Name:gosec
Category:Static Code Analysis
Publisher:trickest
Created:6/23/2021
Container:quay.io/trickest/gosec:v2.7.0
Output Type:
License:Unknown

Parameters

tags
string
-tagsComma separated list of build tags.
nosec
boolean
-nosecIgnores #nosec comments when set.
quiet
boolean
-quietOnly show output when errors are found.
tests
boolean
-testsScan tests files.
target
folder
required
Target directory to scan.
exclude
string
-excludeComma separated list of rules IDs to exclude (rule list can be viewed on tool's Github page).
include
string
-includeComma separated list of rules IDs to include (rule list can be viewed on tool's Github page).
no-fail
boolean
-no-failDo not fail the scanning, even if issues were found.
severity
string
-severityFilter out the issues with a lower severity than the given value. Valid options are: low, medium, high (default: low).
nosec-tag
string
-nosec-tagSet an alternative string for #nosec. Some examples: #dontanalyze, #falsepositive.
confidence
string
-confidenceFilter out the issues with a lower confidence than the given value. Valid options are: low, medium, high (default: low).
config-file
file
-confOptional config file.
exclude-dir
string
-exclude-dirExclude folder from scan (can be specified multiple times).
output-format
string
-fmtSet output format. Valid options are: json, yaml, csv, junit-xml, html, sonarqube, golint, sarif or text (default: text).