Google Git
Sign in
go / vulndb / fff41689576b5c9030fb40eb004ae037121fc2a6
commitfff41689576b5c9030fb40eb004ae037121fc2a6[log] [tgz]
authorJonathan Amsterdam <jba@google.com>Tue Mar 01 10:01:20 2022 -0500
committerJonathan Amsterdam <jba@google.com>Tue Mar 01 21:32:05 2022 +0000
treea31ab3abee8bf282444c920cac09c997fd40c939
parentcb65fb4068c7fb5551c3b6912c63938630895625 [diff]
internal/report,cmd/vulnreport: add GitHub Security Advisories

Reports now contain a list of GitHub Security Advisory IDs
that correspond to its CVEs.

The vulnreport fix command will populate this field.

Change-Id: I9488a603f2aab6f91ff84ec5a7e55fb5cde0085d
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/388676
Trust: Jonathan Amsterdam <jba@google.com>
Run-TryBot: Jonathan Amsterdam <jba@google.com>
Reviewed-by: kokoro <noreply+kokoro@google.com>
Reviewed-by: Damien Neil <dneil@google.com>
3 files changed
tree: a31ab3abee8bf282444c920cac09c997fd40c939
  1. .github/
  2. cmd/
  3. deploy/
  4. devtools/
  5. doc/
  6. internal/
  7. reports/
  8. terraform/
  9. .gitignore
  10. all_test.go
  11. AUTHORS
  12. checks.bash
  13. CONTRIBUTING.md
  14. CONTRIBUTORS
  15. go.mod
  16. go.sum
  17. LICENSE
  18. PATENTS
  19. README.md
  20. tools_test.go
README.md

The Go Vulnerability Database

This repository contains the reports for the Go Vulnerability Database.

If you are interested accessing data from the Go Vulnerability Database, see x/vuln for information. This repository is only used for adding new vulnerabilities.

Reporting a vulnerability

We are not accepting new vulnerability reports at this time. We will update this README.md once we are ready to receive reports.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries are distributed under the terms of the CC-BY 4.0 license. See x/vuln for information on how to access these entries.