| commit | b964f56b661c6d2fe7a5c148f6b90502581b6ac6 | [log] [tgz] |
|---|---|---|
| author | Jonathan Amsterdam <jba@google.com> | Thu Jan 06 16:01:16 2022 -0500 |
| committer | Jonathan Amsterdam <jba@google.com> | Fri Jan 07 21:34:03 2022 +0000 |
| tree | f3ada4b451b06a1f453abdc9653da728d3778b2f | |
| parent | aef190e609c9d0c0f38a6396486e3f75ecf8303c [diff] |
internal/worker: update false positives only if newer Instead of inserting false positives only once when the DB is new, update them on each run. That way, we can add to our list of false positives and have those changes reflected in the DB. To do that safely, we have to make sure we don't update a false positive record that has changed since the program's internal data was created. We use the commit times for that. Change-Id: I39d21940af2a302f7860a7e8563a91c88621b12a Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/376298 Trust: Jonathan Amsterdam <jba@google.com> Run-TryBot: Jonathan Amsterdam <jba@google.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Julie Qiu <julie@golang.org>
This repository contains the reports for the Go Vulnerability Database.
If you are interested accessing data from the Go Vulnerability Database, see x/vuln for information. This repository is only used for adding new vulnerabilities.
We are not accepting new vulnerability reports at this time. We will update this README.md once we are ready to receive reports.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries are distributed under the terms of the CC-BY 4.0 license. See x/vuln for information on how to access these entries.