Set up Reachability Analysis for Go
Learn how to set up Reachability Analysis for Go.
Reachability Analysis is supported for all Go projects. You need the compiled code and the libraries used by your Go project to enable Reachability Analysis.
You need to generate a call graph to enable Reachability Analysis for Go. To generate a call graph, add the OpenText Core SCA CLI callgraph command to your integration before running a OpenText Core SCA scan. To find out more about the command and the various available flags, run:
debricked callgraph -hWhen successful, the callgraph command generates a debricked-call-graph file. This file is automatically sent to OpenText Core SCA with the dependency files for analysis, when running the debricked scan command.
Set up call graph generation in your pipeline
For many projects, running the callgraph command with the default configuration might be enough to run the preparation steps. In this case, before running the debricked scan, to add the command to run debricked callgraph in your configuration to ensure that the scan has access to the generated call graph file.
For GitHub Action integrations, OpenText Core SCA must also add Actions setup that can be found in the GitHub Actions repository.
Example: Building the project during the callgraph command
In this example, the callgraph command is run with default configuration to build the project and prepare the necessary files automatically before generating the call graph.
# GitLab CI/CD template
image: debricked/cli:2-resolution-debian
stages:
- scan
debricked:
stage: scan
script:
- debricked callgraph
- debricked scanLast updated
Was this helpful?