Adds support for govulncheck vulnerability checker
go-vulncheck
Govulncheck reports known vulnerabilities that affect Go code. It uses static analysis of source code or a binary's symbol table to narrow down reports to only those that could affect the application.
Govulncheck is an official Go tool. It is developed and maintained by the Go security team (which is part of the official Go development team at Google) and backed by the official Go Vulnerability Database.
| Hook ID | Description |
|---|---|
go-vulncheck-mod
| Run 'cd $(mod_root $FILE); govulncheck [$ARGS] ./...' for each staged .go file
|
go-vulncheck-repo-mod
| Run 'cd $(mod_root); govulncheck [$ARGS] ./...' for each module in the repo
|
NOTE: Govulncheck only works with Go modules, hence only the mod hooks are implemented.
Install (via bingo)
bingo install golang.org/x/vuln/cmd/govulncheck
Help
- https://pkg.go.dev/golang.org/x/vuln/cmd/govulncheck
govulncheck -h
Pull Requests
- feat(govulncheck): add support for govulncheck by @TekWizely in #43
Full Changelog: v1.0.0-rc.2...v1.0.0-rc.3