Skip to content

x/vulndb: make "vulnreport create" work with GHSA issues #52361

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
neild opened this issue Apr 14, 2022 · 1 comment
Closed

x/vulndb: make "vulnreport create" work with GHSA issues #52361

neild opened this issue Apr 14, 2022 · 1 comment
Labels
FrozenDueToAge vulncheck or vulndb Issues for the x/vuln or x/vulndb repo
Milestone
Unreleased

Comments

@neild
Copy link
Contributor

neild commented Apr 14, 2022

The vulnreport create command should work for issues referencing a GitHub security advisory as well as ones referencing a CVE:

$ vulnreport create 425
2022/04/14 12:36:01 create(425): expected last element of title to be the CVE ID; got "x/vulndb: potential Go vuln in github.com/flynn/noise: GHSA-g9mp-8g3h-3c5c"
@gopherbot gopherbot added this to the Unreleased milestone Apr 14, 2022
@tatianab tatianab self-assigned this Apr 14, 2022
@gopherbot
Copy link
Contributor

Change https://go.dev/cl/400495 mentions this issue: x/vulndb: support issues keyed by GHSA in vulnreport create``

@julieqiu julieqiu added the vulncheck or vulndb Issues for the x/vuln or x/vulndb repo label Sep 8, 2022
@golang golang locked and limited conversation to collaborators Sep 8, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
FrozenDueToAge vulncheck or vulndb Issues for the x/vuln or x/vulndb repo
Projects
Go Security
Status: No status
Milestone
Unreleased
Development

No branches or pull requests
4 participants
@neild @julieqiu @tatianab @gopherbot