internal/vulns: disable display of vulns for stdlib pages at master

The resolved version for stdlib pages at master is a
v0-prefixed psuedoversion. The result is that all vulns
for stdlib pages that begin at v0 are listed as affecting
even though they may have been fixed in later versions of Go.

This change removes vuln data for stdlib pages when requested
version is master.

Fixes golang/go#57327.

Change-Id: Ie9df8cb25bc3126397a49af349d401d3a1e2e994
Run-TryBot: Jamal Carvalho <>
Reviewed-by: Jonathan Amsterdam <>
TryBot-Result: kokoro <>
2 files changed
tree: ef94291c1e19fca881cea18c97bc485621dbbe07
  1. cmd/
  2. deploy/
  3. devtools/
  4. doc/
  5. internal/
  6. migrations/
  7. static/
  8. tests/
  9. third_party/
  10. .dockerignore
  11. .eslintignore
  12. .eslintrc.yaml
  13. .gitignore
  14. .prettierignore
  15. .prettierrc.yaml
  16. .stylelintignore
  17. .stylelintrc.yaml
  18. all.bash
  20. go.mod
  21. go.sum
  22. jest.config.js
  24. package-lock.json
  25. package.json
  28. tsconfig.json

Go Reference

A site for discovering Go packages is a website for discovering and evaluating Go packages and modules.

You can check it out at


Pkgsite requires Go 1.19 to run. The last commit that works with Go 1.18 is 9ffe8b928e4fbd3ff7dcf984254629a47f8b6e63. The last commit that works with Go 1.17 is 4d836c6a652cde92f433967680dfd6171a91ec12.


If you want to report a bug or have a feature suggestion, please first check the known issues to see if your issue is already being discussed. If an issue does not already exist, feel free to file an issue.

For answers to frequently asked questions, see

You can also chat with us on the #pkgsite Slack channel on the Gophers Slack.


We would love your help!

Our canonical Git repository is located at There is a mirror of the repository at

To contribute, please read our contributing guide.


Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.