I accidentally discovered malicious programs in the Go ecosystem that impersonate legitimate tools such as the linter ldez/usetesting, the HCL editor go.mercari.io/hcledit, the official MailerSend Go SDK mailersend/mailersend-go, and many more. These programs are not very popular but are still used by some developers. By the time I wrote this article, I had reported the malicious repositories to GitHub support, and most of them have been deleted.
[Read More]How to contribute to Go language
In this blog post, I will show that contributing to Go language repositories is as simple as contributing to any other open-source repo. This will be a step-by-step guide on how to contribute to Go language repositories. For the example, I will use the main Go repo go.googlesource.com/go.
[Read More]