commit | 1e83ff2f6b3fe90d587986f421583e5f92a91d1d | [log] [tgz] |
---|---|---|
author | Tatiana Bradley <tatianabradley@google.com> | Thu Sep 22 16:00:44 2022 -0400 |
committer | Tatiana Bradley <tatiana@golang.org> | Thu Sep 22 22:22:50 2022 +0000 |
tree | 9be1421a0978c4788a76e994aa93cb242b930a6f | |
parent | c4ae15e2607ec558b990c5e1c49c27b23656be19 [diff] |
internal/worker: fix readAfterWrite bug When triaging GHSAs, make a list of all GHSAs that need to be created or updated and do the database writes all at once. We need to do this to avoid a readAfterWrite bug in which we attempt to read CVE records after writing GHSA records. Change-Id: Ib5745e19f3eb9460178d02f7a7e3bc6aa024a848 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/432995 Run-TryBot: Tatiana Bradley <tatiana@golang.org> Reviewed-by: Damien Neil <dneil@google.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Tatiana Bradley <tatiana@golang.org>
This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.
If you are interested accessing data from the Go Vulnerability Database, see x/vuln.
Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.
Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.
The privacy policy for govulncheck
can be found at https://vuln.go.dev/privacy.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries are distributed under the terms of the CC-BY-4.0 license. See x/vuln for information on how to access these entries.