Google Git
Sign in
go / vulndb / 0c44de67e81f1c6b5091cc4da646a78d676fd1b6
commit0c44de67e81f1c6b5091cc4da646a78d676fd1b6[log] [tgz]
authorTatiana Bradley <tatianabradley@google.com>Tue Feb 06 13:57:48 2024 -0500
committerTatiana Bradley <tatianabradley@google.com>Thu Feb 08 15:56:13 2024 +0000
treeea270bd1b92e00ac55768bb289c2c3a35d585621
parent48391af3689b8b9fd0c4267afe9cbb96292b3713 [diff]
internal/report: refactor fix to avoid nil pointer

Split Fix into FixText (which doesn't require a proxy client) and
FixVersions (which does), and only call the FixText portion from
applySuggestion in vulnreport. This avoids a possible nil pointer
dereference.

Change-Id: Ic57cb0738ac64ce892e62c2e16c76efb25c22147
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/562245
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: Damien Neil <dneil@google.com>
2 files changed
tree: ea270bd1b92e00ac55768bb289c2c3a35d585621
  1. .github/
  2. cmd/
  3. data/
  4. deploy/
  5. devtools/
  6. doc/
  7. internal/
  8. terraform/
  9. webconfig/
  10. .gitignore
  11. all_test.go
  12. checks.bash
  13. CONTRIBUTING.md
  14. go.mod
  15. go.sum
  16. LICENSE
  17. PATENTS
  18. README.md
  19. tools_test.go
README.md

The Go Vulnerability Database

Go Reference

This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.

Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.

Reporting a vulnerability or feedback

Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.

Privacy Policy

The privacy policy for govulncheck can be found at https://vuln.go.dev/privacy.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries are distributed under the terms of the CC-BY-4.0 license. See go.dev/security/vuln/database for information on how to access these entries.