go-osv-scanner

module

v0.2.2 Latest Latest Go to latest Published: Feb 8, 2024 License: Apache-2.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/siroa/go-osv-scanner

Links

Open Source Insights

README ¶

go-osv-scanner

Query deps.dev for vulnerability information on dependent modules and output.

Build

make build

Command

Usage:
  scanner [flags]

Flags:
  -h, --help         help for scanner
  -m, --mod string   Specify the path to the go.mod file
  -v, --verbose      Output vulnerability details

Examples

$ scanner -m go.mod
Your module name: scanner
No vulnerabilities were found in github.com/edoardottt/depsdev:v0.0.8
No vulnerabilities were found in github.com/spf13/cobra:v1.8.0
No vulnerabilities were found in golang.org/x/mod:v0.14.0
Vulnerability Detection!: golang.org/x/net:v0.16.0
GHSA-4374-p667-p6c8
GHSA-qppj-fm5r-hxr3
GO-2023-2102
No vulnerabilities were found in golang.org/x/mod:v0.14.0
No vulnerabilities were found in github.com/avast/retry-go:v3.0.0+incompatible
No vulnerabilities were found in github.com/inconshreveable/mousetrap:v1.1.0
No vulnerabilities were found in github.com/spf13/pflag:v1.0.5

Licens

This repository is under Apache2.0 License.

Directories ¶

Path	Synopsis
cmd
osvscanner
osvscanner/cmd
pkg
api
format go-osv-scanner - CLI client to discover vulnerable modules.	go-osv-scanner - CLI client to discover vulnerable modules.
gomod go-osv-scanner - CLI client to discover vulnerable modules.	go-osv-scanner - CLI client to discover vulnerable modules.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL