commit | b5628b3a3e55af77e5d5e2589064e35b438086a9 | [log] [tgz] |
---|---|---|
author | Hana (Hyang-Ah) Kim <hyangah@gmail.com> | Fri Oct 07 10:19:01 2022 -0400 |
committer | Hyang-Ah Hana Kim <hyangah@gmail.com> | Fri Oct 07 15:56:27 2022 +0000 |
tree | 6c2a93412a9293e29e148a1bc66685977445bb00 | |
parent | 8bca3be1cd3be4fb222e45962592778925d8f457 [diff] |
internal/govulncheck: report only version for Summary.FixedIn/FoundIn Initially I thought <pkgpath>@<version> may be helpful when the suggested fix requires to use different package/module than the currently used package. However, that can be a non-trivial change most likely, and it's better to communicate differently instead. Include only the version (either 'v' or 'go' prefixed). This change does not affect the regular govulncheck text output format but affects the version fields of Summary type. Change-Id: I6712ad760349f05e7b092ea3c9c758863600b03e Reviewed-on: https://go-review.googlesource.com/c/vuln/+/440217 TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Julie Qiu <julieqiu@google.com> Run-TryBot: Hyang-Ah Hana Kim <hyangah@gmail.com>
This repository contains packages for accessing and analyzing data from the Go Vulnerability Database. It contains the following:
Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.
The privacy policy for govulncheck
can be found at https://vuln.go.dev/privacy.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries available at https://vuln.go.dev are distributed under the terms of the CC-BY 4.0 license.