justan0th3rstud3nt
/
garble
mirror of https://github.com/burrowers/garble
1
0
Fork 0
Code Issues 1 Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
ci-test
literalRecheck
v0.14.1
v0.14.0
v0.13.0
v0.12.1
v0.12.0
v0.11.0
v0.10.1
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.0
v0.7.2
v0.7.1
v0.7.0
v0.6.0
v0.5.1
v0.5.0
v0.4.0
v0.3.0
v0.2.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8e7765ee6f'
${ noResults }
garble/README.md

150 lines
6.3 KiB
Markdown
Raw Normal View History Unescape Escape

add README
5 years ago
# garble
start using "go install pkg@version" in docs Now that Go 1.17.x is out, we no longer need to worry about users on Go 1.15.x. Since Go 1.16, the best way to install programs has been "go install": https://golang.org/doc/go1.16#go-command This method does not interfere with the current module, and allows selecting a version such as "latest" or "master".
4 years ago
go install mvdan.cc/garble@latest
README: add build instructions The import path works now too.
5 years ago
drop support for Go 1.16.x We can now use pruned module graphs in go.mod files, and we no longer need to worry about runtime/internal/sys. Note that I had to update testdata/mod slightly, as the new pruned module graphs algorithm downloads an extra go.mod file. This change also paves the way towards future Go 1.18 support. Thanks to lu4p for cleaning up two TODOs as well. Co-Authored-By: lu4p <lu4p@pm.me>
4 years ago
Obfuscate Go code by wrapping the Go toolchain. Requires Go 1.17 or later.
add README
5 years ago
garble build [build flags] [packages]
README: document commands While at it, slightly tweak and update the rest of the markdown docs.
4 years ago
The tool also supports `garble test` to run tests with obfuscated code,
and `garble reverse` to de-obfuscate text such as stack traces.
clarify usage text, add help flags Also remove the -toolexec equivalent, as it's becoming longer now that we have GARBLE_DIR, and it might become out of date in the future again. We don't want users to assume it will work forever.
5 years ago
See `garble -h` for up to date usage information.
add README
5 years ago
### Purpose
Produce a binary that works as well as a regular build, but that has as little
information about the original source code as possible.
The tool is designed to be:
initial support for build caching (#142) As per the discussion in https://github.com/golang/go/issues/41145, it turns out that we don't need special support for build caching in -toolexec. We can simply modify the behavior of "[...]/compile -V=full" and "[...]/link -V=full" so that they include garble's own version and options in the printed build ID. The part of the build ID that matters is the last, since it's the "content ID" which is used to work out whether there is a need to redo the action (build) or not. Since cmd/go parses the last word in the output as "buildID=...", we simply add "+garble buildID=_/_/_/${hash}". The slashes let us imitate a full binary build ID, but we assume that the other components such as the action ID are not necessary, since the only reader here is cmd/go and it only consumes the content ID. The reported content ID includes the tool's original content ID, garble's own content ID from the built binary, and the garble options which modify how we obfuscate code. If any of the three changes, we should use a different build cache key. GOPRIVATE also affects caching, since a different GOPRIVATE value means that we might have to garble a different set of packages. Include tests, which mainly check that 'garble build -v' prints package lines when we expect to always need to rebuild packages, and that it prints nothing when we should be reusing the build cache even when the built binary is missing. After this change, 'go test' on Go 1.15.2 stabilizes at about 8s on my machine, whereas it used to be at around 25s before.
5 years ago
* Coupled with `cmd/go`, to support modules and build caching
make output binaries deterministic We were leaking temporary file paths, which is no longer the case.
5 years ago
* Deterministic and reproducible, given the same initial source code
README: document commands While at it, slightly tweak and update the rest of the markdown docs.
4 years ago
* Reversible given the original source, to de-obfuscate panic stack traces
add README
5 years ago
### Mechanism
README: simplify and update with the latest changes
5 years ago
The tool wraps calls to the Go compiler and linker to transform the Go build, in
add README
5 years ago
order to:
* Replace as many useful identifiers as possible with short base64 hashes
Garble imports and package paths in GOPRIVATE (#116) Finally, finally this is done. This allows import paths to be obfuscated by modifying object/archive files and garbling import paths contained within. The bulk of the code that makes parsing and writing Go object/archive files possible lives at https://github.com/Binject/debug/tree/master/goobj2, which I wrote as well. I have tested by garbling and checking for import paths via strings and grep (in order of difficulty) https://github.com/lu4p/binclude, garble itself, and https://github.com/dominikh/go-tools/tree/master/cmd/staticcheck. This only supports object/archive files produced from the Go 1.15 compiler. The object file format changed at 1.15, and 1.14 and earlier is not supported. Fixes #13.
