Adds the ID field to all YAML reports and adds a lint check to enforce
that all reports have the correct value for the field. Also adds a
step to "vulnreport fix" to fix the ID if needed.
Change-Id: I51f4654e127528e1dbbfcb9c59da3658ad52098b
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/498281
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Modify report.Lint() so that it requires all excluded report (aside from Not Go Code) to also have module information. Also modifies createExcluded to be more robust against malformed and unreachable module paths in github issue titles.
This (in addition to go/dev/cl/446868) allows us to add some module information to every report. Ideally, this will allow us to check if anyone is importing the modules mentioned in the excluded reports for our metrics.
Change-Id: I783aea978760a70a0cccd30ad454d1fadfb85997
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/448837
Run-TryBot: Maceo Thompson <maceothompson@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
Tatiana Bradley
Maceo Thompson
Damien Neil