feat: add support for Go's built-in BuildInfo dependency data

### Description

Go has the module dependency data available right in the binary, via the `Buildinfo` data structure. In Go itself, the data is available through [ReadBuildInfo](https://pkg.go.dev/runtime/debug#ReadBuildInfo) function.

### Why?

Go is widely used, and cve-bin-tool already supports extracting the dependency information from `go.mod`. Having an ability to extract the binary-bound data will significantly enrich the cve-bin-tool's results for cases when no source code is available. 

### Anything else?

Similar to #5232, I'm willing to implement this functionality if the idea is accepted.




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat: add support for Go's built-in BuildInfo dependency data #5243

Description

Why?

Anything else?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

feat: add support for Go's built-in BuildInfo dependency data #5243

Description

Description

Why?

Anything else?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions