tree: 730c579e73d31fe0fa66b299a42108cc7a1e221f [path history] [tgz]
  1. log/
  2. static/
  3. store/
  4. testdata/
  5. config.go
  6. false_positive_records.gen.go
  7. false_positives.go
  8. false_positives_test.go
  9. gen_false_positives.go
  10. paths.go
  11. paths_test.go
  12. README.md
  13. server.go
  14. server_test.go
  15. triage.go
  16. triage_test.go
  17. update.go
  18. update_test.go
  19. util.go
  20. worker.go
  21. worker_test.go
internal/worker/README.md

Go Vulnerability Worker

The vuln worker triages incoming security advisories and scans selected modules for vulnerabilities.

The Go security team runs the worker on Google Cloud Platform‘s Cloud Run product. See the repo’s terraform directory for more on the deployment setup.

The main program for the worker, in the repo‘s cmd/worker directory, can also be used as a command-line tool for one-off executions of some of the server’s actions.

Browsing the worker

Accessing the worker server's home page from a browser requires authentication. We recommend cloud-run-proxy for painless browsing. Install it with

go install github.com/GoogleCloudPlatform/cloud-run-proxy@latest

Run it from the repo root with

./devtools/proxy_worker.sh prod