internal/scan/testdata/multi-stacks.json - vuln - Git at Google

 {
   "config": {
     "scanner_name": "govulncheck"
   }
 }
 {
   "osv": {
     "id": "GO-0000-0001",
     "modified": "0001-01-01T00:00:00Z",
     "published": "0001-01-01T00:00:00Z",
     "details": "Third-party vulnerability",
     "affected": [
       {
         "package": {
           "name": "golang.org/vmod",
           "ecosystem": ""
         },
         "ecosystem_specific": {
           "imports": [
             {
               "goos": [
                 "amd"
               ]
             }
           ]
         }
       }
     ]
   }
 }
 {
   "finding": {
     "osv": "GO-0000-0001",
     "fixed_version": "v0.1.3",
     "trace": [
       {
         "module": "golang.org/vmod",
         "version": "v0.0.1",
         "package": "vmod",
         "function": "Vuln"
       },
       {
         "module": "golang.org/main",
         "version": "v0.0.1",
         "package": "main",
         "function": "main"
       }
     ]
   }
 }
 {
   "finding": {
     "osv": "GO-0000-0001",
     "fixed_version": "v0.1.3",
     "trace": [
       {
         "module": "golang.org/vmod",
         "version": "v0.0.1",
         "package": "vmod",
         "function": "VulnFoo"
       },
       {
         "module": "golang.org/main",
         "version": "v0.0.1",
         "package": "main",
         "function": "main"
       }
     ]
   }
 }
 {
   "finding": {
     "osv": "GO-0000-0001",
     "fixed_version": "v0.0.4",
     "trace": [
       {
         "module": "golang.org/vmod1",
         "version": "v0.0.3",
         "package": "vmod1",
         "function": "Vuln"
       },
       {
         "module": "golang.org/other",
         "version": "v2.0.3",
         "package": "other",
         "function": "Foo"
       }
     ]
   }
 }
 {
   "finding": {
     "osv": "GO-0000-0001",
     "fixed_version": "v0.0.4",
     "trace": [
       {
         "module": "golang.org/vmod1",
         "version": "v0.0.3",
         "package": "vmod1",
         "function": "VulnFoo"
       },
       {
         "module": "golang.org/other",
         "version": "v2.0.3",
         "package": "other",
         "function": "Bar"
       }
     ]
   }
 }
	{
	"config": {
	"scanner_name": "govulncheck"
	}
	}
	{
	"osv": {
	"id": "GO-0000-0001",
	"modified": "0001-01-01T00:00:00Z",
	"published": "0001-01-01T00:00:00Z",
	"details": "Third-party vulnerability",
	"affected": [
	{
	"package": {
	"name": "golang.org/vmod",
	"ecosystem": ""
	},
	"ecosystem_specific": {
	"imports": [
	{
	"goos": [
	"amd"
	]
	}
	]
	}
	}
	]
	}
	}
	{
	"finding": {
	"osv": "GO-0000-0001",
	"fixed_version": "v0.1.3",
	"trace": [
	{
	"module": "golang.org/vmod",
	"version": "v0.0.1",
	"package": "vmod",
	"function": "Vuln"
	},
	{
	"module": "golang.org/main",
	"version": "v0.0.1",
	"package": "main",
	"function": "main"
	}
	]
	}
	}
	{
	"finding": {
	"osv": "GO-0000-0001",
	"fixed_version": "v0.1.3",
	"trace": [
	{
	"module": "golang.org/vmod",
	"version": "v0.0.1",
	"package": "vmod",
	"function": "VulnFoo"
	},
	{
	"module": "golang.org/main",
	"version": "v0.0.1",
	"package": "main",
	"function": "main"
	}
	]
	}
	}
	{
	"finding": {
	"osv": "GO-0000-0001",
	"fixed_version": "v0.0.4",
	"trace": [
	{
	"module": "golang.org/vmod1",
	"version": "v0.0.3",
	"package": "vmod1",
	"function": "Vuln"
	},
	{
	"module": "golang.org/other",
	"version": "v2.0.3",
	"package": "other",
	"function": "Foo"
	}
	]
	}
	}
	{
	"finding": {
	"osv": "GO-0000-0001",
	"fixed_version": "v0.0.4",
	"trace": [
	{
	"module": "golang.org/vmod1",
	"version": "v0.0.3",
	"package": "vmod1",
	"function": "VulnFoo"
	},
	{
	"module": "golang.org/other",
	"version": "v2.0.3",
	"package": "other",
	"function": "Bar"
	}
	]
	}
	}