Fix nosec to work as documented

Travis McPeak · Travis McPeak · commit 942f40acf5c2 · 2016-12-02T15:45:59.000-06:00
This commit fixes the nosec feature to check for '#nosec' instead
of 'nosec'.  This should help reduce false positives associated
with comments that have 'nosec' in them somewhere.
diff --git a/core/analyzer.go b/core/analyzer.go
@@ -183,11 +183,11 @@ func (gas *Analyzer) ProcessSource(filename string, source string) error {
 	return err
 }
 
-// ignore a node (and sub-tree) if it is tagged with a "nosec" comment
+// ignore a node (and sub-tree) if it is tagged with a "#nosec" comment
 func (gas *Analyzer) ignore(n ast.Node) bool {
 	if groups, ok := gas.context.Comments[n]; ok && !gas.ignoreNosec {
 		for _, group := range groups {
-			if strings.Contains(group.Text(), "nosec") {
+			if strings.Contains(group.Text(), "#nosec") {
 				gas.Stats.NumNosec++
 				return true
 			}

Original file line number	Diff line number	Diff line change
`@@ -183,11 +183,11 @@ func (gas *Analyzer) ProcessSource(filename string, source string) error {`
`183`	`183`	`return err`
`184`	`184`	`}`
`185`	`185`
`186`		`-// ignore a node (and sub-tree) if it is tagged with a "nosec" comment`
	`186`	`+// ignore a node (and sub-tree) if it is tagged with a "#nosec" comment`
`187`	`187`	`func (gas *Analyzer) ignore(n ast.Node) bool {`
`188`	`188`	`if groups, ok := gas.context.Comments[n]; ok && !gas.ignoreNosec {`
`189`	`189`	`for _, group := range groups {`
`190`		`- if strings.Contains(group.Text(), "nosec") {`
	`190`	`+ if strings.Contains(group.Text(), "#nosec") {`
`191`	`191`	`gas.Stats.NumNosec++`
`192`	`192`	`return true`
`193`	`193`	`}`