Skip to content
/ gomodscan Public

go.mod 扫描第三方代码包是否存在漏洞,基于trivy开发

License

Apache-2.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

j0rGeT/gomodscan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.idea
.idea
 
 
cmd
cmd
 
 
config
config
 
 
pkg
pkg
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

gomodscan

使用说明

当前版本只支持go扫描,后续会逐步支持其他语言的漏洞扫描

gomodscan scan --source-dir ./resource-scheduler

注意事项

需要保证当前目录下有db目录,目录中包括最新版本的trivy-db的数据库,通过读取数据库去查询当前的go.mod文件中是否存在漏洞

About

go.mod 扫描第三方代码包是否存在漏洞,基于trivy开发

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages