Revisions of govulncheck
buildservice-autocommit
accepted
request 1176500
from
Jeff Kowalczyk (jfkw)
(revision 14)
baserev update by copy to link target
Jeff Kowalczyk (jfkw)
accepted
request 1176498
from
Jeff Kowalczyk (jfkw)
(revision 13)
- Update to version 1.1.1: * all: remove unit tests for staticcheck, unparam, and spellcheck * internal/sarif,cmd/govulncheck: publicize sarif * internal/vulncheck: load source code for scan symbol mode only * all: update golang.org/x/tools * internal/vulncheck: emit progress message instead of warning * internal/scan: improve textual output for binary traces * internal/buildinfo: avoid panic on nil symbol for elf * internal/sarif: improve GOMODCACHE relative paths * internal/sarif: add version to module info for locations * internal/sarif: remove originalURIBaseIds * go.mod: update golang.org/x dependencies * internal/gosym: preallocate inlined call slice * internal/vulncheck: improve progress message for binaries * internal/vulncheck: emit fetch db and vuln checking progress messages * internal/scan: print progress messages only in verbose mode * internal/scan: refactor flag usage in text handler * Revert "internal/scan: disallow multiple patterns in source mode" * internal/sarif: add missing required Message field * internal/scan: disallow multiple patterns in source mode * internal/vulncheck: use new improved DeleteSyntheticNodes
buildservice-autocommit
accepted
request 1168421
from
Jeff Kowalczyk (jfkw)
(revision 12)
baserev update by copy to link target
Jeff Kowalczyk (jfkw)
accepted
request 1168420
from
Jeff Kowalczyk (jfkw)
(revision 11)
- Update to version 1.1.0: * internal/openvex: add vex types * internal/sarif: compute relative paths for findings * internal/sarif: remove unused field * go.mod: update golang.org/x dependencies * internal/sarif,internal/scan,internal/traces: clean up tests * internal/sarif: add region part of the physical location * internal/sarif: add code flows * cmd/govulncheck: clean up test * cmd/govulncheck: make test case config data * cmd/govulncheck: add comment capability to fixups * cmd/govulncheck: remove unnecessary fixups * cmd/govulncheck: make fixup part of a test case * cmd/govulncheck: extract stdlib into special test case * cmd/govulncheck: restore parallelism for tests * cmd/govulncheck: add nogomod test case * cmd/govulncheck: restructure testdata tests * cmd/govulncheck: add sarif test for binaries * internal/sarif: add stacks * internal/sarif: add result message * internal/vulncheck: get correctly package for instantiated functions * internal/sarif: add result stubs to run object * internal/govulncheck: add scan mode to config * internal/vulncheck: delete only synthetic nodes not related to generics * internal/scan: add more info to validation errors * internal/sarif: add rules * internal/scan: fix name of the error variable * internal/sarif: add handler * internal/scan: add sarif flag * internal/scan: add types for format, show, mode, and scan flags
buildservice-autocommit
accepted
request 1155753
from
Jeff Kowalczyk (jfkw)
(revision 10)
baserev update by copy to link target
Jeff Kowalczyk (jfkw)
accepted
request 1155752
from
Jeff Kowalczyk (jfkw)
(revision 9)
- Update to version 1.0.4: * cmd/govulncheck: mask line numbers and columns * internal/scan: remove redundant new lines * internal/vulncheck: add position for sinks in findings' trace * internal/scan: put -show <option> into single quotes * internal/buildinfo: do module-level analysis with no PCLN table * internal/scan: add a newline after summary * internal/test: add more info on GoBuild failures * internal/scan: remove extra dot in a comment * cmd/govulncheck: fix vendor test * internal/vulncheck: refactor a loop with an append * cmd/govulncheck: fix stripped bin test * cmd/govulncheck: update vendor tests * cmd/govulncheck: add more tests and reorganize them * internal/vulncheck: add package and module mode for binaries * internal/scan: replace Source with Symbol in text output * internal/scan: fix error statuses for scan={package|module} * internal/scan: add -show verbose flag * internal/scan: overhaul text output * internal/scan: simplify redundant error checking * internal/scan: add scan level to testdata * cmd/govulncheck/integration: update expectations for stackrox * internal/vulncheck: support osv entries with no pkg info * internal/vulncheck: remove redundant symbol check * internal/vulncheck: simplify vulnerability detection - Update to version 1.0.3: * internal/scan: add binary extract mode * internal/scan, vulncheck: use packages.load for mod info * internal/govulncheck: briefly explain streaming JSON
buildservice-autocommit
accepted
request 1139545
from
Jeff Kowalczyk (jfkw)
(revision 8)
baserev update by copy to link target
Jeff Kowalczyk (jfkw)
accepted
request 1139543
from
Jeff Kowalczyk (jfkw)
(revision 7)
- Update to version 1.0.2:
buildservice-autocommit
accepted
request 1113319
from
Jeff Kowalczyk (jfkw)
(revision 6)
baserev update by copy to link target
Jeff Kowalczyk (jfkw)
accepted
request 1113318
from
Jeff Kowalczyk (jfkw)
(revision 5)
- Update to version 1.0.1: * all: go get golang.org/x/tools@74c255b * internal/scan: change the way convert mode works * internal/scan: add -version flag * internal/vulncheck/internal/gosym: fix typo * internal/gosym: update binary mode version parsing * internal/scan: refactor to remove redundant code * vulncheck/internal/gosym: add support for go versions > 1.20 * internal/vulncheck/internal/buildinfo: skip failing tests * cmd/govulncheck: skip TestCommand in short mode - _service add setversion to automatically update spec Version
buildservice-autocommit
accepted
request 1110781
from
Jeff Kowalczyk (jfkw)
(revision 4)
baserev update by copy to link target
Jeff Kowalczyk (jfkw)
accepted
request 1110619
from
Lubos Kocman (lkocman)
(revision 3)
- Correction of license based on legaldb scan Add Apache 2.0 for google/go-cmdtest and vendor/github.com/google/renameio
Ana Guerrero (anag+factory)
accepted
request 1099364
from
Jeff Kowalczyk (jfkw)
(revision 2)
initialized devel package after accepting 1099364
Jeff Kowalczyk (jfkw)
accepted
request 1099354
from
Jeff Kowalczyk (jfkw)
(revision 1)
New package govulncheck version 1.0.0 is a CLI tool to report known CVE vulnerabilities in Go source code and binaries.
Displaying all 14 revisions