Open
Description
I noticed that go packages data is old, so there are many packages with missing versions. I'm using osv-scanner for license scanning, so when updating a package to latest version, in case it's missing on deps.dev the license will not be identified, which causes the scan to fail:
We can add license override to overcome this, but it requires a lot of maintenance effort.
Can you update go packages data more frequently?
Metadata
Assignees
Labels
No labels
Activity