go/.github/ISSUE_TEMPLATE/04-vuln.yml

name: Go vulnerability management - bugs and feature requests
description: Issues or feature requests about Go vulnerability management
title: "x/vuln: issue title"
labels: ["vulncheck or vulndb"]
body:
  - type: markdown
    attributes:
      value: "Please answer these questions before submitting your issue. Thanks! To add a new vulnerability to the Go vulnerability database (https://vuln.go.dev), see https://go.dev/s/vulndb-report-new. To report an issue about a report, see https://go.dev/s/vulndb-report-feedback."
  - type: textarea
    id: govulncheck-version
    attributes:
      label: govulncheck version
      description: What version of govulncheck are you using (`govulncheck -version`)?
      placeholder: |
        Go: devel go1.22-0262ea1ff9 Thu Oct 26 18:46:50 2023 +0000
        Scanner: govulncheck@v1.0.2-0.20231108200754-fcf7dff7b242
        DB: https://vuln.go.dev
        DB updated: 2023-11-21 15:39:17 +0000 UTC
    validations:
      required: true
  - type: textarea
    id: reproduce-latest-version
    attributes:
      label: "Does this issue reproduce at the latest version of golang.org/x/vuln?"
    validations:
      required: true
  - type: textarea
    id: go-env
    attributes:
      label: "Output of `go env` in your module/workspace:"
      render: shell
    validations:
      required: true
  - type: textarea
    id: what-did-you-do
    attributes:
      label: "What did you do?"
      description: "If possible, provide a recipe for reproducing the error. A complete runnable program is good. A link on [go.dev/play](https://go.dev/play) is best."
    validations:
      required: true
  - type: textarea
    id: actual-behavior
    attributes:
      label: "What did you see happen?"
    validations:
      required: true
  - type: textarea
    id: expected-behavior
    attributes:
      label: "What did you expect to see?"
    validations:
      required: true
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`name: Go vulnerability management - bugs and feature requests`
			`description: Issues or feature requests about Go vulnerability management`
.github: try "import/path: issue title" instead of "affected/package: " The multiple issue templates pre-populate the issue title with a prefix that Go issues customarily have. The "affected/package" phrase is short for "the import path of the affected package". Let's try simplifying it to just "import/path", and also include "issue title" to make the title a more representative template of what the final title should look like. Updates #29839. Change-Id: I9736d24cf3d0a51536ac13dd07dd189fb51da021 Reviewed-on: https://go-review.googlesource.com/c/go/+/544556 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Heschi Kreinick <heschi@google.com> Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Sean Liao <sean@liao.dev> 2023-11-22 12:31:37 -07:00			`title: "x/vuln: issue title"`
.github: clean up issue forms bugs: * drop unused labels * drop the reproduce checkbox: it's not a strong signal and introduces clutter in github as a task list * link go.dev/play govuln: * use correct label * ask for version of the tool * link go.dev/play telemetry: * align title with purpose Change-Id: Id7dd876e518c75dc22e9aec43d9af6e18af088fc Reviewed-on: https://go-review.googlesource.com/c/go/+/544775 Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Michael Knyszek <mknyszek@google.com> TryBot-Bypass: Dmitri Shuralyov <dmitshur@golang.org> 2023-11-23 11:43:12 -07:00			`labels: ["vulncheck or vulndb"]`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`body:`
			`- type: markdown`
			`attributes:`
			`value: "Please answer these questions before submitting your issue. Thanks! To add a new vulnerability to the Go vulnerability database (https://vuln.go.dev), see https://go.dev/s/vulndb-report-new. To report an issue about a report, see https://go.dev/s/vulndb-report-feedback."`
github: switch seen/expected order in issue forms Also fixup wording across other templates. Fixes #64890 Change-Id: I6f9ade440b6702ddfafc21ccb7fbc6cabc2b856e Reviewed-on: https://go-review.googlesource.com/c/go/+/553155 Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Joseph Tsai <joetsai@digital-static.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Bryan Mills <bcmills@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> 2023-12-29 12:09:16 -07:00			`- type: textarea`
.github: clean up issue forms bugs: * drop unused labels * drop the reproduce checkbox: it's not a strong signal and introduces clutter in github as a task list * link go.dev/play govuln: * use correct label * ask for version of the tool * link go.dev/play telemetry: * align title with purpose Change-Id: Id7dd876e518c75dc22e9aec43d9af6e18af088fc Reviewed-on: https://go-review.googlesource.com/c/go/+/544775 Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Michael Knyszek <mknyszek@google.com> TryBot-Bypass: Dmitri Shuralyov <dmitshur@golang.org> 2023-11-23 11:43:12 -07:00			`id: govulncheck-version`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`attributes:`
.github: clean up issue forms bugs: * drop unused labels * drop the reproduce checkbox: it's not a strong signal and introduces clutter in github as a task list * link go.dev/play govuln: * use correct label * ask for version of the tool * link go.dev/play telemetry: * align title with purpose Change-Id: Id7dd876e518c75dc22e9aec43d9af6e18af088fc Reviewed-on: https://go-review.googlesource.com/c/go/+/544775 Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Michael Knyszek <mknyszek@google.com> TryBot-Bypass: Dmitri Shuralyov <dmitshur@golang.org> 2023-11-23 11:43:12 -07:00			`label: govulncheck version`
			description: What version of govulncheck are you using (`govulncheck -version`)?
