Document removal of go.sum parsing in Dependency Scanning (!154890) · Merge requests · GitLab.org / GitLab

Aditya Tiwari requested to merge 436092-document-go-sum into master May 31, 2024

What does this MR do and why?

Document the change made in Dependency scanning on Golang 1.21 creates fals... (#436092 - closed)

In this change, we have stopped parsing go.sum as a fallback when encountering a non-fatal error during go.mod parsing.

Include go mod tidy as a prerequisite for performing a go dependency scan.

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #436092 (closed)

Edited May 31, 2024 by Aditya Tiwari

Document removal of go.sum parsing in Dependency Scanning

What does this MR do and why?

MR acceptance checklist

Merge request reports