Products
In-IDE
IDE extension that lets you fix coding issues before they exist!
Discover SonarQube for IDE
SaaS
Setup is effortless and analysis is automatic for most languages
Discover SonarQube Cloud
Self-Hosted
Fast, accurate analysis; enterprise scalability
Discover SonarQube Server

Secrets
ABAP
Ansible
Apex
AzureResourceManager
C
C#
C++
CloudFormation
COBOL
CSS
Dart
Docker
Flex
GitHub Actions
Go
HTML
Java
JavaScript
JSON
JCL
Kotlin
Kubernetes
Objective C
PHP
PL/I
PL/SQL
Python
RPG
Ruby
Rust
Scala
Shell
Swift
Terraform
Text
TypeScript
T-SQL
VB.NET
VB6
XML
YAML

Go static code analysis

Unique rules to find Bugs, Vulnerabilities, Security Hotspots, and Code Smells in your GO code

Tags

Impact

Clean code attribute

Context should not be stored in struct fields
Code Smell
Context parameters should be reused instead of creating new background contexts
Code Smell
Package imports should be consistent and avoid redundancy
Code Smell
Variables should be used
Code Smell
Consecutive function parameters with the same type should be grouped
Code Smell
Named types should be used instead of anonymous structs for complex nested structures
Code Smell
Use "bytes.Equal" instead of "bytes.Compare" for equality checks
Code Smell
Single-method interface names should follow Go naming conventions
Code Smell
Variables in if short statements should be used beyond just the condition
Code Smell
Context cancellation functions should be deferred
Code Smell
Blank imports should be documented to explain their purpose
Code Smell
Function and method names should not use "Get" prefix
Code Smell
Semicolons should not be used unnecessarily
Code Smell
Import statements should be factored into a single block
Code Smell
Functions should follow Go's explicit error handling patterns
Code Smell
Multi-line comments should not be empty
Code Smell
Functions should not have identical implementations
Code Smell
Cognitive Complexity of functions should not be too high
Code Smell
Go parser failure
Code Smell
Boolean checks should not be inverted
Code Smell
Two branches in a conditional structure should not have exactly the same implementation
Code Smell
"switch" statements should not be nested
Code Smell
"switch" statements should not have too many "case" clauses
Code Smell
Track lack of copyright and license headers
Code Smell
Functions and methods should not have too many lines
Code Smell
Control flow statements "if", "for" and "switch" should not be nested too deeply
Code Smell
Octal values should not be used
Code Smell
"switch" statements should have "default" clauses
Code Smell
"if ... else if" constructs should end with "else" clauses
Code Smell
Statements should be on separate lines
Code Smell
String literals should not be duplicated
Code Smell
Functions should not be empty
Code Smell
Unused function parameters should be removed
Code Smell
Local variable and function parameter names should comply with a naming convention
Code Smell
"switch case" clauses should not have too many lines
Code Smell
Track uses of "TODO" tags
Code Smell
Track uses of "FIXME" tags
Code Smell
Boolean literals should not be redundant
Code Smell
Empty statements should be removed
Code Smell
Redundant pairs of parentheses should be removed
Code Smell
Nested blocks of code should not be left empty
Code Smell
Functions should not have too many parameters
Code Smell
Expressions should not be too complex
Code Smell
Files should not have too many lines of code
Code Smell
Lines should not be too long
Code Smell
Function names should comply with a naming convention
Code Smell

Track lack of copyright and license headers

responsibility - lawful

maintainability

Code Smell

convention

Why is this an issue?

Each source file should start with a header stating file ownership and the license which must be used to distribute the application.

This rule must be fed with the header text that is expected at the beginning of every file.

Compliant solution

/*
 * SonarQube, open source software quality management tool.
 * Copyright (C) 2008-2013 SonarSource
 * mailto:contact AT sonarsource DOT com
 *
 * SonarQube is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 3 of the License, or (at your option) any later version.
 *
 * SonarQube is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this program; if not, write to the Free Software Foundation,
 * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 */

Available In:

Catch issues on the fly,
in your IDE

Detect issues in your GitHub, Azure DevOps Services, Bitbucket Cloud, GitLab repositories

Analyze code in your
on-premise CI

Available Since
9.1

Analyze code in your
on-premise CI

Developer Edition
Available Since
9.1

In-IDE

SaaS

Self-Hosted