oneum20
oneum20
Hi @DmitriyLewen! Thanks for your review! I've addressed the feedback and updated the code accordingly. Could you please take another look when you have a moment? Thanks!
@DmitriyLewen Thanks for the refactor! Everything looks fine on my end. 😃
Hi @DmitriyLewen, I’ve tried resolving the conflicts. 😄
Hi @DmitriyLewen ! Trivy reads `go.mod` files from `$GOPATH/pkg/mod` to collect dependencies (e.g. in `gomodAnalyzer.collectDeps`), but vendor packages don’t have that. Is there a way to handle this case?
Packages under $GOPATH/pkg/mod have their own `go.mod` files. ```bash $ ls $GOPATH/pkg/mod/connectrpc.com/[email protected] LICENSE README.md buf.work.yaml grpchealth.go MAINTAINERS.md SECURITY.md go.mod grpchealth_test.go Makefile buf.gen.yaml go.sum internal ``` Packages in the vendor directory...