gitlab.gosec.G106-1

unknown

Download Count*

MIT

License

Audit the use of ssh.InsecureIgnoreHostKey

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: gosec.G106-1
    patterns:
      - pattern: ssh.InsecureIgnoreHostKey(...)
    message: |
      Audit the use of ssh.InsecureIgnoreHostKey
    metadata:
      cwe: "CWE-322: Key Exchange without Entity Authentication"
      primary_identifier: gosec.G106-1
      secondary_identifiers:
        - name: Gosec Rule ID G106
          type: gosec_rule_id
          value: G106
      license: MIT
    severity: WARNING
    languages:
      - go

Short Link: https://sg.run/5DQj