We can't change this for Go 1, so I've tagged this for Go2 for consideration in the future.

You can always do

import crytporand "crypto/rand"
cryptorand.Read(randBuff)

That at least makes it clearer at the callsite what you intended.

@bradfitz - makes sense; is there a warning capability in the Go 1 compiler?
@randall77 - designing things to be secure by default is the principle here. Your suggestion might work with a lint system to produce a warning when using math.rand.

makes sense; is there a warning capability in the Go 1 compiler?

Intentionally not. See the https://golang.org/doc/faq#unused_variables_and_imports answer.

Why can't we just add new alias functions with a suffix like Crypto e.g. ReadCrypto/NewCrypto/NewSourceCrypto/etc...

That way we still have the 1.0 compatibility and makes it easier for people to make sure they are using the correct rand.

I suppose we could, but we generally try to avoid having two ways to do the same thing.

Well I'm not in the affected group so I'll let you guys debate if the pros outweigh the cons.

But I can imagine some company having a security vulnerability cause of some late night coding where someone auto imported math/rand instead of crypto/rand.

Your security vulnerability scenario involves all of the following failures:

• a tool automatically chose math/rand instead of crypto/rand. goimports doesn't do this as of a year ago. That was fixed in golang/tools@0835c73
• somebody wrote security code late at night
• code review didn't happen or missed the problem

It's possible, but it's a bit of a stretch. I don't think it warrants fixing in Go 1.x where it can't be changed cleanly.

In the meantime, file bugs against any auto-import tools that get it wrong.

Also: tools like gas (https://github.com/GoASTScanner/gas) already catch this.

I don't think we should change the name of the Read function, but for Go 2 we could perhaps change the name of the type crypto/rand package to, perhaps, crypto/crand, to decrease the chance of accidental confusion.

One possibility is to remove rand.Read in a v2 of math/rand, but another possibility (or a step toward that) would be to mark Read as Deprecated, like

// Deprecated: For almost all use cases, crypto/rand.Read is more appropriate.

This proposal has been added to the active column of the proposals project
and will now be reviewed at the weekly proposal review meetings.
— rsc for the proposal review group

Does anyone object to marking math/rand.Read deprecated?

Based on the discussion above, this proposal seems like a likely accept.
— rsc for the proposal review group

Change https://go.dev/cl/436955 mentions this issue: math/rand: deprecate Read

Change https://go.dev/cl/436956 mentions this issue: all: replace math/rand.Read with crypto/rand.Read

No change in consensus, so accepted. 🎉
This issue now tracks the work of implementing the proposal.
— rsc for the proposal review group

one can use gosec linter with golanglint-ci like so
and watch for G404 code.

golangci-lint run --disable-all --enable gosec

Just FYI this exact issue caused a CVE in rclone https://nvd.nist.gov/vuln/detail/CVE-2020-28924

The code when written used the correct crypto/rand but after some refactoring the import on the file got changed to math/rand and no one noticed 😟

I suspect goimports might have been involved. It was certainly in use then!

#59629 suggest add math/rand.InsecureRand