5 years ago
* Replace package paths with short base64 hashes
amend redirecting URLs via "xurls -fix"
3 years ago
* Remove all [build](https://go.dev/pkg/runtime/#Version) and [module](https://go.dev/pkg/runtime/debug/#ReadBuildInfo) information
README: simplify and update with the latest changes
5 years ago
* Strip filenames and shuffle position information
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
* Strip debugging information and symbol tables via `-ldflags="-w -s"`
README: fix link to literal obfuscation I noticed that link was broken - fix it.
4 years ago
* [Obfuscate literals](#literal-obfuscation), if the `-literals` flag is given
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
* Remove [extra information](#tiny-mode), if the `-tiny` flag is given
make selection of packages configurable via GOPRIVATE Carefully select a default that will do the right thing when inside a module, as well as when building ad-hoc packages. This means we no longer need to look at the compiler's -std flag, which is nice. Also replace foo.com/ with test/, as per golang/go#37641. Fixes #7.
5 years ago
deprecate using GOPRIVATE in favor of GOGARBLE (#427) Piggybacking off of GOPRIVATE is great for a number of reasons: * People tend to obfuscate private code, whose package paths will generally be in GOPRIVATE already * Its meaning and syntax are well understood * It allows all the flexibility we need without adding our own env var or config option However, using GOPRIVATE directly has one main drawback. It's fairly common to also want to obfuscate public dependencies, to make the code in private packages even harder to follow. However, using "GOPRIVATE=*" will result in two main downsides: * GONOPROXY defaults to GOPRIVATE, so the proxy would be entirely disabled. Downloading modules, such as when adding or updating dependencies, or when the local cache is cold, can be less reliable. * GONOSUMDB defaults to GOPRIVATE, so the sumdb would be entirely disabled. Adding entries to go.sum, such as when adding or updating dependencies, can be less secure. We will continue to consume GOPRIVATE as a fallback, but we now expect users to set GOGARBLE instead. The new logic is documented in the README. While here, rewrite some uses of "private" with "to obfuscate", to make the code easier to follow and harder to misunderstand. Fixes #276.
3 years ago
The tool obfuscates the packages matching `GOGARBLE`, a comma-separated list of
glob patterns of module path prefixes, as documented in `go help private`.
When `GOGARBLE` is empty, it assumes the value of `GOPRIVATE`.
When `GOPRIVATE` is also empty, then `GOGARBLE` assumes the value of the current
module path, to obfuscate all packages under the current module.
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
4 years ago
Note that commands like `garble build` will use the `go` version found in your
`$PATH`. To use different versions of Go, you can
amend redirecting URLs via "xurls -fix"
3 years ago
[install them](https://go.dev/doc/manage-install#installing-multiple)
drop support for Go 1.16.x We can now use pruned module graphs in go.mod files, and we no longer need to worry about runtime/internal/sys. Note that I had to update testdata/mod slightly, as the new pruned module graphs algorithm downloads an extra go.mod file. This change also paves the way towards future Go 1.18 support. Thanks to lu4p for cleaning up two TODOs as well. Co-Authored-By: lu4p <lu4p@pm.me>
4 years ago
and set up `$PATH` with them. For example, for Go 1.17.1:
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
4 years ago
```sh
drop support for Go 1.16.x We can now use pruned module graphs in go.mod files, and we no longer need to worry about runtime/internal/sys. Note that I had to update testdata/mod slightly, as the new pruned module graphs algorithm downloads an extra go.mod file. This change also paves the way towards future Go 1.18 support. Thanks to lu4p for cleaning up two TODOs as well. Co-Authored-By: lu4p <lu4p@pm.me>
4 years ago
$ go install golang.org/dl/go1.17.1@latest
$ go1.17.1 download
$ PATH=$(go1.17.1 env GOROOT)/bin:${PATH} garble build
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
4 years ago
```
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
### Literal obfuscation
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
4 years ago
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
Using the `-literals` flag causes literal expressions such as strings to be
replaced with more complex variants, resolving to the same value at run-time.
This feature is opt-in, as it can cause slow-downs depending on the input code.
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
4 years ago
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
Literal expressions used as constants cannot be obfuscated, since they are
resolved at compile time. This includes any expressions part of a `const`
declaration.
### Tiny mode
When the `-tiny` flag is passed, extra information is stripped from the resulting
Go binary. This includes line numbers, filenames, and code in the runtime that
prints panics, fatal errors, and trace/debug info. All in all this can make binaries
README: document the effect of -tiny on reverse Fixes #292.
4 years ago
2-5% smaller in our testing, as well as prevent extracting some more information.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
README: document the effect of -tiny on reverse Fixes #292.
