nihonium/linux-auth
1
0
Fork 1
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
linux-auth/sast_results/bearer.txt

70 lines
2.1 KiB
Text
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

Security Report
=====================================
Rules:
https://docs.bearer.com/reference/rules [v0.48.4]
Language Default Rules Custom Rules Files
Go 72 0 8
HIGH: Unsanitized user input in file path [CWE-73]
https://docs.bearer.com/reference/rules/go_gosec_filesystem_filereadtaint
To ignore this finding, run: bearer ignore add 690cb9207bb6cb72edd1002fae0a0fa3_0
File: internal/config/config.go:41
41 data, err := os.ReadFile(path)
LOW: Leakage of information in logger message [CWE-532]
https://docs.bearer.com/reference/rules/go_lang_logger_leak
To ignore this finding, run: bearer ignore add 219087ffdfad090e6436320f68eae990_0
File: cmd/add_user/main.go:33
33 log.Fatalf("Ошибка инициализации БД: %v\n", err)
LOW: Leakage of information in logger message [CWE-532]
https://docs.bearer.com/reference/rules/go_lang_logger_leak
To ignore this finding, run: bearer ignore add 219087ffdfad090e6436320f68eae990_1
File: cmd/add_user/main.go:41
41 log.Fatalf("Не удалось создать пользователя %s: %v\n", *username, err)
LOW: Leakage of information in logger message [CWE-532]
https://docs.bearer.com/reference/rules/go_lang_logger_leak
To ignore this finding, run: bearer ignore add 533ab12ca2b781f58bc69e81cb601ad6_0
File: cmd/authapp/main.go:33
33 log.Fatalf("Ошибка загрузки конфигурации: %v\n", err)
LOW: Leakage of information in logger message [CWE-532]
https://docs.bearer.com/reference/rules/go_lang_logger_leak
To ignore this finding, run: bearer ignore add 533ab12ca2b781f58bc69e81cb601ad6_1
File: cmd/authapp/main.go:43
43 log.Fatalf("Ошибка инициализации БД: %v\n", err)
LOW: Leakage of information in logger message [CWE-532]
https://docs.bearer.com/reference/rules/go_lang_logger_leak
To ignore this finding, run: bearer ignore add 448b1db1ab73e2474723c4d659611644_0
File: cmd/init_users/main.go:18
18 log.Fatalf("Ошибка инициализации БД: %v\n", err)
=====================================
72 checks, 6 findings
CRITICAL: 0
HIGH: 1 (CWE-73)
MEDIUM: 0
LOW: 5 (CWE-532)
WARNING: 0
Reference in a new issue View git blame Copy permalink