diff options
author | Peter Marko <peter.marko@siemens.com> | 2023-03-12 09:45:43 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-03-14 17:10:00 +0000 |
commit | 3a861f2204e18ddf4a9a4add06b84f7b6f36f73a (patch) | |
tree | 772b2daf6a92a69936c2cafe030b7d72734c52c4 /meta/recipes-devtools/go/go-common.inc | |
parent | 1f6b7ec6a45398ee1c58071effd3e46df6befe0e (diff) | |
download | poky-3a861f2204e18ddf4a9a4add06b84f7b6f36f73a.tar.gz |
go: use go as CVE product for all golang recipe veriants
All golang vulnerabilities are reported under product 'go'.
By default there is no vulnerability reported for images with
golang components because none of used golang packages
have correct CVE product set:
* go-binary-native
* go-runtime
* go-cross-*
(From OE-Core rev: 09f3a27a809bbec9b08c4e4a2b846b68f386c35c)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-devtools/go/go-common.inc')
-rw-r--r-- | meta/recipes-devtools/go/go-common.inc | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-devtools/go/go-common.inc b/meta/recipes-devtools/go/go-common.inc index 83f8db7b39..96e32eeb97 100644 --- a/meta/recipes-devtools/go/go-common.inc +++ b/meta/recipes-devtools/go/go-common.inc | |||
@@ -19,6 +19,9 @@ S = "${WORKDIR}/go" | |||
19 | B = "${S}" | 19 | B = "${S}" |
20 | UPSTREAM_CHECK_REGEX = "(?P<pver>\d+(\.\d+)+)\.src\.tar" | 20 | UPSTREAM_CHECK_REGEX = "(?P<pver>\d+(\.\d+)+)\.src\.tar" |
21 | 21 | ||
22 | # all recipe variants are created from the same product | ||
23 | CVE_PRODUCT = "go" | ||
24 | |||
22 | INHIBIT_PACKAGE_DEBUG_SPLIT = "1" | 25 | INHIBIT_PACKAGE_DEBUG_SPLIT = "1" |
23 | SSTATE_SCAN_CMD = "true" | 26 | SSTATE_SCAN_CMD = "true" |
24 | 27 | ||