v 0.5.1 Updated: 1 year, 9 months ago

A static analysis tool for securing Go code

GoKart is a static analysis tool for Go that finds vulnerabilities using the SSA (single static assignment) form of Go source code. It is capable of tracing the source of variables and function arguments to determine whether input sources are safe, which reduces the number of false positives compared to other Go security scanners. For instance, a SQL query that is concatenated with a variable might traditionally be flagged as SQL injection; however, GoKart can figure out if the variable is actually a constant or constant equivalent, in which case there is no vulnerability.


To install gokart, paste this in macOS terminal after installing MacPorts

sudo port install gokart

Add to my watchlist

Installations 0
Requested Installations 0