SSA
  • 0d8255e chore(deps): update all dependencies
  • f9c52aa Update gosec to version v.22.9 in the github action

v2.22.9

Compare Source

Changelog

  • 15d5c61 Update cosign to v2.6.0 and go in the CI to latest version
  • 7b8713e fix(autofix): unnecessary conversion
  • 64ebfc0 feat(autofix): update gemini sdk and add anthropic claude
  • 506407e feat(G304): add os.Root remediation hint (Autofix) when Go >= 1.24
  • 3ead143 chore(deps): update all dependencies
  • e81fba3 refactor(G304): remove unused trackJoin helper; no functional change
  • ab078db style: gofmt rules/readfile.go
  • e6218c8 test(g304): add samples for var perm and var flag with cleaned path\n\n- Ensure G304 does not fire when only non-path args (flag/perm) are variables\n- Both samples use filepath.Clean on the path arg\n- Rules suite remains green (42 passed)
  • 79f835d rules(G304): analyze only path arg; ignore flag/perm vars; track Clean and safe Join; fix nil-context panic\n\n- Limit G304 checks to first arg (path) for os.Open/OpenFile/ReadFile, avoiding false positives when flag/perm are variables\n- Track filepath.Clean so cleaned identifiers are treated as safe\n- Consider safe joins: filepath.Join(const|resolvedBase, Clean(var)|cleanedIdent)\n- Record Join(...) assigned to identifiers and allow if later cleaned\n- Fix panic by passing non-nil context in trackJoinAssignStmt\n- All rules tests: 42 passed
  • 40ac530 rules(G202): detect SQL concat in ValueSpec declarations; add test sample\n\n- Handle var query string = 'SELECT ...' + user style declarations\n- Reuse existing binary expr detection on ValueSpec.Values\n- Add postgres sample mirroring issue #​1309 report\n- Rules tests: 42 passed
  • 4be6b11 chore(deps): update all dependencies
  • 5af1117 chore(deps): update all dependencies
  • 287b46c chore(deps): update all dependencies
  • cee0aea Update gosec version to v2.22.8 in the Github action

v2.22.8

Compare Source

Changelog

  • c945302 Add support for go version 1.25.0
  • ef7adab Update go version in CI to 1.24.6 and 1.23.12
  • e201bb8 chore(deps): update all dependencies
  • ba592af chore(deps): update all dependencies
  • 2ef6017 Update github action to release v2.22.7

v2.22.7

Compare Source

Changelog

  • 32975f4 Fix crash in hardcoded_nonce analyzer
  • 6ea6b35 Update go action to use release v2.22.6

v2.22.6

Compare Source

Changelog

  • bc3f214 Update go version to 1.24.5 and 1.23.11 in the CI
  • 925741b chore(deps): update module google.golang.org/api to v0.242.0
  • 59ae7e9 chore(deps): update all dependencies
  • e7abd9e chore(deps): update all dependencies
  • 35e7bc1 chore(deps): update all dependencies
  • 2d1ed95 chore(deps): update all dependencies
  • 4a8cb46 Do not allow dashes in file names
  • bcc8afb Update gosec to version 2.22.5 in Github action

v2.22.5

Compare Source

Changelog

  • d2d3ae6 Switch back go.mod to minimum 1.23.0
  • 1e7ed06 Update dependencies
  • 1bef91a Update go version 1.24.4 and 1.23.10 in CI
  • 621702f chore(deps): update all dependencies
  • 017d1d6 G201/G202: add checks for injection into sql.Conn methods
  • 67f63d4 chore(deps): update module google.golang.org/api to v0.235.0
  • b4eabb1 chore(deps): update module google.golang.org/api to v0.234.0
  • 52a80ff chore(deps): update module google.golang.org/api to v0.233.0
  • e2a9506 chore(deps): update module google.golang.org/api to v0.232.0

v2.22.4

Compare Source

Changelog

  • 6decf96 Update to go version 1.24.3 and 1.23.9
  • d522338 update: updated the build command to include version metadata
  • 270b5ce chore(deps): update all dependencies
  • 6027926 Update the AI provider API key value when provided as an argument
  • 65d2d9f chore(deps): update module google.golang.org/api to v0.230.0
  • dc1c38b chore(deps): update module google.golang.org/api to v0.229.0
  • 55dbf5a chore(deps): update all dependencies
  • 2aaa9c4 Comment the reason why the file can be nil when an issue is created
  • 700e9a9 Handle nil file when creating a new issue
  • d514c42 chore(deps): update all dependencies (#​1333)
  • 1d458c5 Update version in 'action.yml' to 2.22.3 (anticipating next version (#​1332)

