go_vet100%

go vet examines Go source code and reports suspicious constructs, such as Printf calls whose arguments do not align with the format string.

No problems detected. Good job!

gofmt98%

Gofmt formats Go programs. We run gofmt -s on your code, where -s is for the "simplify" command

• mage.go
  • Line 1: warning: file is not gofmted with -s (gofmt)

gocyclo79%

Gocyclo calculates cyclomatic complexities of functions in Go source code. The cyclomatic complexity of a function is calculated according to the following rules: 1 is the base complexity of a function +1 for each 'if', 'for', 'case', '&&' or '||' Go Report Card warns on functions with cyclomatic complexity > 15.

• pkg/license/license.go
  • Line 167: warning: cyclomatic complexity 16 of function (*Reader).ReadTopLicense() is high (> 15) (gocyclo)

• pkg/spdx/parser.go
  • Line 415: warning: cyclomatic complexity 88 of function parseTagValue() is high (> 15) (gocyclo)
  • Line 118: warning: cyclomatic complexity 37 of function parseJSON() is high (> 15) (gocyclo)

• magefile.go
  • Line 312: warning: cyclomatic complexity 26 of function UpdateEmbeddedData() is high (> 15) (gocyclo)

• pkg/spdx/document.go
  • Line 534: warning: cyclomatic complexity 22 of function (*Document).ValidateFiles() is high (> 15) (gocyclo)

• pkg/spdx/imageanalyzer_distroless.go
  • Line 54: warning: cyclomatic complexity 22 of function (*distrolessHandler).ReadPackageData() is high (> 15) (gocyclo)

• pkg/spdx/object.go
  • Line 199: warning: cyclomatic complexity 20 of function (*Entity).getProvenanceSubjects() is high (> 15) (gocyclo)

• pkg/spdx/gomod.go
  • Line 261: warning: cyclomatic complexity 18 of function (*GoModule).BuildFullPackageList() is high (> 15) (gocyclo)

• cmd/bom/cmd/validate.go
  • Line 129: warning: cyclomatic complexity 18 of function validateArtifacts() is high (> 15) (gocyclo)

• pkg/spdx/package.go
  • Line 392: warning: cyclomatic complexity 26 of function (*Package).Draw() is high (> 15) (gocyclo)

• pkg/spdx/implementation.go
  • Line 805: warning: cyclomatic complexity 26 of function (*spdxDefaultImplementation).PackageFromImageTarball() is high (> 15) (gocyclo)
  • Line 74: warning: cyclomatic complexity 20 of function (*spdxDefaultImplementation).ExtractTarballTmp() is high (> 15) (gocyclo)

• pkg/osinfo/layer_scanner.go
  • Line 127: warning: cyclomatic complexity 20 of function (*LayerScanner).extractFileFromTar() is high (> 15) (gocyclo)

• pkg/osinfo/container_scanner.go
  • Line 190: warning: cyclomatic complexity 16 of function (*ContainerScanner).parseDpkgDB() is high (> 15) (gocyclo)

• pkg/serialize/serialize.go
  • Line 133: warning: cyclomatic complexity 16 of function (*JSON).buildJSONPackage() is high (> 15) (gocyclo)

ineffassign100%

IneffAssign detects ineffectual assignments in Go code.

No problems detected. Good job!

license100%

Checks whether your project has a LICENSE file.

No problems detected. Good job!

misspell100%

Misspell Finds commonly misspelled English words

No problems detected. Good job!