IntelliJ IDEA
 
Get IntelliJ IDEA
You are viewing the documentation for an earlier version of IntelliJ IDEA.

Vulnerability checker

Last modified: 11 February 2024

IntelliJ IDEA can now analyze your codebase and highlight known vulnerabilities.

The IDE highlights packages with known vulnerabilities in go.mod. You can hover over the highlighted code or press AltEnter and choose Show vulnerability info for …, and GoLand will show you a list of vulnerabilities with links to the detailed description. The data about vulnerabilities is provided by the software security company Checkmarx.

Vulnerability checker

If you have method calls from packages with known vulnerabilities, IntelliJ IDEA will also highlight them right in your editor. You can hover over highlighted code and see a popup with information about the vulnerability and a link to the detailed description.

Method calls from packages with known vulnerabilities

If there is a solution for the current vulnerability, IntelliJ IDEA will suggest an appropriate quick-fix. For example, if you need to upgrade the package version in order to fix the vulnerability. IntelliJ IDEA will suggest to upgrade the package version.