Package Info


CLI tool to report known CVE vulnerabilities in Go source code and binaries


govulncheck is a CLI tool to report known vulnerabilities that affect Go code. It uses static analysis of source code or a binary's symbol table to narrow down reports to only those that could affect the application.

By default, govulncheck makes requests to the Go vulnerability database at Requests to the vulnerability database contain only module paths, not code or other properties of your program. See for more. Use the -db flag to specify a different database, which must implement the specification at

License: Apache-2.0 AND BSD-3-Clause



Package Version Update ID Released Package Hub Version Platforms Subpackages
1.0.1-bp155.2.1 info openSUSE-2023-332 2023-10-27 15 SP5 Update
  • AArch64
  • ppc64le
  • s390x
  • x86-64
  • govulncheck