docs update on changes to go processing for dependency scanning
Release notes
Problem to solve
awareness of change
Documentation
Docs update
changing the way Go modules support for Dependency Scanning is implemented (and possibly fetching Go packages), what about updating user documentation to tell when the dependencies needs to be fetched and installed
gitlab-org/security-products/analyzers/gemnasium!196 (diffs, comment 592028476)
changing from the parsing go.sum to parsing the output go list -m all would be a big change because Gemnasium would fetch Go packages at runtime, which isn't the case right now. currently user docs wouldn't even reflect that change.
now, thinking about it, I believe that user docs should already cover that, and tell when packages are being fetched and installed (as opposed to only parsing files), depending on the package type