-
Create a CLI tool (or similar) which can determine the number of importers of a Go module's importable packages. (E.g., as a start, display the package with the most importers).
-
x/vuln's longtest builders started to fail consistently since (main repo's) [CL 596035](https://go.dev/cl/596035)
[https://ci.chromium.org/ui/p/golang/builders/ci/x_vuln-gotip-linux-amd64-longtest/b8…
-
An interesting point that came up in the context of discussing #63832 is that in some organizations data that is persisted "forever" is treated differently from data that is transient. Right now, loca…
-
Advisory [GHSA-v3x9-wrq5-868j](https://github.com/advisories/GHSA-v3x9-wrq5-868j) references a vulnerability in the following Go modules:
| Module |
| - |
| [github.com/apache/incubator-answer](https…
-
### What version of Go are you using (`go version`)?
$ go version
go version go1.20.3 darwin/arm64
### Does this issue reproduce at the latest version of golang.org/x/vuln?
Yes
### What…
-
Advisory [GHSA-rpcc-p8xm-rc6p](https://github.com/advisories/GHSA-rpcc-p8xm-rc6p) references a vulnerability in the following Go modules:
| Module |
| - |
| [github.com/containers/podman](https://pkg…
-
Tools that watch golang.org/dl endpoint to learn about new releases may benefit from this extra information.
Not every user is eager to update as soon as the new point release is available. But if th…
-
The inspection shows the package-specific JSON in the container image, but does not detect any vulnerabilities or malware.
Investigation result:
Symptoms #107 and #109 are also occurring, and when…
-
Hi, We are using `npm-run-all` in our project
We have started seeing CVE-2021-42740 vulnerability(Critical) from `npm-run-all` as it has got a dependency on`shell-quote` package.
As a quick fi…
-
### What version of Go are you using (`go version`)?
$ go version
go version go1.21-20230628-RC02 cl/544161750 +8b5fe5980c X:fieldtrack,boringcrypto linux/amd64
### Does this issue re…
ukai updated
2 months ago