Google Git
Sign in
go / vuln / 9bf256343acc20d22586789d07aecf887d8a5aea
commit9bf256343acc20d22586789d07aecf887d8a5aea[log] [tgz]
authorAlan Donovan <adonovan@google.com>Thu Dec 15 14:05:26 2022 -0500
committerAlan Donovan <adonovan@google.com>Thu Dec 15 20:50:10 2022 +0000
treeb746fa06e5b4212cb04448b94b26260a70842d70
parentaf59454a8a0a42ff9d84df1a73c4248f60a5d9b6 [diff]
cmd/govulncheck: add -cpuprofile flag

Most of the time is spent in callGraph:
5s in CHA, 8s in VTA(1), 5s in VTA(2) when analyzing k8s.

Change-Id: If428095c68a8a5d47e9b709e02161d5f22952807
Reviewed-on: https://go-review.googlesource.com/c/vuln/+/457955
Reviewed-by: Tim King <taking@google.com>
Run-TryBot: Alan Donovan <adonovan@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
3 files changed
tree: b746fa06e5b4212cb04448b94b26260a70842d70
  1. client/
  2. cmd/
  3. devtools/
  4. doc/
  5. exp/
  6. internal/
  7. osv/
  8. vulncheck/
  9. .gitignore
  10. all_test.go
  11. checks.bash
  12. CONTRIBUTING.md
  13. go.mod
  14. go.sum
  15. LICENSE
  16. PATENTS
  17. README.md
  18. tools_test.go
README.md

Go Vulnerability Management

Go Reference

This repository contains packages for accessing and analyzing data from the Go Vulnerability Database. It contains the following:

  • Package client: a client for interacting with the Go vulnerability database
  • Package vulncheck: an API for detecting vulnerabilities in Go packages
  • Command govulncheck: a CLI for detecting vulnerabilities in Go packages

Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.

Privacy Policy

The privacy policy for govulncheck can be found at https://vuln.go.dev/privacy.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries available at https://vuln.go.dev are distributed under the terms of the CC-BY 4.0 license.