Integrate with deps.dev
https://security.googleblog.com/2023/04/announcing-depsdev-api-critical.html https://docs.deps.dev/api/v3alpha/
curl 'https://api.deps.dev/v3alpha/systems/go/packages/github.com%2Fdeepmap%2Foapi-codegen' | jq
This will allow at least:
- dependency graph not just list of dependencies
- licensing information #19 (closed)
- CVE checking
- OSSRF scorecards