chore: add nolint annotations for gosec linter

Add //nolint:gosec annotations for intentional code patterns that are safe in context (path traversal in release tool, uintptr conversion for terminals, weak rand in tests, TLS skip verify for user-configured insecure mode). Assisted-by: Kimi-K2.5 via Crush <crush@charm.land>
2026-06-11 09:51:50 +00:00 · 2026-04-13 10:32:09 -03:00
parent b36fcfd8bb
commit 219bf3e5a5
5 changed files with 6 additions and 6 deletions
--- a/cmd/release/main.go
+++ b/cmd/release/main.go
@@ -117,7 +117,7 @@ func changelog(version *semver.Version) error {
 	changelog = changelogReleaseRegex.ReplaceAllString(changelog, fmt.Sprintf("## v%s - %s", version, date))

 	// Write the changelog to the source file
-	if err := os.WriteFile(changelogSource, []byte(changelog), 0o644); err != nil {
+	if err := os.WriteFile(changelogSource, []byte(changelog), 0o644); err != nil { //nolint:gosec
 		return err
 	}

@@ -129,7 +129,7 @@ func changelog(version *semver.Version) error {
 	changelogWithFrontmatter := fmt.Sprintf("---\n%s\n---\n\n%s", frontmatter, changelogWithVPre)

 	// Write the changelog to the target file
-	return os.WriteFile(changelogTarget, []byte(changelogWithFrontmatter), 0o644)
+	return os.WriteFile(changelogTarget, []byte(changelogWithFrontmatter), 0o644) //nolint:gosec
 }

 func setVersionFile(fileName string, version *semver.Version) error {