gitlab.gosec.G306-1

unknown

Download Count*

MIT

License

Expect WriteFile permissions to be 600 or less

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: gosec.G306-1
    patterns:
      - pattern-either:
          - pattern: |
              ioutil.WriteFile(..., ..., $ARG)
      - metavariable-comparison:
          metavariable: $ARG
          comparison: $ARG > 0o600
          base: 8
    message: |
      Expect WriteFile permissions to be 600 or less
    metadata:
      cwe: "CWE-276: Incorrect Default Permissions"
      primary_identifier: gosec.G306-1
      secondary_identifiers:
        - name: Gosec Rule ID G306
          type: gosec_rule_id
          value: G306
      license: MIT
    severity: WARNING
    languages:
      - go

Short Link: https://sg.run/KXln