Skip to content

chore: suppress pre-existing gosec lint warnings#658

Closed
mitchnielsen wants to merge 1 commit intomainfrom
chore/fix-gosec-lint-warnings
Closed

chore: suppress pre-existing gosec lint warnings#658
mitchnielsen wants to merge 1 commit intomainfrom
chore/fix-gosec-lint-warnings

Conversation

@mitchnielsen
Copy link
Member

@mitchnielsen mitchnielsen commented Mar 13, 2026

Summary

  • Add //nolint:gosec directives to 4 pre-existing warnings that have been failing pre-commit hooks on every branch
  • G117 (secret pattern): AccessToken struct field is a JSON key, not a credential
  • G704 (SSRF): URLs are constructed from provider configuration or CLI args, not untrusted user input
Session context

These warnings were discovered while trying to commit an unrelated fix on another branch. The gosec linter was failing pre-commit hooks for all commits across all branches, blocking development.

@mitchnielsen
chore: suppress pre-existing gosec lint warnings
d4c6dd7 
These 4 warnings (G117 secret pattern, G704 SSRF) have been failing
pre-commit hooks on every branch. The flagged code is safe: URLs come
from provider config or CLI args, and the struct field is a JSON key.
@mitchnielsen mitchnielsen requested a review from a team as a code owner March 13, 2026 19:08
@mitchnielsen mitchnielsen added the maintenance Maintenance work - won't show in release notes label Mar 13, 2026
@mitchnielsen mitchnielsen self-assigned this Mar 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jimid27 jimid27 jimid27 approved these changes

Assignees

@mitchnielsen mitchnielsen

Labels

maintenance Maintenance work - won't show in release notes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mitchnielsen @jimid27