Registering/finding CVE for a PATH vulnerability when using go modules
It turns out that there’s a pretty easy-to-exploit vulnerability when using ‘go get’ and the new modules functionality in Go. My search fu isn’t finding any existing publication of the vulnerability in either google results … Continue reading Registering/finding CVE for a PATH vulnerability when using go modules