aboutsummaryrefslogtreecommitdiff
path: root/_content/doc/security
AgeCommit message (Collapse)Author
2026-03-20_content/doc/security: explain why no CVSSRoland Shoemaker
Change-Id: Ia63c0c1cb78adc42526af70628442d33cff7a1ad Reviewed-on: https://go-review.googlesource.com/c/website/+/757301 Reviewed-by: Daniel McCarney <daniel@binaryparadox.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Roland Shoemaker <roland@golang.org> Reviewed-by: Neal Patel <nealpatel@google.com>
2026-02-17_content/doc/security/fips140: update status of v1.0.0 and add v1.26.0Filippo Valsorda
Change-Id: Ib3a64559632bef2e49b8aa94601c7a5c6a6a6964 Reviewed-on: https://go-review.googlesource.com/c/website/+/745921 Reviewed-by: Daniel McCarney <daniel@binaryparadox.net> Auto-Submit: Filippo Valsorda <filippo@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Roland Shoemaker <roland@golang.org> Reviewed-by: Mark Freeman <markfreeman@google.com>
2025-09-06_content/doc/security: add fips linkRoland Shoemaker
Change-Id: I664f160f2d667648d61d2fb6c8ea745721f0566d Reviewed-on: https://go-review.googlesource.com/c/website/+/691455 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Sean Liao <sean@liao.dev>
2025-08-13_content/doc/security/vuln: add WITHDRAWN to excluded reasonsEthan Lee
- Updated docs to add WITHDRAWN as a valid reason a report is excluded. Change-Id: I531d301553d8417eb82a796481be731b8cf8756e Reviewed-on: https://go-review.googlesource.com/c/website/+/695156 Auto-Submit: Ethan Lee <ethanalee@google.com> Reviewed-by: Markus Kusano <kusano@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
2025-07-15_content/doc/security: update FIPS 140-3 pageRoland Shoemaker
Change-Id: Ib98e5a2fe38d579859bf09babf3dd55d93a9ba8e Reviewed-on: https://go-review.googlesource.com/c/website/+/688255 Reviewed-by: Neal Patel <nealpatel@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Filippo Valsorda <filippo@golang.org>
2025-05-15_content/security: add note about release candidatesRoland Shoemaker
Change-Id: Ib561c1ac42c76af9c6002078459751a66081b092 Reviewed-on: https://go-review.googlesource.com/c/website/+/672835 Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
2025-02-05_content/doc: add FIPS 140-3 docs and release notes for Go 1.24Filippo Valsorda
Updates #68545 Change-Id: I6a6a465696648d269822cb258a7e4a6fff638920 Reviewed-on: https://go-review.googlesource.com/c/website/+/646336 Auto-Submit: Filippo Valsorda <filippo@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Cherry Mui <cherryyz@google.com> Reviewed-by: Daniel McCarney <daniel@binaryparadox.net> Reviewed-by: Russ Cox <rsc@golang.org>
2024-07-08_content/doc/security/vuln: add section on non-Go versionsTatiana Bradley
Add a section explaining how our tooling handles versions that are not recognized by the Go module proxy. Change-Id: Iee0f201c75e04993569ceff52f9808ca9246e997 Reviewed-on: https://go-review.googlesource.com/c/website/+/596496 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Tim King <taking@google.com> Reviewed-by: Roland Shoemaker <roland@golang.org>
2024-05-20_content/doc/security/vuln: document the review_status field for vulnsTatiana Bradley
Adds documentation explaining how to interpret the new ecosystem_specific.review_status field. Change-Id: I537c3ab9e205b7a5c840fd4b01197ed152f8ccc1 Reviewed-on: https://go-review.googlesource.com/c/website/+/586495 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Damien Neil <dneil@google.com>
2024-01-23_content/doc/security/vuln: add section on vulndb bulk downloadTatiana Bradley
Adds section describing the new bulk download option for vulndb. Change-Id: I347ec31a03504cafd965b342b73c641ab274753d Reviewed-on: https://go-review.googlesource.com/c/website/+/557739 Reviewed-by: Zvonimir Pavlinovic <zpavlinovic@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
2024-01-18_content/security: explain why no severity labelsRoland Shoemaker
Change-Id: I8ba0a75b9f0aecfafa923925c2533c166fa3f169 Reviewed-on: https://go-review.googlesource.com/c/website/+/536316 Reviewed-by: Damien Neil <dneil@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Emmanuel Odeke <emmanuel@orijtech.com> Auto-Submit: Roland Shoemaker <roland@golang.org>
2023-12-20all: fix and test for references to github.com/golang/go/issues and wikiRuss Cox
Insist on the canonical /issue/ and /wiki/ links instead. Change-Id: I7a2eedda69bc3fcd11466722a41f00c9dbaf283f Reviewed-on: https://go-review.googlesource.com/c/website/+/550323 Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
2023-12-08cmd/golangorg: check for invalid or broken links in served HTMLRuss Cox
Test that links are to /foo not https://go.dev/foo and also check that the links actually point at real pages. Manually fix problems that the test found. For golang/go#37047. Change-Id: I825eec3c2cadb9d259caff51cd893f3023ab533a Reviewed-on: https://go-review.googlesource.com/c/website/+/548059 Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Russ Cox <rsc@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
2023-12-08_content: rewrite links to https://go.dev/foo to /fooRuss Cox
We use /foo consistently so that people browsing on golang.google.cn are not redirected to go.dev. This CL is completely mechanical, replacing href="https://go.dev/ -> href="/ in HTML and replacing ](https://go.dev/ -> ](/ in Markdown. Change-Id: I8ac732d672075600c8e53c46787205454b196850 Reviewed-on: https://go-review.googlesource.com/c/website/+/548058 Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Auto-Submit: Russ Cox <rsc@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
2023-12-08_content: move security to doc/security, with redirectsRuss Cox
go.dev/security made sense as a URL when it was the security policy, which might be considered not quite user-facing documentation. But now it has grown into lots of definitely user-facing documentation, so it should be in /doc with all the other user docs. Move /security to /doc/security with redirects. Change-Id: I4747bbd0d1c110a4c7f0ae2fe0098326cc8637b8 Reviewed-on: https://go-review.googlesource.com/c/website/+/548119 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Roland Shoemaker <roland@golang.org> Auto-Submit: Russ Cox <rsc@golang.org> Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
generated by cgit v1.3 (git 2.53.0) at 2026-04-15 23:15:13 +0000