43 lines
1.0 KiB
Go
43 lines
1.0 KiB
Go
|
// Copyright 2021 The Go Authors. All rights reserved.
|
||
|
|
// Use of this source code is governed by a BSD-style
|
||
|
|
// license that can be found in the LICENSE file.
|
||
|
|
|
||
|
|
package vulncheck
|
||
|
|
|
||
|
|
import (
|
||
|
|
"context"
|
||
|
|
"fmt"
|
||
|
|
|
||
|
|
"golang.org/x/tools/go/packages"
|
||
|
|
"golang.org/x/vuln/internal/client"
|
||
|
|
)
|
||
|
|
|
||
|
|
// FetchVulnerabilities fetches vulnerabilities that affect the supplied modules.
|
||
|
|
func FetchVulnerabilities(ctx context.Context, c *client.Client, modules []*packages.Module) ([]*ModVulns, error) {
|
||
|
|
mreqs := make([]*client.ModuleRequest, len(modules))
|
||
|
|
for i, mod := range modules {
|
||
|
|
modPath := mod.Path
|
||
|
|
if mod.Replace != nil {
|
||
|
|
modPath = mod.Replace.Path
|
||
|
|
}
|
||
|
|
mreqs[i] = &client.ModuleRequest{
|
||
|
|
Path: modPath,
|
||
|
|
}
|
||
|
|
}
|
||
|
|
resps, err := c.ByModules(ctx, mreqs)
|
||
|
|
if err != nil {
|
||
|
|
return nil, fmt.Errorf("fetching vulnerabilities: %v", err)
|
||
|
|
}
|
||
|
|
var mv []*ModVulns
|
||
|
|
for i, resp := range resps {
|
||
|
|
if len(resp.Entries) == 0 {
|
||
|
|
continue
|
||
|
|
}
|
||
|
|
mv = append(mv, &ModVulns{
|
||
|
|
Module: modules[i],
|
||
|
|
Vulns: resp.Entries,
|
||
|
|
})
|
||
|
|
}
|
||
|
|
return mv, nil
|
||
|
|
}
|