Skip to content

Commit

Permalink
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Deploying to gh-pages from @ 752c391 🚀
Browse files Browse the repository at this point in the history
teemu-rytilahti-sonarsource committed Jan 30, 2025
1 parent 6f3165d commit 61affdf
Showing 2 changed files with 23 additions and 10 deletions.
31 changes: 22 additions & 9 deletions rules/S5443/go-description.html
Original file line number Diff line number Diff line change
@@ -122,8 +122,20 @@ <h2 id="_sensitive_code_example">Sensitive Code Example</h2>
<div class="sectionbody">
<div class="listingblock">
<div class="content">
<pre class="highlight"><code class="language-go" data-lang="go">// Sensitive, default permissions 0o666
file, _ = os.Create(os.TempDir()+"/tempfile.txt")</code></pre>
<pre class="highlight"><code class="language-go" data-lang="go">file, _ = os.Create("/tmp/tempfile.txt") // Sensitive

file, _ = os.Create(os.TempDir()+"/tempfile.txt") // Sensitive

file, _ := os.OpenFile("/tmp/tempfile.txt", os.O_CREATE, 0755) // Sensitive

os.WriteFile("/tmp/tempfile.txt", []byte{"sensitive"}, 0755) // Sensitive</code></pre>
</div>
</div>
<div class="listingblock">
<div class="content">
<pre class="highlight"><code class="language-go" data-lang="go">tempdir := "/tmp/tempdir/"
os.Mkdir(tempdir, 0755) // Sensitive
file, _ := os.Create("/tmp/tempdir/tempfile.txt")</code></pre>
</div>
</div>
</div>
@@ -133,13 +145,14 @@ <h2 id="_compliant_solution">Compliant Solution</h2>
<div class="sectionbody">
<div class="listingblock">
<div class="content">
<pre class="highlight"><code class="language-go" data-lang="go">// Compliant, file permissions are set to 0o600
file, _ := os.CreateTemp("", "example-pattern")

// Compliant, directory permissions are set to 0o700
dname, _ := os.MkdirTemp("", "example-directory")
fname := filepath.Join(dname, "tempfile.txt")
file, _ := os.Create(fname)</code></pre>
<pre class="highlight"><code class="language-go" data-lang="go">file, _ := os.CreateTemp("", "example-pattern") // Compliant</code></pre>
</div>
</div>
<div class="listingblock">
<div class="content">
<pre class="highlight"><code class="language-go" data-lang="go">dir, _ := os.MkdirTemp("", "example-directory") // Compliant
filename := filepath.Join(dir, "tempfile.txt")
file, _ := os.Create(filename)</code></pre>
</div>
</div>
</div>
2 changes: 1 addition & 1 deletion rules/rule-index.json

Large diffs are not rendered by default.

0 comments on commit 61affdf

Please sign in to comment.