Is there an alternative to gorilla websocket?

• websocket

  44 18,557 5.3 Go

  Discontinued A fast, well-tested and widely used WebSocket implementation for Go.

  

No Bugs? https://github.com/gorilla/websocket/issues Even if that were true at the time of stoping development, "No bugs" is something that can never be said for any software. I really wish this community stopped recomending to use abandoned libraries if only for the potential Security issues. A not maintained Library is a very lucrative target for vulnerability hunting.

• websocket

  15 3,482 8.7 Go

  Minimal and idiomatic WebSocket library for Go (by nhooyr)

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• ws

  14 5,958 5.9 Go

  Tiny WebSocket library for Go. (by gobwas)

Yes, I find https://github.com/gobwas/ws to be far superior. It has a lot more ability to customize and get high performance as well as a utility package that is much higher level and makes it easy to use. It doesn't have some of the problems of gorilla because they didn't have to support people already depending on it

• nbio

  10 2,012 9.3 Go

  Pure Go 1000k+ connections solution, support tls/http1.x/websocket and basically compatible with net/http, with high-performance and low memory cost, non-blocking, event-driven, easy-to-use.

• wasmws

  5 61 0.0 Go

  wasmws: Webassembly (WASM) Websockets for Go applications

Thanks for writing this! I found it really great to use when I wrote https://github.com/tarndt/wasmws

• Gin

  152 75,577 8.5 Go

  Gin is a HTTP web framework written in Go (Golang). It features a Martini-like API with much better performance -- up to 40 times faster. If you need smashing performance, get yourself some Gin.

  

Specifically for nhooyr/websocket, I can see that one of the issues raised in the PRs is meant to address CVE-2020-28483 that affects github.com/gin-gonic/gin . If I run govulncheck on nhooyr/websocket, it does not list it as been vulnerable to that particular issue. And yes that particular CVE exists in its database; https://pkg.go.dev/vuln/GO-2021-0052

• go

  2,075 119,718 10.0 Go

  The Go programming language

  

I agree. See https://github.com/golang/go/issues/26913 which is closed and also https://github.com/golang/go/issues/26955 which is still open.

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

• ote

  3 34 5.8 Go

  ote updates a packages' go.mod file with a comment next to all dependencies that are test dependencies; identifying them as such. (by komuw)

Some years back I wrote https://github.com/komuw/ote which is a tool that updates go.mod file with a comment next to all dependencies that are test dependencies; identifying them as such. It seems to work well in my projects, but your mileage may vary.

Suggest a related project