osvscanner

package
v0.20.3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 17, 2024 License: Apache-2.0 Imports: 13 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	SeverityCritical = "CRITICAL"
	SeverityHigh     = "HIGH"
	SeverityModerate = "MODERATE"
	SeverityLow      = "LOW"
)

Variables

View Source 
var Analyzer = &analysis.Analyzer{
	Name:     "osv-scanner",
	Requires: []*analysis.Analyzer{sourcecode.Analyzer, archive.Analyzer},
	Run:      run,
	Rules: []*analysis.Rule{
		osvScannerCriticalSeverityDetected,
		osvScannerHighSeverityDetected,
		osvScannerModerateSeverityDetected,
		osvScannerLowSeverityDetected,
		scanningFailure,
		scanningParseFailure,
		scanningSucceeded,
	},
	ReadmeInfo: analysis.ReadmeInfo{
		Name:         "Vulnerability Scanner",
		Description:  "Detects critical vulnerabilities in Go modules and yarn lock files.",
		Dependencies: "[osv-scanner](https://github.com/google/osv-scanner), `sourceCodeUri`",
	},
}
View Source 
var GrafanaPackages = map[string]bool{
	"@grafana/data":    true,
	"@grafana/e2e":     true,
	"@grafana/runtime": true,
	"@grafana/toolkit": true,
	"@grafana/ui":      true,
}

Functions

func CacheGrafanaPackages added in v0.10.0 

func CacheGrafanaPackages(allPackages []lockfile.PackageDetails) ([]lockfile.PackageFlattened, error)

func FilterOSVResults 

func FilterOSVResults(source models.VulnerabilityResults, lockFile string) models.VulnerabilityResults

func IncludedByGrafanaPackage added in v0.10.0 

func IncludedByGrafanaPackage(packageName string, cache []lockfile.PackageFlattened) (bool, string)

Types

This section is empty.

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.