Skip to content

This is a project forked that has dependencies with vulnerabilities, for us to test out security products.

Notifications You must be signed in to change notification settings

sjultra/intentionally-vulnerable-golang-project

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

46 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Intentionally vulnerable Golang project

Build Status CircleCI

This is just a minimal repo for testing Sonatype's nancy against an intentionally vulnerable list of dependencies, and as well showing a small example of how to use it in Travis-CI and CircleCI

Project is currently setup to use both dep and go mod so you should be able to use either one.

To see how nancy will output when finding vulnerabilities, check out this build on Travis-CI or this build on CircleCI

About

This is a project forked that has dependencies with vulnerabilities, for us to test out security products.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Shell 59.9%
  • Go 40.1%