gobindep

command module

v0.1.6 Latest Latest Go to latest Published: Sep 8, 2020 License: MIT Imports: 8 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/JoakimSoderberg/gobindep

Links

Open Source Insights

README ¶

gobindep

This program lists the dependencies for Go binaries that were compiled using Go modules support.

Only the dependencies that are actually used by the final executable are included. This can be compared to the dependencies listed in go.mod that might include code that is only used for Tests for example.

Usage

gobindep your-go-executable
gobindep --help

Combined with security scanning

This tool can be used for doing a security scan of used dependencies such as Sonatype nancy:

https://github.com/sonatype-nexus-community/nancy

# Run security check on the dependencies in the go.sum file
$ nancy go.sum
...
Audited dependencies: 65, Vulnerable: 0

# Same thing but use the go introspection tool instead
$ go list -m all | nancy
...
Audited dependencies: 77, Vulnerable: 1

# Finally only check the dependencies we actually use in the final program!
$ gobindep your-go-executable | nancy
...
Audited dependencies: 45, Vulnerable: 0

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
module

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL