Documentation
¶
Overview ¶
Package vulncheck provides an analysis command that runs vulnerability analysis using data from golang.org/x/vuln/vulncheck. This package requires go1.18 or newer.
Index ¶
Constants ¶
View Source
const GoVersionForVulnTest = "_GOPLS_TEST_VULNCHECK_GOVERSION"
GoVersionForVulnTest is an internal environment variable used in gopls testing to examine govulncheck behavior with a go version different than what `go version` returns in the system.
Variables ¶
View Source
var Govulncheck func(ctx context.Context, cfg *packages.Config, patterns string) (res command.VulncheckResult, _ error) = nil
Govulncheck runs the in-process govulncheck implementation. With go1.18+, this is swapped with the real implementation.
View Source
var VulnerablePackages func(ctx context.Context, snapshot source.Snapshot, modfile source.FileHandle) (*govulncheck.Result, error) = nil
VulnerablePackages queries the vulndb and reports which vulnerabilities apply to this snapshot. The result contains a set of packages, grouped by vuln ID and by module.
Functions ¶
func GoTagToSemver ¶ added in v0.11.0
This is a modified copy of pkgsite/internal/stdlib:VersionForTag.
Types ¶
type StackEntry ¶
type StackEntry = command.StackEntry
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.