blob: aa3ecaef0cdd2af8a0a7944887a6c9eacfd941ab [file] [log] [blame]
Copyright 2024 The Go Authors. All rights reserved.
Use of this source code is governed by a BSD-style
license that can be found in the LICENSE file.
Test: TestLintOffline/invalid_package_path
Description: In third party reports, package paths must pass validity checks in x/mod/module.CheckImportPath.
-- data/reports/GO-0000-0000.yaml --
id: GO-0000-0000
modules:
- module: golang.org/x/net
vulnerable_at: 1.2.3
packages:
- package: golang.org/x/net/http2
- module: invalid.
vulnerable_at: 1.0.0
packages:
- package: invalid.
summary: A summary of the issue in golang.org/x/net
description: description
cves:
- CVE-1234-0000
review_status: REVIEWED
-- golden --
modules[1] "invalid.": packages[0] "invalid.": malformed import path "invalid.": trailing dot in path element