fix-gosec-bug-from-issue

star 8.9k

Analyze, reproduce, and fix a gosec bug reported in a GitHub issue with a confirmation-gated workflow.

securego

By securego schedule Updated 2/28/2026

play_arrow Run Skill in Manus View GitHub

name: Fix Gosec Bug From Issue description: Analyze, reproduce, and fix a gosec bug reported in a GitHub issue with a confirmation-gated workflow.

Fix a gosec bug from a GitHub issue

Use this skill when you want to fix a bug described in a GitHub issue.

Required input

Provide at least:

GitHub issue URL

Optional but useful:

gosec version
Go version (go version output)
OS and environment details
extra reproduction notes

Execution workflow

Review the GitHub issue thoroughly and extract the problem statement, reproduction hints, expected behavior, and actual behavior.
Try to reproduce the issue against the current master version of gosec.
Analyze the codebase and isolate the root cause.
Produce a detailed, minimal fix plan and stop. Ask for confirmation before changing code.

After confirmation, implement end-to-end:

Keep the fix small and isolated to the issue scope.
Follow good design principles and idiomatic Go.
Add tests for both positive and negative cases.
When a code sample is appropriate, add or update a sample in testutils/ in the relevant rule sample file.
Validate the result:
- Build succeeds
- Relevant tests pass
- golangci-lint has no warnings in changed code
- gosec CLI run on a sample confirms the issue is fixed

Output requirements

First response must only contain:
- Reproduction status on master (or clear blocker)
- Root cause analysis
- Detailed fix plan
- Confirmation request
Do not implement any code changes until confirmation is provided.

Install via CLI

npx skills add https://github.com/securego/gosec --skill fix-gosec-bug-from-issue

Repository Details

star Stars 8,868

call_split Forks 701

navigation Branch main

article Path SKILL.md

Occupations

Software Developers

More from Creator

securego

securego Explore all skills →