Google Git
Sign in
go / vuln / 61d83dad62c141e9fa6e6397085162fe682a61bf
commit61d83dad62c141e9fa6e6397085162fe682a61bf[log] [tgz]
authorZvonimir Pavlinovic <zpavlinovic@google.com>Wed Dec 21 14:16:31 2022 -0800
committerZvonimir Pavlinovic <zpavlinovic@google.com>Thu Dec 22 22:11:50 2022 +0000
tree0ce594f97b8afc43e78a77d1f7f8d89f855abefd
parent785badac1c3278e91ecb365d011cc84ab710b903 [diff]
internal: use go env to compute GOMODCACHE

Before, an approach with build.Default.GOPATH was used, which is
incorrect.

Fixes golang/go#57406

Change-Id: I821e9b1a762f2b7eca5b6006e00c7929d115e6cf
Reviewed-on: https://go-review.googlesource.com/c/vuln/+/459036
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Jonathan Amsterdam <jba@google.com>
Run-TryBot: Zvonimir Pavlinovic <zpavlinovic@google.com>
7 files changed
tree: 0ce594f97b8afc43e78a77d1f7f8d89f855abefd
  1. client/
  2. cmd/
  3. devtools/
  4. doc/
  5. exp/
  6. internal/
  7. osv/
  8. vulncheck/
  9. .gitignore
  10. all_test.go
  11. checks.bash
  12. CONTRIBUTING.md
  13. go.mod
  14. go.sum
  15. LICENSE
  16. PATENTS
  17. README.md
  18. tools_test.go
README.md

Go Vulnerability Management

Go Reference

This repository contains packages for accessing and analyzing data from the Go Vulnerability Database. It contains the following:

  • Package client: a client for interacting with the Go vulnerability database
  • Package vulncheck: an API for detecting vulnerabilities in Go packages
  • Command govulncheck: a CLI for detecting vulnerabilities in Go packages

Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.

Privacy Policy

The privacy policy for govulncheck can be found at https://vuln.go.dev/privacy.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries available at https://vuln.go.dev are distributed under the terms of the CC-BY 4.0 license.