- The query "Slice memory allocation with excessive size value" (
go/uncontrolled-allocation-size) has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally submitted as an experimental query by @Malayke.
- The query
go/hardcoded-credentialsno longer discards string literals based on "weak password" heuristics. - The query
go/sql-injectionnow recognizes more sinks in the packagegithub.com/Masterminds/squirrel.