gitlab.gosec.G305-1

rules:
  - id: gosec.G305-1
    mode: taint
    pattern-sources:
      - pattern: zip.OpenReader(...)
    pattern-sinks:
      - pattern: filepath.Join(...)
    message: |
      File traversal when extracting zip/tar archive
    metadata:
      cwe: "CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path
        Traversal')"
      primary_identifier: gosec.G305-1
      secondary_identifiers:
        - name: Gosec Rule ID G305
          type: gosec_rule_id
          value: G305
      license: MIT
    severity: WARNING
    languages:
      - go