v2.22.3

Compare Source

Changelog

v2.22.2

Compare Source

Changelog

v2.22.1

Compare Source

Changelog

v2.22.0

Compare Source

Changelog

  • e0cca6f Update what message for G104 (#​1282)
  • 534689b chore(deps): update module github.com/onsi/ginkgo/v2 to v2.22.2 (#​1281)
  • eb95db1 chore(deps): update all dependencies (#​1280)
  • 6c6da40 chore(deps): update all dependencies (#​1279)
  • b12f51f Simplify sortIssues implementation (#​1277)
  • 54c2185 Enable testifylint and fix up lint issues (#​1276)
  • 36c81ed Refactor AppendError to check for build.NoGoError (#​1273)
  • 9a2d74f chore(deps): update module golang.org/x/net to v0.33.0 [security] (#​1275)
  • 4c5ad91 Update README.md (#​1274)
  • e21b4d4 Rule documentation updates (#​1272)
  • 92de0ee Replace old golang.org links with new go.dev (#​1271)
  • 4fda076 Refactor AppendError to use strings.Contains (#​1270)
  • b01f49e Simplify Analyzer.ignore by reducing nesting (#​1269)
  • b62cc33 Improve capitalization in AI API flags descriptions (#​1267)
  • bc77d16 Remove unused golint dependency (#​1266)
  • ef1a35f Simplify tests by using GinkgoT().TempDir() (#​1265)
  • 09b9143 Documentation on adding new rules and analyzers (#​1262)
  • 1bd92a8 chore(deps): update all dependencies (#​1268)
  • ca55eca Update to go 1.22.10 and 1.23.4 versions (#​1264)
  • 329cad8 chore(deps): update module golang.org/x/crypto to v0.31.0 [security] (#​1263)
  • 08beb25 chore(deps): update all dependencies (#​1261)
  • d566be2 chore(deps): update module github.com/onsi/gomega to v1.36.0 (#​1259)
  • 8c602d0 fix: revive.redefines-builtin-id lint warnings (#​1257)
  • 399e835 Fix typos in comments and fields
  • 229cf63 Remove the decryption funtions/methods from G407 check
  • 699cb55 Upate go to version 1.23.3 and 1.22.9
  • 9b13cd5 Fix G115 false positive when going from parsed uint to larger int
  • 08ea2a5 chore(deps): update all dependencies
  • 4415613 chore(deps): update all dependencies
  • 3274716 chore(deps): update all dependencies
  • 1fb6a46 chore(deps): update all dependencies
  • d2c92ed chore(deps): update all dependencies
  • 4fd9872 Update go version to 1.23.2 and 1.22.8
  • 1501618 chore(deps): update module google.golang.org/api to v0.201.0
  • 7d33bc1 chore(deps): update all dependencies
  • bd8b4b4 chore(deps): update all dependencies
  • 1216c9b Fix the cosign step to authenticate with the container registry
  • 50d1b4a chore(deps): update module google.golang.org/api to v0.199.0
  • c0ba7c7 Update the gosec to v2.21.4 in the Github action
  • a3299ce Add the version into goreleaser config

v2.21.4

Compare Source

Changelog

v2.21.3

Compare Source

Changelog

v2.21.2

Compare Source

Changelog

v2.21.1

Compare Source

Changelog

Configuration

📅 Schedule: Branch creation - "before 5am" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate
Copy link
Contributor Author

renovate bot commented Sep 19, 2024
edited
Loading

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: internal/tools/go.sum
Command failed: go get -t ./...
go: errors parsing go.mod:
/tmp/renovate/repos/github/liatrio/go-template/internal/tools/go.mod:5: unknown directive: toolchain

@github-actions github-actions bot added the go label Sep 19, 2024
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 63ab0fc to 30736c5 Compare September 26, 2024 12:31
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.21.3 fix(deps): update module github.com/securego/gosec/v2 to v2.21.4 Sep 26, 2024
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 30736c5 to 197519f Compare January 9, 2025 13:11
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.21.4 fix(deps): update module github.com/securego/gosec/v2 to v2.22.0 Jan 9, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 197519f to 905ad72 Compare February 13, 2025 14:17
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.0 fix(deps): update module github.com/securego/gosec/v2 to v2.22.1 Feb 13, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 905ad72 to b283f20 Compare March 5, 2025 12:49
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.1 fix(deps): update module github.com/securego/gosec/v2 to v2.22.2 Mar 5, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from b283f20 to 81582ec Compare April 4, 2025 09:35
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.2 fix(deps): update module github.com/securego/gosec/v2 to v2.22.3 Apr 4, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 81582ec to 50acc17 Compare May 8, 2025 10:16
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.3 fix(deps): update module github.com/securego/gosec/v2 to v2.22.4 May 8, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 50acc17 to d5c284f Compare June 16, 2025 18:40
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.4 fix(deps): update module github.com/securego/gosec/v2 to v2.22.5 Jun 16, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from d5c284f to 6970234 Compare July 21, 2025 21:55
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.5 fix(deps): update module github.com/securego/gosec/v2 to v2.22.7 Jul 21, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 6970234 to 90adaa5 Compare August 14, 2025 15:50
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.7 fix(deps): update module github.com/securego/gosec/v2 to v2.22.8 Aug 14, 2025
@renovate renovate bot force-pushed the renovate/github.com-securego-gosec-v2-2.x branch from 90adaa5 to aeda266 Compare October 15, 2025 11:29
@renovate renovate bot changed the title fix(deps): update module github.com/securego/gosec/v2 to v2.22.8 fix(deps): update module github.com/securego/gosec/v2 to v2.22.10 Oct 15, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies go renovatebot

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant