Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package gosec for openSUSE:Factory checked in at 2026-02-24 15:39:22 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gosec (Old) and /work/SRC/openSUSE:Factory/.gosec.new.1977 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gosec" Tue Feb 24 15:39:22 2026 rev:30 rq:1334606 version:2.23.0 Changes: -------- --- /work/SRC/openSUSE:Factory/gosec/gosec.changes 2025-12-12 21:42:31.500242413 +0100 +++ /work/SRC/openSUSE:Factory/.gosec.new.1977/gosec.changes 2026-02-24 15:40:01.021941366 +0100 @@ -1,0 +2,47 @@ +Mon Feb 23 08:19:44 UTC 2026 - Felix Niederwanger <[email protected]> + +- Update to version 2.23.0: + * feat: Support for adding taint analysis engine (#1486) + * chore(deps): update all dependencies (#1494) + * chore(deps): update all dependencies (#1494) + * chore(deps): update all dependencies (#1488) + * Fix G602 analyzer panic that kills gosec process (#1491) + * update go version to 1.25.7 (#1492) + * Fix URL regexp and remove redundant Google regex patterns (#1485) + * feat: implement global cache usage in rules (#1480) + * chore(deps): update module google.golang.org/genai to v1.43.0 (#1484) + * refactor: optimize nosec parsing and reduce allocations (#1478) + * Fix SARIF artifactChanges null validation error (#1483) + * feat: optimize GetCallInfo with per-package sync.Pool caching (#1481) + * feat: implement entropy pre-filtering to optimize secret detection (#1479) + * feat: ensure GoVersion is cached using sync.Once (#1477) + * Fix #1240: nosec comments now work with trailing open brackets (#1475) + * Debug Build Profiling Support: Code improvement suggestions for PR#1471 (#1476) + * Update the go version to 1.25.6 and 1.24.12 (#1474) + * G115: Enhance RangeAnalyzer with constant propagation and chained arithmetic support (#1470) + * chore(deps): update all dependencies (#1473) + * feat: support path-based rule exclusions via exclude-rules (#1465) + * Optimize analyzer with parallel package processing (#1466) + * feat: add goanalysis package for nogo (#1449) + * Refactor Analyzers: Unify Range Logic & Optimize Allocations (#1464) + * Optimize G115, G602, G407 analyzers to reduce allocations and memory (#1463) + * refactor(g115): improve coverage (#1462) + * Refine G407 to improve detection and coverage of hardcoded nonces (#1460) + * chore(deps): update all dependencies (#1461) + * Refactor rules to use callListRule base structure (#1458) + * feat(slice): enhance slice bounds analysis with dynamic bounds handling (#1457) + * remove deprecated ast.Object (#1455) + * feat(sql): enhance SQL injection detection with improved string concatenation checks (#1454) + * feat(rules): enhance subprocess variable checks (#1453) + * feat(resolve): enhance TryResolve to handle KeyValueExpr, IndexExpr, and SliceExpr (#1452) + * feat: add secrets serialization G117 (#1451) + * feat(rules): add support for detecting high entropy strings in composite literals (#1447) + * whitelist crypto/rand Read from error checks (#1446) + * chore(deps): update all dependencies (#1443) + * Improve slice bound check (#1442) + * docs: add documentation for using gosec with private modules (#1441) + * chore(deps): update all dependencies (#1440) + * docs: add G116 rule description to README (#1439) + * Update GitHub action to gosec 2.22.11 (#1438) + +------------------------------------------------------------------- Old: ---- gosec-2.22.11.obscpio New: ---- gosec-2.23.0.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gosec.spec ++++++ --- /var/tmp/diff_new_pack.EcrO2y/_old 2026-02-24 15:40:01.841975302 +0100 +++ /var/tmp/diff_new_pack.EcrO2y/_new 2026-02-24 15:40:01.841975302 +0100 @@ -17,7 +17,7 @@ Name: gosec -Version: 2.22.11 +Version: 2.23.0 Release: 0 Summary: CLI tool to scan the Go AST and SSA code representations for security problems License: Apache-2.0 @@ -25,7 +25,7 @@ URL: https://github.com/securego/gosec Source: gosec-%{version}.tar.xz Source1: vendor.tar.xz -BuildRequires: golang(API) >= 1.20 +BuildRequires: golang(API) >= 1.25 %description CLI tool to inspect Go source code for security problems by scanning the ++++++ _service ++++++ --- /var/tmp/diff_new_pack.EcrO2y/_old 2026-02-24 15:40:01.885977123 +0100 +++ /var/tmp/diff_new_pack.EcrO2y/_new 2026-02-24 15:40:01.889977288 +0100 @@ -4,7 +4,7 @@ <param name="filename">gosec</param> <param name="url">https://github.com/securego/gosec.git</param> <param name="scm">git</param> - <param name="revision">v2.22.11</param> + <param name="revision">v2.23.0</param> <param name="match-tag">v*</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.EcrO2y/_old 2026-02-24 15:40:01.913978281 +0100 +++ /var/tmp/diff_new_pack.EcrO2y/_new 2026-02-24 15:40:01.917978447 +0100 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/securego/gosec.git</param> - <param name="changesrevision">424fc4cd9c82ea0fd6bee9cd49c2db2c3cc0c93f</param></service></servicedata> + <param name="changesrevision">398ad549bbf1a51dc978fd966169f660c59774de</param></service></servicedata> (No newline at EOF) ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/.gitignore new/.gitignore --- old/.gitignore 1970-01-01 01:00:00.000000000 +0100 +++ new/.gitignore 2025-02-13 15:25:36.000000000 +0100 @@ -0,0 +1,3 @@ +.osc +/gosec +/gosec-*.*.*.tar.xz ++++++ gosec-2.22.11.obscpio -> gosec-2.23.0.obscpio ++++++ ++++ 17386 lines of diff (skipped) ++++++ gosec.obsinfo ++++++ --- /var/tmp/diff_new_pack.EcrO2y/_old 2026-02-24 15:40:02.341995994 +0100 +++ /var/tmp/diff_new_pack.EcrO2y/_new 2026-02-24 15:40:02.341995994 +0100 @@ -1,5 +1,5 @@ name: gosec -version: 2.22.11 -mtime: 1765444469 -commit: 424fc4cd9c82ea0fd6bee9cd49c2db2c3cc0c93f +version: 2.23.0 +mtime: 1770734831 +commit: 398ad549bbf1a51dc978fd966169f660c59774de ++++++ vendor.tar.xz ++++++ ++++ 126750 lines of diff (skipped)
