build(deps): bump github.com/securego/gosec/v2 from 2.15.0 to 2.16.0 (#3843)

dependabot[bot] · ldez · web-flow · commit 8bbb6555e3d9 · 2023-05-21T16:01:13.000+02:00
Co-authored-by: Fernandez Ludovic &lt;ldez@users.noreply.github.com&gt;
diff --git a/go.mod b/go.mod
@@ -83,7 +83,7 @@ require (
 	github.com/sanposhiho/wastedassign/v2 v2.0.7
 	github.com/sashamelentyev/interfacebloat v1.1.0
 	github.com/sashamelentyev/usestdlibvars v1.23.0
-	github.com/securego/gosec/v2 v2.15.0
+	github.com/securego/gosec/v2 v2.16.0
 	github.com/shazow/go-diff v0.0.0-20160112020656-b6b7b6733b8c
 	github.com/shirou/gopsutil/v3 v3.23.4
 	github.com/sirupsen/logrus v1.9.2
@@ -187,7 +187,7 @@ require (
 	golang.org/x/mod v0.10.0 // indirect
 	golang.org/x/sync v0.2.0 // indirect
 	golang.org/x/sys v0.8.0 // indirect
-	golang.org/x/text v0.7.0 // indirect
+	golang.org/x/text v0.9.0 // indirect
 	google.golang.org/protobuf v1.28.0 // indirect
 	gopkg.in/ini.v1 v1.67.0 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/go.sum b/go.sum
diff --git a/pkg/golinters/gosec.go b/pkg/golinters/gosec.go
@@ -10,6 +10,7 @@ import (
 	"sync"
 
 	"github.com/securego/gosec/v2"
+	"github.com/securego/gosec/v2/issue"
 	"github.com/securego/gosec/v2/rules"
 	"golang.org/x/tools/go/analysis"
 	"golang.org/x/tools/go/packages"
@@ -75,7 +76,7 @@ func runGoSec(lintCtx *linter.Context, pass *analysis.Pass, settings *config.GoS
 		TypesInfo: pass.TypesInfo,
 	}
 
-	analyzer.Check(pkg)
+	analyzer.CheckRules(pkg)
 
 	secIssues, _, _ := analyzer.Report()
 	if len(secIssues) == 0 {
@@ -176,27 +177,27 @@ func gosecRuleFilters(includes, excludes []string) []rules.RuleFilter {
 }
 
 // code borrowed from https://github.com/securego/gosec/blob/69213955dacfd560562e780f723486ef1ca6d486/cmd/gosec/main.go#L250-L262
-func convertToScore(str string) (gosec.Score, error) {
+func convertToScore(str string) (issue.Score, error) {
 	str = strings.ToLower(str)
 	switch str {
 	case "", "low":
-		return gosec.Low, nil
+		return issue.Low, nil
 	case "medium":
-		return gosec.Medium, nil
+		return issue.Medium, nil
 	case "high":
-		return gosec.High, nil
+		return issue.High, nil
 	default:
-		return gosec.Low, fmt.Errorf("'%s' is invalid, use low instead. Valid options: low, medium, high", str)
+		return issue.Low, fmt.Errorf("'%s' is invalid, use low instead. Valid options: low, medium, high", str)
 	}
 }
 
 // code borrowed from https://github.com/securego/gosec/blob/69213955dacfd560562e780f723486ef1ca6d486/cmd/gosec/main.go#L264-L276
-func filterIssues(issues []*gosec.Issue, severity, confidence gosec.Score) []*gosec.Issue {
-	res := make([]*gosec.Issue, 0)
+func filterIssues(issues []*issue.Issue, severity, confidence issue.Score) []*issue.Issue {
+	res := make([]*issue.Issue, 0)
 
-	for _, issue := range issues {
-		if issue.Severity >= severity && issue.Confidence >= confidence {
-			res = append(res, issue)
+	for _, i := range issues {
+		if i.Severity >= severity && i.Confidence >= confidence {
+			res = append(res, i)
 		}
 	}
 