			`placeholder: \|`
			`Go: devel go1.22-0262ea1ff9 Thu Oct 26 18:46:50 2023 +0000`
			`Scanner: govulncheck@v1.0.2-0.20231108200754-fcf7dff7b242`
			`DB: https://vuln.go.dev`
			`DB updated: 2023-11-21 15:39:17 +0000 UTC`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`validations:`
			`required: true`
			`- type: textarea`
			`id: reproduce-latest-version`
			`attributes:`
			`label: "Does this issue reproduce at the latest version of golang.org/x/vuln?"`
			`validations:`
			`required: true`
			`- type: textarea`
github: switch seen/expected order in issue forms Also fixup wording across other templates. Fixes #64890 Change-Id: I6f9ade440b6702ddfafc21ccb7fbc6cabc2b856e Reviewed-on: https://go-review.googlesource.com/c/go/+/553155 Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Joseph Tsai <joetsai@digital-static.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Bryan Mills <bcmills@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> 2023-12-29 12:09:16 -07:00			`id: go-env`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`attributes:`
github: switch seen/expected order in issue forms Also fixup wording across other templates. Fixes #64890 Change-Id: I6f9ade440b6702ddfafc21ccb7fbc6cabc2b856e Reviewed-on: https://go-review.googlesource.com/c/go/+/553155 Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Joseph Tsai <joetsai@digital-static.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Bryan Mills <bcmills@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> 2023-12-29 12:09:16 -07:00			label: "Output of `go env` in your module/workspace:"
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`render: shell`
			`validations:`
			`required: true`
			`- type: textarea`
			`id: what-did-you-do`
			`attributes:`
			`label: "What did you do?"`
.github: clean up issue forms bugs: * drop unused labels * drop the reproduce checkbox: it's not a strong signal and introduces clutter in github as a task list * link go.dev/play govuln: * use correct label * ask for version of the tool * link go.dev/play telemetry: * align title with purpose Change-Id: Id7dd876e518c75dc22e9aec43d9af6e18af088fc Reviewed-on: https://go-review.googlesource.com/c/go/+/544775 Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Michael Knyszek <mknyszek@google.com> TryBot-Bypass: Dmitri Shuralyov <dmitshur@golang.org> 2023-11-23 11:43:12 -07:00			`description: "If possible, provide a recipe for reproducing the error. A complete runnable program is good. A link on [go.dev/play](https://go.dev/play) is best."`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`validations:`
			`required: true`
			`- type: textarea`
github: switch seen/expected order in issue forms Also fixup wording across other templates. Fixes #64890 Change-Id: I6f9ade440b6702ddfafc21ccb7fbc6cabc2b856e Reviewed-on: https://go-review.googlesource.com/c/go/+/553155 Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Joseph Tsai <joetsai@digital-static.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Bryan Mills <bcmills@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> 2023-12-29 12:09:16 -07:00			`id: actual-behavior`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`attributes:`
github: switch seen/expected order in issue forms Also fixup wording across other templates. Fixes #64890 Change-Id: I6f9ade440b6702ddfafc21ccb7fbc6cabc2b856e Reviewed-on: https://go-review.googlesource.com/c/go/+/553155 Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Joseph Tsai <joetsai@digital-static.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Bryan Mills <bcmills@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> 2023-12-29 12:09:16 -07:00			`label: "What did you see happen?"`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`validations:`
			`required: true`
			`- type: textarea`
github: switch seen/expected order in issue forms Also fixup wording across other templates. Fixes #64890 Change-Id: I6f9ade440b6702ddfafc21ccb7fbc6cabc2b856e Reviewed-on: https://go-review.googlesource.com/c/go/+/553155 Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Joseph Tsai <joetsai@digital-static.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Bryan Mills <bcmills@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> 2023-12-29 12:09:16 -07:00			`id: expected-behavior`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`attributes:`
github: switch seen/expected order in issue forms Also fixup wording across other templates. Fixes #64890 Change-Id: I6f9ade440b6702ddfafc21ccb7fbc6cabc2b856e Reviewed-on: https://go-review.googlesource.com/c/go/+/553155 Auto-Submit: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Joseph Tsai <joetsai@digital-static.net> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Dmitri Shuralyov <dmitshur@golang.org> Reviewed-by: Bryan Mills <bcmills@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> 2023-12-29 12:09:16 -07:00			`label: "What did you expect to see?"`
github: use forms for issue templates Migrate from markdown github issue templates to more user friendly yaml templates. Fixes #63970 Change-Id: I1baf8989f72c1b98bf0027bbb794c0324ea21e32 GitHub-Last-Rev: 725110bf87fa879c2787158a68d01612665ad4e6 GitHub-Pull-Request: golang/go#63655 Reviewed-on: https://go-review.googlesource.com/c/go/+/536776 Reviewed-by: Heschi Kreinick <heschi@google.com> Run-TryBot: t hepudds <thepudds1460@gmail.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Heschi Kreinick <heschi@google.com> 2023-11-22 10:20:35 -07:00			`validations:`
			`required: true`