OWASP Go Secure Coding Practices Guide

Go Language - Web Application Secure Coding Practices is a guide written for anyone who is using the Go Programming Language and aims to use it for web development.

The main goal of this book is to help developers avoid common mistakes while at the same time, learning a new programming language through a “hands-on approach”.


According to Stack Overflow’s annual Developer Survey, Go has made the top 5 most Loved and Wanted programming languages list for the second year in a row. With its surge in popularity, it is critical that applications developed in Go are designed with security in mind.

The primary audience of the Go Secure Coding Practices Guide is developers, particularly the ones with previous experience with other programming languages.

The book is also a great reference to those learning programming for the first time, who have already finish the Go tour.

This book covers the OWASP Secure Coding Practices Quick Reference Guide topic-by-topic, providing examples and recommendations using Go, to help developers avoid common mistakes and pitfalls.

After reading this book, you’ll be more confident you’re developing secure Go applications.


This document is released under the Creative Commons Attribution-ShareAlike 4.0 International license (CC BY-SA 4.0). For any reuse or distribution, you must make clear to others the license terms of this work.

Getting Involved

Involvement in the development and promotion of Go Secure Coding Practices is actively encouraged! You do not have to be a security expert or a programmer to contribute.

Check the How to Contribute section for details on how to contribute to OWASP Go Secure Coding Practices Guide.