Skip to content
/ snyk-go-plugin Public

Basic Snyk CLI plugin for Golang support

License

View license
14 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

snyk/snyk-go-plugin

BranchesTags

Repository files navigation

Snyk logo

Snyk helps you find, fix and monitor for known vulnerabilities in your dependencies, both on an ad hoc basis and as part of your CI (Build) system.

ℹ️ This repository is only a plugin to be used with the Snyk CLI tool. To use this plugin to test and fix vulnerabilities in your project, install the Snyk CLI tool first. Head over to snyk.io to get started.

Snyk Golang CLI Plugin

This plugin provides dependency metadata for Golang projects that use dep (and have a Gopkg.lock file), or govendor (and have a vendor/vendor.json file).

Breaking changes in v2.x

When upgrading from v1 to v2 of this plugin, note that PackageURL information will be present by default when invoking the inspect() function.

  {
    "name": "golang.org/x/exp/slices"
    "version": "#2e198f4a06a1"
+   "purl": "pkg:golang/golang.org/x/exp@v0.0.0-20230522175609-2e198f4a06a1#slices"
  }

To disable this behaviour, it can be turned off through the options passed to the function:

  const result = await inspect(
    process.cwd(),
    "go.mod",
-   {},
+   { configuration: { includePackageUrls: false } },
  )

About

Basic Snyk CLI plugin for Golang support

Resources

Readme

License

View license

Contributing

Contributing
Activity
Custom properties

Stars

14 stars

Watchers

92 watching

Forks

9 forks
Report repository

Releases 82

v2.0.2 Latest
Jan 29, 2026
+ 81 releases

Packages

No packages published

Contributors 35
+ 21 contributors

Languages