The Go Vulnerability Database

Clone this repo:


  1. dc4971e data/excluded: batch add 13 excluded reports by Maceo Thompson · 3 days ago master
  2. 660e690 data/excluded: batch add 6 excluded reports by Damien Neil · 4 days ago
  3. 73b9e2e data/reports/GO-2023-2334: add GHSA reference by Damien Neil · 4 days ago
  4. a33350d internal/report: fix bug in CVE5 generation by Tatiana Bradley · 6 days ago
  5. edf27d2 data/reports: add GO-2023-2328.yaml by Tatiana Bradley · 6 days ago

The Go Vulnerability Database

Go Reference

This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.

Check out for more information about the Go vulnerability management system.

Reporting a vulnerability or feedback

Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.

Privacy Policy

The privacy policy for govulncheck can be found at


Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries are distributed under the terms of the CC-BY-4.0 license. See for information on how to access these entries.