| commit | b6f947eaed2d0a3afe9218f9b72424019224f70e | [log] [tgz] |
|---|---|---|
| author | Tatiana Bradley <tatianabradley@google.com> | Fri Nov 10 14:25:03 2023 -0500 |
| committer | Tatiana Bradley <tatianabradley@google.com> | Fri Nov 10 21:18:49 2023 +0000 |
| tree | acb10760e860c421134ee7ef3d1b4ed2a3ff8310 | |
| parent | 2b70865629d1adadda1ae4c617c8ef3f514854eb [diff] |
internal/database, deploy: modify validation order for deploy Instead of checking that the current database index is valid before deploy (which ensures that an invalid database can't be fixed), check that the new database to deploy is valid (including with respect to the reports in the old database) before deploy. If it is valid, deploy it, then check afterwards that the newly deployed database is valid. This allows issues caused by, e.g., incomplete deploys, to be fixed without manual intervention, while still alerting us if there is a persistent problem. Change-Id: Ib57901bcada5a4b823d184bef25a64559a8e9e4a Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/541615 Reviewed-by: Damien Neil <dneil@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.
Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.
Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.
The privacy policy for govulncheck can be found at https://vuln.go.dev/privacy.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries are distributed under the terms of the CC-BY-4.0 license. See go.dev/security/vuln/database for information on how to access these entries.