Google Git
Sign in
go/vulndb

The Go Vulnerability Database

Clone this repo:

Branches

  1. 428d043 deploy: use the "latest" golang image for testing by Roland Shoemaker · 5 days ago master
  2. 688537f go.mod: update golang.org/x dependencies by Gopher Robot · 9 days ago
  3. 2fd875c data/reports: add 11 first-party reports by Neal Patel · 10 days ago
  4. 599ca23 go.mod: make go1.26.2 toolchain requirement explicit by Dmitri Shuralyov · 2 weeks ago
  5. d32b51f all: lower go directive to 1.25.0 by Dmitri Shuralyov · 3 weeks ago

The Go Vulnerability Database

Go Reference

This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.

Warning: Packages here are internal to the Go Security Team and its needs; Some may be modified arbitrarily or even disappear altogether. In short, code in this repository is NOT subject to the Go 1 Compatibility Promise.

Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.

Reporting a vulnerability or feedback

Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.

Privacy Policy

The privacy policy for govulncheck can be found at https://vuln.go.dev/privacy.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries are distributed under the terms of the CC-BY-4.0 license. See go.dev/security/vuln/database for information on how to access these entries.