Skip to content
This repository has been archived by the owner on Aug 14, 2024. It is now read-only.
/ vulnny Public archive

A tool to scan for publicly known Go vulnerabilities using the Go vulnerability database

License

MIT license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tjgurwara99/vulnny

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
.vscode
.vscode
 
 
internal
internal
 
 
testdata/vuln
testdata/vuln
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
main_test.go
main_test.go
 
 

Repository files navigation

Vulnny is a simple tool to find vulnerabilities of your Go programs

Why create yet another analysis tool to do the same thing?

Well simply speaking the govulncheck tool has adopted the OSV format which is relatively new and for quite some time, SARIF format has become the defacto standard for Security aggregators. Hence I decided to use the Go's vulncheck library to get the vulnerabilities and convert them into the SARIF format. This tool is mostly for educational purposes, as I wanted to learn about the hurdles tool adopters might have when thinking about supporting SARIF outputs.

About

A tool to scan for publicly known Go vulnerabilities using the Go vulnerability database

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases 5

v0.0.5 Latest
Jul 24, 2023
+ 4 releases

Packages

No packages published

Languages