| Copyright 2024 The Go Authors. All rights reserved. |
| Use of this source code is governed by a BSD-style |
| license that can be found in the LICENSE file. |
| |
| Test: TestLintOffline/module_package_prefix |
| Description: In third party reports, module names must be prefixes of package names. |
| |
| -- data/reports/GO-0000-0000.yaml -- |
| id: GO-0000-0000 |
| modules: |
| - module: golang.org/x/net |
| vulnerable_at: 1.2.3 |
| packages: |
| - package: golang.org/x/net/http2 |
| - module: example.com/module |
| vulnerable_at: 1.0.0 |
| packages: |
| - package: example.com/package |
| summary: A summary of the issue in golang.org/x/net |
| description: description |
| cves: |
| - CVE-1234-0000 |
| review_status: REVIEWED |
| |
| -- golden -- |
| modules[1] "example.com/module": packages[0] "example.com/package": module must be a prefix of package |