4 years ago
With this flag, no panics or fatal runtime errors will ever be printed, but they
can still be handled internally with `recover` as normal. In addition, the
`GODEBUG` environmental variable will be ignored.
Note that this flag can make debugging crashes harder, as a panic will simply
exit the entire program without printing a stack trace, and all source code
positions are set to line 1. Similarly, `garble reverse` is generally not useful
in this mode.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
### Speed
`garble build` should take about twice as long as `go build`, as it needs to
complete two builds. The original build, to be able to load and type-check the
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
4 years ago
input code, and then the obfuscated build.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
4 years ago
Garble obfuscates one package at a time, mirroring how Go compiles one package
at a time. This allows Garble to fully support Go's build cache; incremental
`garble build` calls should only re-build and re-obfuscate modified code.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
README: clarify that the first "garble build" may be slow The section said that "garble build" should take about twice as long as "go build", which is typically true, with the glaring exception that is the first "garble build" after normal use of "go build". This scenario will be rather common for first-time users, and the difference will be most noticeable with large projects. A large build may take about a second to rebuild with a warm cache, but could take tens or even hundreds of seconds to rebuild from scratch. See #479.
3 years ago
Note that the first call to `garble build` may be comparatively slow,
as it has to obfuscate each package for the first time. This is akin to clearing
`GOCACHE` with `go clean -cache` and running a `go build` from scratch.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
### Determinism and seeds
make obfuscation fully deterministic with -seed The default behavior of garble is to seed via the build inputs, including the build IDs of the entire Go build of each package. This works well as a default, and does give us determinism, but it means that building for different platforms will result in different obfuscation per platform. Instead, when -seed is provided, don't use any other hash seed or salt. This means that a particular Go name will be obfuscated the same way as long as the seed, package path, and name itself remain constant. In other words, when the user supplies a custom -seed, we assume they know what they're doing in terms of storage and rotation. Expand the README docs with more examples and detail. Fixes #449.
3 years ago
Just like Go, garble builds are deterministic and reproducible in nature.
This has significant benefits, such as caching builds and being able to use
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
`garble reverse` to de-obfuscate stack traces.
make obfuscation fully deterministic with -seed The default behavior of garble is to seed via the build inputs, including the build IDs of the entire Go build of each package. This works well as a default, and does give us determinism, but it means that building for different platforms will result in different obfuscation per platform. Instead, when -seed is provided, don't use any other hash seed or salt. This means that a particular Go name will be obfuscated the same way as long as the seed, package path, and name itself remain constant. In other words, when the user supplies a custom -seed, we assume they know what they're doing in terms of storage and rotation. Expand the README docs with more examples and detail. Fixes #449.
3 years ago
By default, garble will obfuscate each package in a unique way,
which will change if its build input changes: the version of garble, the version
of Go, the package's source code, or any build parameter such as GOOS or -tags.
This is a reasonable default since guessing those inputs is very hard.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
make obfuscation fully deterministic with -seed The default behavior of garble is to seed via the build inputs, including the build IDs of the entire Go build of each package. This works well as a default, and does give us determinism, but it means that building for different platforms will result in different obfuscation per platform. Instead, when -seed is provided, don't use any other hash seed or salt. This means that a particular Go name will be obfuscated the same way as long as the seed, package path, and name itself remain constant. In other words, when the user supplies a custom -seed, we assume they know what they're doing in terms of storage and rotation. Expand the README docs with more examples and detail. Fixes #449.
3 years ago
However, providing your own obfuscation seed via `-seed` brings some advantages.
For example, builds sharing the same seed will produce the same obfuscation,
even if any of the build parameters or versions vary.
It can also make reverse-engineering harder, as an end user could guess what
version of Go or garble you're using.
Note that extra care should be taken when using custom seeds.
If a seed used to build a binary gets lost, `garble reverse` will not work.
Rotating the seeds can also help against reverse-engineering in the long run,
as otherwise some bits of code may be obfuscated the same way over time.
An alternative approach is `-seed=random`, where each build is entirely different.
make selection of packages configurable via GOPRIVATE Carefully select a default that will do the right thing when inside a module, as well as when building ad-hoc packages. This means we no longer need to look at the compiler's -std flag, which is nice. Also replace foo.com/ with test/, as per golang/go#37641. Fixes #7.
5 years ago
add README
5 years ago
### Caveats
README: expand the caveats section a bit For #13, mainly, since that's a common concern.
5 years ago
Most of these can improve with time and effort. The purpose of this section is
to document the current shortcomings of this tool.
