Skip to content

Replace time.After with a timer created only once for a function call. #1966

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
alexeykiselev wants to merge 12 commits into
base: master
Choose a base branch
from
Open

Replace time.After with a timer created only once for a function call. #1966

alexeykiselev wants to merge 12 commits into from

Conversation

@alexeykiselev
Copy link
Collaborator

@alexeykiselev alexeykiselev commented Jan 19, 2026

No description provided.

@alexeykiselev alexeykiselev added enhancement New feature or request wip This is a WIP, should not be merged right away do not merge The PR is not ready to be merged labels Jan 19, 2026
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 19, 2026
View reviewed changes
pkg/node/peers/score_selector.go
// The peer was not found in the larges group, time to change the peer.
// Select the random peer from the group and return it along with a new score value.
i := rand.IntN(len(g.peers)) // #nosec: it's ok to use math/rand/v2 here
i := rand.IntN(len(g.peers)) //nolint: gosec // it's ok to use math/rand/v2 here.

Check failure

Code scanning / gosec

Use of weak random number generator (math/rand or math/rand/v2 instead of crypto/rand) Error

Use of weak random number generator (math/rand or math/rand/v2 instead of crypto/rand)
pkg/proto/proto.go
return PeerInfo{}, err
}
n := rand.IntN(len(ips)) // #nosec: it's ok to use math/rand/v2 here
n := rand.IntN(len(ips)) //nolint: gosec // it's ok to use math/rand/v2 here.

Check failure

Code scanning / gosec

Use of weak random number generator (math/rand or math/rand/v2 instead of crypto/rand) Error

Use of weak random number generator (math/rand or math/rand/v2 instead of crypto/rand)
@alexeykiselev
Added meta-information to custom semgrep rules to fix warnings.
f816c21 
Moved TODOs from error handling blocks whether possible without loosing context.
Added suppression comments for test data that looks like telegram bot API keys or
AWS access tokens or generic API keys.
Call to time.After replaced with single Timer in session's keepAliveLoop function.
@alexeykiselev
Excluded config template from semgrep.
894ac79 
Added more suppression comments for API keys lookalike data.
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 21, 2026
View reviewed changes
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 30, 2026
View reviewed changes
.semgrepignore
Comment on lines +23 to +24
itests/config/template.conf

Check warning

Code scanning / Semgrep OSS

Semgrep Finding: generic.ci.audit.changed-semgrepignore.changed-semgrepignore Warning

itests/config/template.conf has been added to the .semgrepignore list of ignored paths. Someone from app-sec may want to audit these changes.
.semgrepignore
Comment on lines +26 to +27
**/*.pb.go
**/*.gen.go

Check warning

Code scanning / Semgrep OSS

Semgrep Finding: generic.ci.audit.changed-semgrepignore.changed-semgrepignore Warning

**/*.pb.go has been added to the .semgrepignore list of ignored paths. Someone from app-sec may want to audit these changes.
.semgrepignore

# Ignore generated protobuf files
**/*.pb.go
**/*.gen.go

Check warning

Code scanning / Semgrep OSS

Semgrep Finding: generic.ci.audit.changed-semgrepignore.changed-semgrepignore Warning

**/*.gen.go has been added to the .semgrepignore list of ignored paths. Someone from app-sec may want to audit these changes.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

do not merge The PR is not ready to be merged enhancement New feature or request wip This is a WIP, should not be merged right away

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@alexeykiselev