commit | 2d19bb57aee2eef5c254813ad54f43b11db9395c | [log] [tgz] |
---|---|---|
author | Tim King <taking@google.com> | Mon Jan 30 14:25:52 2023 -0800 |
committer | Tim King <taking@google.com> | Wed Feb 01 21:39:14 2023 +0000 |
tree | 109f32fb91f12d0c150837dc918b08cd44704818 | |
parent | 766e59ff3a48ace7e31a72d646e97e8ee8d8ecc8 [diff] |
internal/report: adds SkipFix field to Package New SkipFix field on report.Package indicates that a package should not be automatically updated by vulnreport fix. vulnreport fix now automatically adds a todo message if this field and Module.VulnerableAt are both empty. Lint rules will come later. Change-Id: I574539362cf334cdc9fee59f036e1de8e5b5bd6e Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464016 Reviewed-by: Tatiana Bradley <tatianabradley@google.com> Run-TryBot: Tim King <taking@google.com> TryBot-Result: Gopher Robot <gobot@golang.org>
This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.
If you are interested accessing data from the Go Vulnerability Database, see x/vuln.
Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.
Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.
The privacy policy for govulncheck
can be found at https://vuln.go.dev/privacy.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries are distributed under the terms of the CC-BY-4.0 license. See x/vuln for information on how to access these entries.