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
4 years ago
* Exported methods are never obfuscated at the moment, since they could
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
4 years ago
be required by interfaces. This area is a work in progress; see
detect more std API calls which use reflection Before, we would just notice direct calls to reflect's TypeOf and ValueOf. Any other uses of reflection, such as encoding/json or google.golang.org/protobuf, would require hints as documented by the README. Issue #162 outlines some ways we could fix this issue in a general way, automatically detecting what functions use reflection on their parameters, even for third party API funcs. However, that goal is pretty significant in terms of code and effort. As a temporary improvement, we can expand the list of "known" reflection APIs via a static table. Since this table is keyed by "func full name" strings, we could potentially include third party APIs, such as: google.golang.org/protobuf/proto.Marshal However, for now simply include all the std APIs we know about. If we fail to do the proper fix for automatic detection in the future, we can then fall back to expanding this global table for third parties. Update the README's docs, to clarify that the hint is not always necessary anymore. Also update the reflect.txt test to stop using the hint for encoding/json, and to also start testing text/template with a method call. While at it, I noticed that we weren't testing the println outputs, as they'd go to stderr - fix that too. Updates #162.
4 years ago
[#3](https://github.com/burrowers/garble/issues/3).
README: expand the caveats section a bit For #13, mainly, since that's a common concern.
5 years ago
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
4 years ago
* Garble aims to automatically detect which Go types are used with reflection,
as obfuscating those types might break your program.
Note that Garble obfuscates [one package at a time](#speed),
so if your reflection code inspects a type from an imported package,
and your program broke, you may need to add a "hint" in the imported package:
```go
type Message struct {
Command string
Args string
}
// Never obfuscate the Message type.
var _ = reflect.TypeOf(Message{})
```
Document reflect.TypeOf hint (#211) * Document reflect.TypeOf hint Fixes #163 * Fix nit
4 years ago
keep cgo-exported Go names non-obfuscated Otherwise, the added test case would fail, as we don't modify the C code and so there would be a name mismatch. In the far future we might start modifying Go names in C code, similar to what we did for Go assembly, but right now that seems out of scope and too complex. An easier fix is to simply record those (hopefully few) names in ignoreObjects. While at it, recordReflectArgs started to really outgrow its name, as it also collected expressions used as constants for literal obfuscation. Give it a better name. Fixes #366.
4 years ago
* Go declarations exported for cgo via `//export` are not obfuscated.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
* Go plugins are not currently supported; see [#87](https://github.com/burrowers/garble/issues/87).
Add a Contributing section to the README (#187) Fixes #185
4 years ago
### Contributing
obfuscate unexported names like exported ones (#227) In 90fa325da7, the obfuscation logic was changed to use hashes for exported names, but incremental names starting at just one letter for unexported names. Presumably, this was done for the sake of binary size. I argue that this is not a good idea for the default mode for a number of reasons: 1) It makes reversing of stack traces nearly impossible for unexported names, since replacing an obfuscated name "c" with "originalName" would trigger too many false positives by matching single characters. 2) Exported and unexported names aren't different. We need to know how names were obfuscated at a later time in both cases, thanks to use cases like -ldflags=-X. Using short names for one but not the other doesn't make a lot of sense, and makes the logic inconsistent. 3) Shaving off three bytes for unexported names doesn't seem like a huge deal for the default mode, when we already have -tiny to optimize for size. This saves us a bit of work, but most importantly, simplifies the obfuscation state as we no longer need to carry privateNameMap between the compile and link stages. name old time/op new time/op delta Build-8 153ms ± 2% 150ms ± 2% ~ (p=0.065 n=6+6) name old bin-B new bin-B delta Build-8 7.09M ± 0% 7.08M ± 0% -0.24% (p=0.002 n=6+6) name old sys-time/op new sys-time/op delta Build-8 296ms ± 5% 277ms ± 6% -6.50% (p=0.026 n=6+6) name old user-time/op new user-time/op delta Build-8 562ms ± 1% 558ms ± 3% ~ (p=0.329 n=5+6) Note that I do not oppose using short names for both exported and unexported names in the future for -tiny, since reversing of stack traces will by design not work there. The code can be resurrected from the git history if we want to improve -tiny that way in the future, as we'd need to store state in header files again. Another major cleanup we can do here is to no longer use the garbledImports map. From a look at obfuscateImports, we hash a package's import path with its action ID, much like exported names, so we can simply re-do that hashing for the linker's -X flag. garbledImports does have some logic to handle duplicate package names, but it's worth noting that should not affect package paths, as they are always unique. That area of code could probably do with some simplification in the future, too. While at it, make hashWith panic if either parameter is empty. obfuscateImports was hashing the main package path without a salt due to a bug, so we want to catch those in the future. Finally, make some tiny spacing and typo tweaks to the README.
4 years ago
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
4 years ago
We welcome new contributors. If you would like to contribute, see
Add a Contributing section to the README (#187) Fixes #185
4 years ago
[CONTRIBUTING.md](CONTRIBUTING.md) as a starting point.