cmd/govulncheck: adds basic setup for integration testing

This change adds the main component stubs for integration testing

- integration_test.sh: script that will be eventually executed by kokoro
- Dockerfile: Docker image that integration_test.sh builds and executes
- integration_run.sh: script executed within Docker image that will
  perform actual integration checks

The Docker image clones the copy of the vuln/ repo and builds govulncheck.
integration_run.sh executes govulncheck (on selected projects in the
follow-up CLs).

Change-Id: If37c24ed04a695f059d054edc29055043e0d93ec
Reviewed-on: https://go-review.googlesource.com/c/vuln/+/400414
Run-TryBot: Zvonimir Pavlinovic <zpavlinovic@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Jonathan Amsterdam <jba@google.com>
3 files changed
tree: 9db5af7a8bb7698b3005580a7f4e94e0687cc4d2
  1. client/
  2. cmd/
  3. devtools/
  4. doc/
  5. internal/
  6. osv/
  7. vulncheck/
  8. .gitignore
  9. all_test.go
  10. AUTHORS
  11. checks.bash
  12. CONTRIBUTING.md
  13. CONTRIBUTORS
  14. go.mod
  15. go.sum
  16. LICENSE
  17. PATENTS
  18. README.md
  19. tools_test.go
README.md

Go Vulnerability Management

Go Reference

This repository contains the following:

  • Package client: a client for interacting with the Go vulnerability database
  • Package vulncheck: an API for detecting vulnerabilities in Go packages
  • Command govulncheck: a CLI for detecting vulnerabilities in Go packages

The code in this repository is under active development and not to be considered stable.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries available at https://vuln.go.dev are distributed under the terms of the CC-BY 4.0 license.