Skip to content

plugin: fix gosec G115 integer overflow warnings#7799

Merged
thevilledev merged 1 commit intocoredns:masterfrom
syedazeez337:fix/gosec-g115-integer-overflow
Jan 1, 2026
Merged

plugin: fix gosec G115 integer overflow warnings#7799
thevilledev merged 1 commit intocoredns:masterfrom
syedazeez337:fix/gosec-g115-integer-overflow

Conversation

@syedazeez337
Copy link
Copy Markdown
Contributor

@syedazeez337 syedazeez337 commented Dec 31, 2025
edited
Loading

Summary

Fix gosec G115 integer overflow warnings by adding appropriate suppressions where values are provably bounded.

Changes

  • Updated 56 G115 annotations to use consistent // #nosec G115 -- reason format
  • Added 2 //nolint:gosec suppressions for conditional expressions (gosec doesn't always parse inline suppressions in conditionals)
  • Removed G115 exclusion from golangci.yml (now explicitly handled per-line)

Issue

Fixes: #7793

Verification

  • All tests pass with -race flag
  • golangci-lint reports 0 issues
  • Code builds successfully

@syedazeez337 syedazeez337 force-pushed the fix/gosec-g115-integer-overflow branch 3 times, most recently from 779c798 to 0773558 Compare December 31, 2025 18:03
@syedazeez337
plugin: fix gosec G115 integer overflow warnings
7eb844f 
Fix integer overflow conversion warnings (G115) by adding appropriate
suppressions where values are provably bounded.

Fixes: coredns#7793

Changes:
- Updated 56 G115 annotations to use consistent // #nosec G115 format
- Added 2 //nolint:gosec suppressions for conditional expressions
- Removed G115 exclusion from golangci.yml (now explicitly handled per-line)

Suppressions justify why each conversion is safe (e.g., port numbers
are bounded 1-65535, DNS TTL limits, pool lengths, etc.)

Signed-off-by: Azeez Syed <syedazeez337@gmail.com>
@syedazeez337 syedazeez337 force-pushed the fix/gosec-g115-integer-overflow branch from 0773558 to 7eb844f Compare December 31, 2025 18:05
thevilledev
thevilledev approved these changes Jan 1, 2026
View reviewed changes
Copy link
Copy Markdown
Collaborator

@thevilledev thevilledev left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

@thevilledev thevilledev merged commit 7b38eb8 into coredns:master Jan 1, 2026
11 checks passed
@BrewTestBot BrewTestBot mentioned this pull request Jan 8, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@thevilledev thevilledev thevilledev approved these changes

@chrisohaver chrisohaver Awaiting requested review from chrisohaver chrisohaver is a code owner

@greenpau greenpau Awaiting requested review from greenpau greenpau is a code owner

@johnbelamaric johnbelamaric Awaiting requested review from johnbelamaric johnbelamaric is a code owner

@miekg miekg Awaiting requested review from miekg miekg is a code owner

@bradbeam bradbeam Awaiting requested review from bradbeam bradbeam is a code owner

@rajansandeep rajansandeep Awaiting requested review from rajansandeep rajansandeep is a code owner

@yongtang yongtang Awaiting requested review from yongtang yongtang is a code owner

@zouyee zouyee Awaiting requested review from zouyee zouyee is a code owner

@inigohu inigohu Awaiting requested review from inigohu inigohu is a code owner

@rdrozhdzh rdrozhdzh Awaiting requested review from rdrozhdzh rdrozhdzh is a code owner

@Tantalor93 Tantalor93 Awaiting requested review from Tantalor93 Tantalor93 is a code owner

@stp-ip stp-ip Awaiting requested review from stp-ip stp-ip is a code owner

@nitisht nitisht Awaiting requested review from nitisht nitisht is a code owner

@Isolus Isolus Awaiting requested review from Isolus Isolus is a code owner

@ykhr53 ykhr53 Awaiting requested review from ykhr53 ykhr53 is a code owner

@darshanime darshanime Awaiting requested review from darshanime darshanime is a code owner

@dilyevsky dilyevsky Awaiting requested review from dilyevsky dilyevsky is a code owner

@jameshartig jameshartig Awaiting requested review from jameshartig jameshartig is a code owner

@pmoroney pmoroney Awaiting requested review from pmoroney pmoroney is a code owner

@SuperQ SuperQ Awaiting requested review from SuperQ SuperQ is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Address remaining gosec linter findings

2 participants

@syedazeez337 @thevilledev