blob: fa08e435eeb8b076b197466928ab663e84620e06 [file] [log] [blame]
Copyright 2024 The Go Authors. All rights reserved.
Use of this source code is governed by a BSD-style
license that can be found in the LICENSE file.
Test: TestLintOffline/module_package_prefix
Description: In third party reports, module names must be prefixes of package names.
-- data/reports/GO-0000-0000.yaml --
id: GO-0000-0000
modules:
- module: golang.org/x/net
vulnerable_at: 1.2.3
packages:
- package: golang.org/x/net/http2
- module: example.com/module
vulnerable_at: 1.0.0
packages:
- package: example.com/package
summary: A summary of the issue in golang.org/x/net
description: description
cves:
- CVE-1234-0000
review_status: REVIEWED
-- golden --
modules[1] "example.com/module": packages[0] "example.com/package": module must be a prefix of package