Added
Link Here
|
0 |
- |
1 |
GoKart is a static analysis tool for Go that finds vulnerabilities using |
|
|
2 |
the SSA (single static assignment) form of Go source code. It is |
3 |
capable of tracing the source of variables and function arguments to |
4 |
determine whether input sources are safe, which reduces the number of |
5 |
false positives compared to other Go security scanners. For instance, a |
6 |
SQL query that is concatenated with a variable might traditionally be |
7 |
flagged as SQL injection; however, GoKart can figure out if the variable |
8 |
is actually a constant or constant equivalent, in which case there is no |
9 |
vulnerability. |
10 |
|
11 |
WWW: https://github.com/praetorian-inc/gokart |