blob: efcad002a6fd15b3cd56ff3ea97d2fa4a93c3782 [file] [log] [blame]
# Test of source mode on a module with a replace directive.
$ govulncheck -C ${moddir}/replace ./... --> FAIL 3
Scanning your code and P packages across M dependent module for known vulnerabilities...
Vulnerability #1: GO-2021-0113
Due to improper index calculation, an incorrectly formatted language tag can
cause Parse to panic via an out of bounds read. If Parse is used to process
untrusted user inputs, this may be used as a vector for a denial of service
More info:
Found in:
Fixed in:
Example traces found:
#1: .../main.go:11:16: replace.main calls language.Parse
Your code is affected by 1 vulnerability from 1 module.
Share feedback at