Tool to find imports of 'unsafe', cgo and 'net/http/pprof' in go code.

Go to file

Özgür Kesim 15f17c5c92 More typos fixed		2023-06-20 12:35:23 +02:00
README.md	More typos fixed	2023-06-20 12:35:23 +02:00
go.mod	first commit	2023-06-20 12:25:33 +02:00
go.sum	first commit	2023-06-20 12:25:33 +02:00
main.go	first commit	2023-06-20 12:25:33 +02:00

README.md

Tool to find dangerous imports in go code

The tool checks for imports for a given go.mod file that

use unsafe
use cgo
import /net/http/pprof

The checks are performed transitively, following dependencies.

Parameters

Usage of ./goosebumps:
  -cc
    	check for imports of cgo
  -ci
    	check for implementations of init()
  -cp
    	check for imports of net/http/pprof
  -cu
    	check for imports of unsafe
  -exempt string
    	domains exempt from the search, seperated by space (default "golang.org")
  -mod string
    	go.mod file (default "go.mod")
  -modcache string
    	location of go mod cache (default "$GOPATH/pkg/mod")