osv: document package Change-Id: I4a46a2b83792f41daf97e76833bd71177eb32902 Reviewed-on: https://team-review.git.corp.google.com/c/golang/vulndb/+/1063815 Reviewed-by: Roland Shoemaker <bracewell@google.com>

commit: e0c00fae09e687ec6febda47ae3bc7552fc7b988 [log] [tgz]
author: Roland Shoemaker <roland@golang.org> Tue Apr 20 10:59:41 2021 -0700
committer: Roland Shoemaker <bracewell@google.com> Tue Apr 20 18:00:48 2021 +0000
tree: 6c8fd96e51968d06cbbaa95f2e0390677b28ddff
parent: 820ef4ac37d06f404848b545f334406d983bd4a8 [diff]
diff --git a/osv/json.go b/osv/json.go
index 56fe4f7..9938b53 100644
--- a/osv/json.go
+++ b/osv/json.go

@@ -2,6 +2,22 @@
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 
+// Package osv implements the <name-pending> shared vulnerability
+// format, with the Go specific extensions.
+//
+// As this package is intended for use with the Go vulnerability
+// database, only the subset of features which are used by that
+// database are implemented (for instance, only the SEMVER affected
+// range type is implemented).
+//
+// The format of the Go specific "extra" JSON object is as follows:
+//
+//   {
+//     "symbols": [ string ],
+//     "goos": [ string ],
+//     "goarch": [ string ],
+//     "url": string
+//   }
 package osv
 
 import (
commit	e0c00fae09e687ec6febda47ae3bc7552fc7b988	[log] [tgz]
author	Roland Shoemaker <roland@golang.org>	Tue Apr 20 10:59:41 2021 -0700
committer	Roland Shoemaker <bracewell@google.com>	Tue Apr 20 18:00:48 2021 +0000
tree	6c8fd96e51968d06cbbaa95f2e0390677b28ddff
parent	820ef4ac37d06f404848b545f334406d983bd4a8 [diff]