sdk/golang/Standard Library/GoFilepath
Standard Library

GoFilepath

The path/filepath standard library package. Join(), Abs(), Clean() are used as sanitizers in path traversal rules when combined with containment checks.

4 sanitizers

Sanitizers

.Join()Sanitizer
#
Signature
Join(elem ...string) string

Joins path elements. Sanitizer when followed by a prefix containment check.

.Abs()Sanitizer
#
Signature
Abs(path string) (string, error)

Returns absolute path. Sanitizer when result is checked against allowed root.

.Clean()Sanitizer
#
Signature
Clean(path string) string

Lexically cleans path. Partial sanitizer — still needs containment check.

.Base()Sanitizer
#
Signature
Base(path string) string

Returns last element of path. Strips directory traversal sequences.

Fully-Qualified Names

FQNField
path/filepathfqns[0]
filepath.*patterns

Wrong FQN → 0 findings. Verify with: change fqns to garbage → must produce 0 results.

Import

go.mod
// standard library — no go.mod entry required
rule.py
from codepathfinder.go_rule import GoFilepath

Rules Using This Class

GO-PATH-001
Next →GoFlag