GoSyscall

syscall package. Exec(), RawSyscall(), and socket operations are low-level command and network injection sinks.

1 source1 sink

Taint flow1 source → 1 sink

Sources — untrusted input

.Getenv()Gets environment variable

→

taint

Sinks — dangerous call

.Exec()Executes program directly

Sources

— user-controlled input enters here

.Getenv()Source

Signature

Getenv(key string) (value string, found bool)

Gets environment variable. Source of external data.

tracks:return

— dangerous functions taint must not reach

.Exec()Sink

Signature

Exec(argv0 string, argv []string, envv []string) error

Executes program directly. Command injection sink when argv is user-controlled.

tracks:0

FQN	Field
syscall	fqns[0]

Wrong FQN → 0 findings. Verify with: change fqns to garbage → must produce 0 results.

go.mod

// standard library — no go.mod entry required

rule.py

from codepathfinder.go_rule import GoSyscall