Loaʻa i ka pahu hana ʻōlelo hoʻolālā Go ka hiki ke nānā i nā nāwaliwali o nā hale waihona puke. No ka nānā ʻana i kāu mau papahana no ka loaʻa ʻana o nā modula me nā nāwaliwali i hoʻoponopono ʻole ʻia i ko lākou mau hilinaʻi, ua noi ʻia ka pono "govulncheck", e nānā ana i ka waihona code project a hōʻike i kahi hōʻike e pili ana i ke komo ʻana i nā hana vulnerable. Eia kekahi, ua hoʻomākaukau ʻia ka pūʻolo vulncheck, kahi e hāʻawi ai i kahi API no ka hoʻopili ʻana i nā loiloi i nā papahana like ʻole a me nā pono hana.
Hoʻokō ʻia ka nānā ʻana me ka hoʻohana ʻana i kahi waihona vulnerability i hana ʻia, i mālama ʻia e ka Go Security Team. Aia ka ʻikepili i ka ʻike e pili ana i nā nāwaliwali i ʻike ʻia i nā modula i hoʻolaha ʻia ma ka ʻōlelo Go. ʻOhi ʻia ka ʻikepili mai nā kumu like ʻole, me nā hōʻike CVE a me GHSA (GitHub Advisory Database), a me ka ʻike i hoʻouna ʻia e nā mea mālama pūʻulu. No ke noi ʻana i ka ʻikepili mai ka waihona, hāʻawi ʻia kahi waihona, API Web a me ka ʻike pūnaewele.
Source: opennet.ru