Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

x/pkgsite: link symbols on pkg.go.dev/vuln pages to the corresponding pkg.go.dev/<path>#<symbol> #52660

Open
julieqiu opened this issue May 2, 2022 · 1 comment
Labels
pkgsite vulndb

Comments

@julieqiu
Copy link
Contributor

@julieqiu julieqiu commented May 2, 2022

It would be nice if symbols on the pkg.go.dev/vuln pages linked to the corresponding symbol on the pkg.go.dev package page.

For example, on https://pkg.go.dev/vuln/GO-2021-0242, Rat.SetString and Rat.UnmarshalText should link to https://pkg.go.dev/math/big#Rat.SetString and https://pkg.go.dev/math/big#Rat.UnmarshalText.

We could change the description field to a markdown type in the yaml reports, and have it parsed by pkgsite when rendering the page.

/cc @golang/vulndb @golang/pkgsite

@julieqiu julieqiu added vulndb and removed pkgsite labels May 2, 2022
@gopherbot gopherbot added this to the pkgsite/unplanned milestone May 2, 2022
@julieqiu
Copy link
Contributor Author

@julieqiu julieqiu commented May 3, 2022

The details field for OSV supports markdown: https://ossf.github.io/osv-schema/#summary-details-fields.

We currently only populate details (example: https://vuln.go.dev/golang.org/x/text.json).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
pkgsite vulndb
Projects
None yet
Development

No branches or pull requests

2 participants