commit | d707b2a0670ff4b5c629c3c41d6b23a3b337e750 | [log] [tgz] |
---|---|---|
author | Tatiana Bradley <tatianabradley@google.com> | Fri Apr 05 12:34:25 2024 -0400 |
committer | Tatiana Bradley <tatianabradley@google.com> | Tue Apr 16 17:23:51 2024 +0000 |
tree | 285b6a677f3ef3c787559acfb6d0d77174ca7839 | |
parent | bbf0d71b152c4cc786e5ddc646874518f8483cb1 [diff] |
internal/report: add YAML field "source" Adds a new field, source, which holds metadata about the original source of the report. For now, it is either a CVE, a GHSA, or the Go team. This is not required and is not published to OSV, but will assist in our automation efforts. Change-Id: Ief5ea6eca35d8799655b3a86e7a22cf8ff49d4e5 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/576999 Reviewed-by: Damien Neil <dneil@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.
Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.
Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.
The privacy policy for govulncheck
can be found at https://vuln.go.dev/privacy.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries are distributed under the terms of the CC-BY-4.0 license. See go.dev/security/vuln/database for information on how to access these entries.