Inspects source code for security problems by scanning the Go AST.
gosec in a nutshell
Gosec will analyze our source code and try to find issues or vulnerabilities. Such vulnerabilities could be:
Hardcoded credentials
Security issue
Weak cryptography
Memory aliasing
Unhandled errors
and many more
Furthermore, gosec will tell you both the Confidence and the Severity of the issue found.
Finally, note that gosec will also report non-compiling code
Inspects source code for security problems by scanning the Go AST.
https://github.com/securego/gosec https://systemweakness.com/scanning-go-source-for-vulnerabilities-5f29773ecc9d