CodeQL library for Go
codeql/go-all 0.7.12 (changelog, source)
Search

Module HeuristicNames

Provides heuristics for identifying names related to sensitive information.

INTERNAL: Do not use directly.

Import path

import semmle.go.security.SensitiveActions

Predicates

maybeAccountInfo

Gets a regular expression that identifies strings that may indicate the presence of user names or other account information.

maybePassword

Gets a regular expression that identifies strings that may indicate the presence of a password or an authorization key.

maybeSecret

Gets a regular expression that identifies strings that may indicate the presence of secret or trusted data.

maybeSensitive

Gets a regular expression that identifies strings that may indicate the presence of sensitive data, with classification describing the kind of sensitive data involved.

notSensitive

Gets a regular expression that identifies strings that may indicate the presence of data that is hashed, encrypted, or a test value, and hence non-sensitive.