semgrep: Enforce no loop vars in goroutines (#17145)

2025-10-29 17:52:32 +00:00 · 2022-09-15 10:13:51 -04:00
parent f4fa806489
commit 9cb852d099
1 changed files with 28 additions and 0 deletions
--- a/tools/semgrep/ci/loopclosure.yml
+++ b/tools/semgrep/ci/loopclosure.yml
@@ -0,0 +1,28 @@
+rules:
+  - id: loopclosure
+    patterns:
+      - pattern-inside: |
+          for $A, $B := range $C {
+            ...
+          }
+      - pattern-inside: |
+          go func() {
+            ...
+          }()
+      - pattern-not-inside: |
+          go func(..., $B, ...) {
+            ...
+          }(..., $B, ...)
+      - pattern-not-inside: |
+          go func() {
+            ...
+            for ... {
+              ...
+            }
+            ...
+          }()
+      - pattern: $B
+    message: Loop variable $B used inside goroutine
+    languages:
+      - go
+    severity: WARNING