-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
I am aware of the cyclonedx-gomod project, but I imagine that if the go tool got native support for sbom generation, it might also be able to provide information about vulnerable code that either are test-code only, or is not in use and does not affect a binary/module/package
The recent govulncheck effort made me think of the possibility of having the go tool create an SBOM (Software Bill of Materials) in a standard format like CycloneDX that could be consumed by existing tools like DependencyTrack. Somewhat similar to the recent docker sbom feature.