# -*- coding: utf-8; mode: tcl; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- vim:fenc=utf-8:ft=tcl:et:sw=4:ts=4:sts=4 PortSystem 1.0 PortGroup golang 1.0 go.setup github.com/praetorian-inc/gokart 0.5.1 v github.tarball_from archive revision 0 description A static analysis tool for securing Go code long_description GoKart is a static analysis tool for Go that finds \ vulnerabilities using the SSA (single static assignment) \ form of Go source code. It is capable of tracing the \ source of variables and function arguments to determine \ whether input sources are safe, which reduces the number \ of false positives compared to other Go security \ scanners. For instance, a SQL query that is concatenated \ with a variable might traditionally be flagged as SQL \ injection\; however, GoKart can figure out if the \ variable is actually a constant or constant equivalent, \ in which case there is no vulnerability. categories devel security installs_libs no license Apache-2 maintainers {gmail.com:herby.gillot @herbygillot} \ openmaintainer destroot { xinstall -m 0755 ${worksrcpath}/${name} ${destroot}${prefix}/bin/ } checksums ${distname}${extract.suffix} \ rmd160 3096ddc04bdaee0495e7d343cbd8fd53b04a4826 \ sha256 81bf1e26531117de4da9b160ede80aa8f6c4d4984cc1d7dea398083b8e232eb7 \ size 121005 go.vendors gopkg.in/yaml.v3 \ lock 496545a6307b \ rmd160 16a43936d8ae6243895e23465132977d3a1193c2 \ sha256 333e78b3b9cb73b3572d62f692d32426a8554b86c93025ea032f779395869e84 \ size 90145 \ gopkg.in/yaml.v2 \ lock v2.4.0 \ rmd160 66e9feb7944b3804efa63155ed9b618717b8955c \ sha256 72812077e7f20278003de6ab0d85053d89131d64c443f39115a022114fd032b6 \ size 73231 \ gopkg.in/warnings.v0 \ lock v0.1.2 \ rmd160 e0245ded51f41ce8051ae561d1a0b844f4b8f181 \ sha256 547803dff3ec1c7adb69c411e7b3846595c3265d22a8888001661504d23bd4fb \ size 3772 \ gopkg.in/check.v1 \ lock 10cb98267c6c \ rmd160 465dcadb97762c84da6fb5f6d8352abe10445817 \ sha256 98ec7bd0dc7d4bcee7dcafe02efab29f14dc392f43b227e517beef064e9b6369 \ size 32368 \ golang.org/x/xerrors \ lock 5ec99f83aff1 \ rmd160 6e8267f353e153297f205e4be219236d6ae43880 \ sha256 9a500a49d83a09e7de6c71b215d1c14b81e315d26884530ef327c95ddf1f2d28 \ size 13667 \ golang.org/x/tools \ lock v0.1.12 \ rmd160 5a14c32086a82cb95f61b1daf53400c36b1c7b94 \ sha256 a295973c94d599ef9d017715828fb29b0d4652a4f9a5b566bcee0830d499f964 \ size 3139910 \ golang.org/x/text \ lock v0.3.7 \ rmd160 52777fe8a68660aab6e4588322a5949b0ba42e58 \ sha256 48971ba6a3123c4fd81b2bdec9fda3cef5815fad76f2407c8a888032462c542d \ size 8356115 \ golang.org/x/term \ lock 03fcf44c2211 \ rmd160 a1b9592e95373ba617ef579a2f7015cfdc871343 \ sha256 3673415a6d3d106d49b487715e151fc64245502ef547c16e8e13edb6b8f2f492 \ size 14975 \ golang.org/x/sys \ lock 8c9f86f7a55f \ rmd160 b71df2dedbfd04a9aecaee5e6a3351b621322114 \ sha256 2c2126ac6c857ea6f3a2be1daa859c7e1b1252b946445836a86545ff60f83055 \ size 1337107 \ golang.org/x/net \ lock a158d28d115b \ rmd160 9767e443ca59387855074e809c5c00d74781344f \ sha256 72b4e0f2c29972456f83125031997045053f67c898a3067d888b1bc18df34e71 \ size 1228035 \ golang.org/x/mod \ lock 86c51ed26bb4 \ rmd160 377f131a10b2a489c9c5aef2a2bd859e5617dfd6 \ sha256 469636588844d53fd9ab947d028a24df127f6f3e8e76ce90eaf8412fbd5a7eb6 \ size 119671 \ golang.org/x/crypto \ lock 089bfa567519 \ rmd160 5435f7d637f5b4390f7f27cf8e5b27d4e3b2441a \ sha256 db7030a2b172461539ec4e963a30a13f87947e480e426b3986c91ef8c1260747 \ size 1734725 \ github.com/zclconf/go-cty \ lock v1.8.4 \ rmd160 51ebecdf86d545a31ba1dd8592adcec38784d0d8 \ sha256 3d6af0a4904ea9f543499e4abd8e420bd9140bebb15a32f24f2f1b8554168783 \ size 196201 \ github.com/xanzy/ssh-agent \ lock v0.3.0 \ rmd160 18f764f696d4213a8ef61572bcef9f8324e43a70 \ sha256 5625dc6acd3be4c4b662bafffa7d959ad3641d138d7632422fb778681eccdd1a \ size 8427 \ github.com/stretchr/testify \ lock v1.7.0 \ rmd160 adae5096e8c4cfcc8e3f6d096646d1165b5ef49a \ sha256 f7dde97d0c9634483ae6ea273968f80f3105c22382a1f841886cd20d57586642 \ size 91096 \ github.com/spf13/pflag \ lock v1.0.5 \ rmd160 2ce81608a38c6f383a35bccd24d64361df5828c9 \ sha256 7f41acdcba65b1fab5b9b633947a139f9915b60f94bdab486cdbe9d90c54f61e \ size 50815 \ github.com/spf13/cobra \ lock v1.2.1 \ rmd160 8cbd41c202bb65c6fc38d041db51f7710bd77a87 \ sha256 7b6b30de08140e72fe8cebf3bba802ed4748f102cf977236e9e89af10d374b04 \ size 161348 \ github.com/sergi/go-diff \ lock v1.1.0 \ rmd160 6449feb5884c316206f256e55b81aba3e6a78a9f \ sha256 026d3d6db40ad086954214a7f3f84b66e352d47ce259bb59b7c2b9bd843b9935 \ size 43569 \ github.com/segmentio/fasthash \ lock v1.0.3 \ rmd160 02f39bddcc038535067cf37717bd73b429083e45 \ sha256 d5c2e63d7592bcdc7727dbcf4c4f8186328f230ce36feb9d5486c50e11b2bf79 \ size 6337 \ github.com/pmezard/go-difflib \ lock v1.0.0 \ rmd160 fc879bfbdef9e3ff50844def58404e2b5a613ab8 \ sha256 7cd492737641847266115f3060489a67f63581e521a8ec51efbc280c33fc991f \ size 11409 \ github.com/pkg/errors \ lock v0.9.1 \ rmd160 dc065c655f8a24c6519b58f9d1202eb266ecda40 \ sha256 208d21a7da574026f68a8c9818fa7c6ede1b514ef9e72dc733b496ddcb7792a6 \ size 13422 \ github.com/owenrumney/go-sarif \ lock v1.0.11 \ rmd160 77bd159940bc8775a44a6ea314f8033ac04c00b9 \ sha256 894331ca3ddfb10d69388bc51e374a0dbcd5e7ecac7db5d47cc8145d118a0ea5 \ size 18165 \ github.com/mitchellh/go-homedir \ lock v1.1.0 \ rmd160 44b3985e40e5bbb22d11f8622c340f9ed727ea91 \ sha256 024c8a57316c7fbc0eb23cdbfd57f72a74b51beb83d714034d67ee9aba48100c \ size 3366 \ github.com/mattn/go-isatty \ lock v0.0.12 \ rmd160 4f55aecbddbee6089cbac8456d2932bce2cb57e7 \ sha256 d4d1912998d401389e06ee1dbed06e32a8db95350416f227fbe6a59ac84f0651 \ size 4549 \ github.com/mattn/go-colorable \ lock v0.1.8 \ rmd160 e9948731b241336e8d5aa2a2e25dff26a9dccebe \ sha256 7e815dc076eeb34bf44a348eea7ae9b7a432b37462543cc5b382350d0e91c5f0 \ size 9576 \ github.com/matryer/is \ lock v1.2.0 \ rmd160 fc796e3cd470d513b3286d5ab802132eca806fb8 \ sha256 f0ed0ce99a56aaa4c7ecfa874a9ce4471833ddeff41c5d7dd16c6ae99f39f20a \ size 251064 \ github.com/lithammer/dedent \ lock v1.1.0 \ rmd160 90ae0531dd87c21e325eabd544c45805732c6497 \ sha256 d8c3e235990e7245b213970af007c3aa3b06caec2490743dd1ef6632bb822a6f \ size 3195 \ github.com/kr/text \ lock v0.2.0 \ rmd160 48558c7e8ff67d510f83c66883907e95f4783163 \ sha256 2f2e21ac8a9d523e88cbba4039441defc4a66bfaa78811c900a88fcf28729c4c \ size 8702 \ github.com/kr/pretty \ lock v0.2.1 \ rmd160 eaf5b58a46b962079cbafddbc3ef83bdbf02b31e \ sha256 253c4a190c9337800e08aba66b77ea3db0835e3ae61289d80093995a649eb7ae \ size 8769 \ github.com/kevinburke/ssh_config \ lock 4977a11b4351 \ rmd160 8cefe5d8d95a9cb58975d991bb5ad2f4fb267912 \ sha256 797c1f0492d6b78147a29a81a514d4d334f00694e3b069bf49ab5da944defca3 \ size 17409 \ github.com/jbenet/go-context \ lock d14ea06fba99 \ rmd160 37097898ecea5e875655fde48f48f126e0331246 \ sha256 ce27afd2576a5bc82565c8aa2ef108b1bb3c4dd80ebb4939455cab2495b74a2f \ size 5943 \ github.com/inconshreveable/mousetrap \ lock v1.0.0 \ rmd160 5c617a09f1432fc543672a0e0c1e13d3752030c2 \ sha256 0e6bae2849f13d12fe361ecac087728e4e97f3482f4cec44f6e7a2c53bb9cd0c \ size 2291 \ github.com/imdario/mergo \ lock v0.3.12 \ rmd160 44dbd1f58fd9ea7697f302c86f110ab796b5a041 \ sha256 dadb5b52d2de5fe7336eda4c331eefb0d4be716a5844cc7ab15c96b9b6e07b2d \ size 22341 \ github.com/google/go-cmp \ lock v0.5.5 \ rmd160 5caef57da3ce09c102ed270168afa2a5200c2c47 \ sha256 be284023d91976ef03d13cb5670e338c09a0a0da9925d7de457f44e33aebb724 \ size 102365 \ github.com/go-git/go-git-fixtures \ lock v4.2.1 \ rmd160 731d11bbb9e524d9003d14407f70e961cbcff50e \ sha256 58df7c7cd27b22138b8e997cb90ca0b97da168914edde39ebe3371934bd121d2 \ size 98156422 \ github.com/go-git/go-git \ lock v5.4.2 \ rmd160 0e513c45397c47b5908fdfcf0fc052a10f4111a2 \ sha256 1cb2c85e9151f0cd93390fa45ca39140bec13cf786b2f526fe4f2e165e6f58b7 \ size 461772 \ github.com/go-git/go-billy \ lock v5.3.1 \ rmd160 acd45224bcb6c2bf9233133fbb54e138dfc7e82f \ sha256 5623c3a2e4b8c3e13b108a21e078febe04c91b34ba529f8374cf8f6cc403ca3b \ size 29369 \ github.com/go-git/gcfg \ lock v1.5.0 \ rmd160 06a73e4c1e53089b6db690754fa04807e5c4a2e1 \ sha256 f5d75c45f9c00c769bb9c85d4d90ebed5a93d24d47d615ef4ca052093ab9f692 \ size 28538 \ github.com/gliderlabs/ssh \ lock v0.2.2 \ rmd160 1fef7211bf32e04b3daa1f2dcfb5e56afcff6cd1 \ sha256 fab13a77bd8c2ec9e8f441b81515016f2783fa348405676d9952f2ad78412ca2 \ size 21484 \ github.com/fatih/color \ lock v1.12.0 \ rmd160 71a007da8ad943b7e3b070ab9a272e576adad676 \ sha256 69e7bf877a72e225b3d9f424ca644a17f67209f5e311e910f1650cdb7f1b62a8 \ size 10712 \ github.com/emirpasic/gods \ lock v1.12.0 \ rmd160 5633e4a005c1e335bc00708aefebb0f475d30774 \ sha256 c379f9a4fae5a2defdaa314deab1e201228e866a502afa8948117e52cf644ce2 \ size 76836 \ github.com/davecgh/go-spew \ lock v1.1.1 \ rmd160 7c02883aa81f81aca14e13a27fdca9e7fbc136f7 \ sha256 e85d6afa83e64962e0d63dd4812971eccf2b9b5445eda93f46a4406f0c177d5f \ size 42171 \ github.com/armon/go-socks5 \ lock e75332964ef5 \ rmd160 22c2f6c6cfb6fc9e445df5d6e3d7d41d96984e02 \ sha256 30b0b6e33f090505354e6f86d4da39d93d9d31221d354f3166b676f4db30a387 \ size 8583 \ github.com/anmitsu/go-shlex \ lock 648efa622239 \ rmd160 2cd39571128de9ea259f8ebafc292db77bfbc33e \ sha256 ce0cf5fc33466e610f1605683f2e2bcb1e8212cece926074095a80f1326ed15f \ size 3862 \ github.com/acomagu/bufpipe \ lock v1.0.3 \ rmd160 b0b1058568c052e85473c3dc174f6959ae0df4f7 \ sha256 ba06ea623e38595ae5815c074071a334122a91c0210cfbaeedef8cf969fe7931 \ size 3027 \ github.com/ProtonMail/go-crypto \ lock 04723f9f07d7 \ rmd160 e3754e0e71b5a81cf5e542fd2c030c7d57935c08 \ sha256 ac214565ca91b8f687c05bbb0b79c035da845c2ed971a2df7171138b0de4079a \ size 308272 \ github.com/microsoft/go-winio \ lock v0.4.16 \ rmd160 c196e4209f6ccdb579c9b45b635761cfbddddf00 \ sha256 5ad8dda5448dd986353042b18a89fb3c9b7aed95baa20d89af3105f0e47a0092 \ size 85571