| // Copyright 2023 The Go Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style |
| // license that can be found in the LICENSE file. |
| // |
| // Test database for the Go vulnerability database v1 schema. |
| // This database is invalid because there is an additional vuln |
| // in vulns.json that is not present in the ID/ folder. |
| |
| -- index/db.json -- |
| { |
| "modified": "2000-01-01T00:00:00Z" |
| } |
| |
| -- index/vulns.json -- |
| [ |
| { |
| "id": "GO-1999-0001", |
| "modified": "2000-01-01T00:00:00Z", |
| "aliases": [ |
| "CVE-1999-1111" |
| ] |
| }, |
| { |
| "id": "GO-1999-0002" |
| } |
| ] |
| |
| -- index/modules.json -- |
| [ |
| { |
| "path": "stdlib", |
| "vulns": [ |
| { |
| "id": "GO-1999-0001", |
| "modified": "2000-01-01T00:00:00Z", |
| "fixed": "1.2.2" |
| } |
| ] |
| } |
| ] |
| |
| -- ID/GO-1999-0001.json -- |
| { |
| "schema_version": "1.3.1", |
| "id": "GO-1999-0001", |
| "modified": "2000-01-01T00:00:00Z", |
| "published": "1999-01-01T00:00:00Z", |
| "aliases": [ |
| "CVE-1999-1111" |
| ], |
| "summary": "A summary", |
| "details": "Some details", |
| "affected": [ |
| { |
| "package": { |
| "name": "stdlib", |
| "ecosystem": "Go" |
| }, |
| "ranges": [ |
| { |
| "type": "SEMVER", |
| "events": [ |
| { |
| "introduced": "0" |
| }, |
| { |
| "fixed": "1.1.0" |
| }, |
| { |
| "introduced": "1.2.0" |
| }, |
| { |
| "fixed": "1.2.2" |
| } |
| ] |
| } |
| ], |
| "ecosystem_specific": { |
| "imports": [ |
| { |
| "path": "package", |
| "symbols": [ |
| "Symbol" |
| ] |
| } |
| ] |
| } |
| } |
| ], |
| "references": [ |
| { |
| "type": "FIX", |
| "url": "https://example.com/cl/123" |
| } |
| ], |
| "database_specific": { |
| "url": "https://pkg.go.dev/vuln/GO-1999-0001" |
| } |
| } |