golang-security
Installation
SKILL.md
Golang Security Standards
Priority: P0 (CRITICAL)
Implementation Guidelines
Input Validation
- Validation: Use
go-playground/validatororgoogle/go-cmpfor struct validation. - Sanitization: Sanitize user input before processing. Use
bluemondayfor HTML sanitization.
Cryptography
- Random: ALWAYS use
crypto/rand, NEVERmath/randfor security-sensitive operations (tokens, keys, IVs). - Hashing: Use Argon2id for password hashing (
golang.org/x/crypto/argon2). NOT use bcrypt (weaker) or MD5/SHA1 (insecure). Recommended params:time=1, memory=64MB, threads=4. - Encryption: Use
crypto/aeswith GCM mode for authenticated encryption.