{
  "version": "15.0.4",
  "vulnerabilities": [
    {
      "id": "79f6537b7ec83c7717f5bd1a4f12645916caafefe2e4359148d889855505aa67",
      "category": "sast",
      "message": "Key Exchange without Entity Authentication",
      "description": "Audit the use of ssh.InsecureIgnoreHostKey\n",
      "cve": "",
      "severity": "Medium",
      "scanner": {
        "id": "semgrep",
        "name": "Semgrep"
      },
      "location": {
        "file": "og.go",
        "start_line": 8
      },
      "identifiers": [
        {
          "type": "semgrep_id",
          "name": "gosec.G106-1",
          "value": "gosec.G106-1"
        },
        {
          "type": "cwe",
          "name": "CWE-322",
          "value": "322",
          "url": "https://cwe.mitre.org/data/definitions/322.html"
        },
        {
          "type": "gosec_rule_id",
          "name": "Gosec Rule ID G106",
          "value": "G106"
        }
      ],
      "tracking": {
        "type": "source",
        "items": [
          {
            "file": "og.go",
            "line_start": 8,
            "line_end": 8,
            "signatures": [
              {
                "algorithm": "scope_offset",
                "value": "og.go|foo[0]:1"
              }
            ]
          }
        ]
      }
    }
  ],
  "scan": {
    "analyzer": {
      "id": "find_sec_bugs_analyzer",
      "name": "Find Security Bugs Analyzer",
      "url": "https://gitlab.com",
      "vendor": {
        "name": "GitLab"
      },
      "version": "1.0.0"
    },
    "scanner": {
      "id": "semgrep",
      "name": "Semgrep",
      "url": "https://github.com/returntocorp/semgrep",
      "vendor": {
        "name": "GitLab"
      },
      "version": "0.82.0"
    },
    "primary_identifiers": [
      {
        "type": "semgrep_id",
        "name": "gosec.G106-1",
        "value": "gosec.G106-1"
      }
    ],
    "type": "sast",
    "start_time": "2022-03-15T20:36:58",
    "end_time": "2022-03-15T20:37:05",
    "status": "success"
  }
}