Description
Go source code can be scanned for common security mistakes before review or release. It is useful for developers who want static checks for risky patterns such as weak cryptography, unsafe file permissions, or suspicious subprocess use.
Static analysis finds indicators, not final proof of safety. Review findings manually and keep tests, dependency audits, and code review in the release process.