-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
nbio
Pure Go 1000k+ connections solution, support tls/http1.x/websocket and basically compatible with net/http, with high-performance and low memory cost, non-blocking, event-driven, easy-to-use.
-
Gin
Gin is a HTTP web framework written in Go (Golang). It features a Martini-like API with much better performance -- up to 40 times faster. If you need smashing performance, get yourself some Gin.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
ote
ote updates a packages' go.mod file with a comment next to all dependencies that are test dependencies; identifying them as such. (by komuw)
No Bugs? https://github.com/gorilla/websocket/issues Even if that were true at the time of stoping development, "No bugs" is something that can never be said for any software. I really wish this community stopped recomending to use abandoned libraries if only for the potential Security issues. A not maintained Library is a very lucrative target for vulnerability hunting.
Yes, I find https://github.com/gobwas/ws to be far superior. It has a lot more ability to customize and get high performance as well as a utility package that is much higher level and makes it easy to use. It doesn't have some of the problems of gorilla because they didn't have to support people already depending on it
Thanks for writing this! I found it really great to use when I wrote https://github.com/tarndt/wasmws
Specifically for nhooyr/websocket, I can see that one of the issues raised in the PRs is meant to address CVE-2020-28483 that affects github.com/gin-gonic/gin . If I run govulncheck on nhooyr/websocket, it does not list it as been vulnerable to that particular issue. And yes that particular CVE exists in its database; https://pkg.go.dev/vuln/GO-2021-0052
I agree. See https://github.com/golang/go/issues/26913 which is closed and also https://github.com/golang/go/issues/26955 which is still open.
Some years back I wrote https://github.com/komuw/ote which is a tool that updates go.mod file with a comment next to all dependencies that are test dependencies; identifying them as such. It seems to work well in my projects, but your mileage may vary.