Affected by GO-2023-1901 and 6 other vulnerabilities

GO-2023-1901: Pipelines do not validate child UIDs in github.com/tektoncd/pipeline

GO-2026-4730: Tekton Pipelines controller panic via long resolver name in TaskRun/PipelineRun in github.com/tektoncd/pipeline

GO-2026-5272: Tekton Pipeline: Git Resolver Unsanitized Revision Parameter Enables git Argument Injection Leading to RCE in github.com/tektoncd/pipeline

GO-2026-5486: Tekton Pipelines: HTTP Resolver Unbounded Response Body Read Enables Denial of Service via Memory Exhaustion in github.com/tektoncd/pipeline

GO-2026-5630: Tekton Pipelines has VerificationPolicy regex pattern bypass via substring matching in github.com/tektoncd/pipeline

GO-2026-5643: Tekton Pipelines: VolumeMount path restriction bypass via missing filepath.Clean in /tekton/ check in github.com/tektoncd/pipeline

GO-2026-5711: Tekton Pipelines: Git resolver API mode leaks system-configured API token to user-controlled serverURL in github.com/tektoncd/pipeline

diff

package

v1.3.3 Latest Latest Go to latest Published: Mar 17, 2026 License: Apache-2.0 Imports: 0 Imported by: 4

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/tektoncd/pipeline

Links

Documentation ¶

Index ¶

func PrintWantGot(diff string) string

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func PrintWantGot ¶

func PrintWantGot(diff string) string

PrintWantGot takes a diff string generated by cmp.Diff and returns it in a consistent format for reuse across all of our tests. This func assumes that the order of arguments passed to cmp.Diff was (want, got) or, in other words, the expectedResult then the actualResult.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL