Affected by GO-2025-3767
and 1 other vulnerabilities
GO-2025-3767: OSV-SCALIBR's Container Image Unpacking Vulnerable to Arbitrary File Write via Path Traversal in github.com/google/osv-scalibr
GO-2025-4149: OSV-SCALIBR has NULL Pointer Dereference in github.com/google/osv-scalibr
package
Version:
v0.2.0
Opens a new window with list of versions in this module.
Published: Apr 23, 2025
License: Apache-2.0
Opens a new window with license information.
Imports: 2
Opens a new window with list of imports.
Imported by: 3
Opens a new window with list of known importers.
Documentation
¶
Package inventory stores the scan result types SCALIBR can return.
Inventory stores the artifacts (e.g. software packages, security findings)
that a scan found.
Append adds one or more inventories to the current one.
IsEmpty returns true if there are no packages, findings, etc. in this Inventory.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.