Google Git
Sign in
go / vulndb / df2d3d326300e2ae768f00351ffa96cc2c56cf54
commitdf2d3d326300e2ae768f00351ffa96cc2c56cf54[log] [tgz]
authorDamien Neil <dneil@google.com>Thu May 12 16:02:17 2022 -0700
committerDamien Neil <dneil@google.com>Fri May 13 18:33:00 2022 +0000
tree84b49180377c5f9659834173bcdf78072158cf61
parentcd49b1d0152d6ffea20df1c0ad64eaefaa29a8ef [diff]
all: use unprefixed SemVer 2.0.0 versions in reports

Standardize on the same version syntax as OSV: X.Y.Z, no "v" prefix.
Avoids confusion about what a "go"-prefixed version is: A tag (in
which case we need to support "go1.19rc1") or a weird semver version?

Fixes golang/go#52877.

Change-Id: I4053e765f93d8c20a890d5481d264f009831b5b8
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/406155
Reviewed-by: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Damien Neil <dneil@google.com>
145 files changed
tree: 84b49180377c5f9659834173bcdf78072158cf61
  1. .github/
  2. cmd/
  3. deploy/
  4. devtools/
  5. doc/
  6. internal/
  7. reports/
  8. terraform/
  9. .gitignore
  10. all_test.go
  11. AUTHORS
  12. checks.bash
  13. CONTRIBUTING.md
  14. CONTRIBUTORS
  15. go.mod
  16. go.sum
  17. LICENSE
  18. PATENTS
  19. README.md
  20. tools_test.go
README.md

The Go Vulnerability Database

This repository contains the reports for the Go Vulnerability Database.

If you are interested accessing data from the Go Vulnerability Database, see x/vuln for information. This repository is only used for adding new vulnerabilities.

Reporting a vulnerability

We are not accepting new vulnerability reports at this time. We will update this README.md once we are ready to receive reports.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries are distributed under the terms of the CC-BY 4.0 license. See x/vuln for information on how to access these entries.