Avoid binding Go services to all interfaces

#Metadata

Rule ID

go.security.bind-all-interfaces

Severity

medium

Confidence

0.85

Languages

go

Presets

security, strict

Stability

experimental

Applies to

block

Tags

exposure, go, network, rules-catalog, security

#Why it matters

Binding every interface can unintentionally expose internal services beyond expected trust boundaries.

#Remediation

Prefer loopback or an explicit interface bind unless broad exposure is required and defended by network controls.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/go/go.security.bind-all-interfaces.rule.yaml.