internal/scan: enable module scan mode

zpavlinovic · zpavlinovic · commit 244182bca4b7 · 2023-12-01T19:54:08.000Z
Source scanning does not accept patterns but we jump out early if patterns are not present. We change this here. Change-Id: I48557f6f8202b1e8409cbb5f8c91b3d48e1edaee Reviewed-on: https://go-review.googlesource.com/c/vuln/+/546575 Run-TryBot: Zvonimir Pavlinovic <zpavlinovic@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Maceo Thompson <maceothompson@google.com> TryBot-Result: Gopher Robot <gobot@golang.org>
diff --git a/cmd/govulncheck/testdata/testfiles/source-module/module_short_curcuits.ct b/cmd/govulncheck/testdata/testfiles/source-module/module_short_curcuits.ct
@@ -1,6 +1,6 @@
 #####
 # Test that findings with callstacks or packages are not emitted in module mode
-$ govulncheck -json -scan module -C ${moddir}/multientry .
+$ govulncheck -json -scan module -C ${moddir}/multientry
 {
   "config": {
     "protocol_version": "v1.0.0",
diff --git a/internal/scan/source.go b/internal/scan/source.go
@@ -23,8 +23,8 @@ import (
 func runSource(ctx context.Context, handler govulncheck.Handler, cfg *config, client *client.Client, dir string) (err error) {
 	defer derrors.Wrap(&err, "govulncheck")
 
-	if len(cfg.patterns) == 0 {
-		return nil
+	if cfg.ScanLevel.WantPackages() && len(cfg.patterns) == 0 {
+		return nil // don't throw an error here
 	}
 	if !gomodExists(dir) {
 		return errNoGoMod

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`#####`
`2`	`2`	`# Test that findings with callstacks or packages are not emitted in module mode`
`3`		`-$ govulncheck -json -scan module -C ${moddir}/multientry .`
	`3`	`+$ govulncheck -json -scan module -C ${moddir}/multientry`
`4`	`4`	`{`
`5`	`5`	`"config": {`
`6`	`6`	`"protocol_version": "v1.0.0",`