From 46c14cb4fa5d43b35a40eee0bec41df8aec7f65a Mon Sep 17 00:00:00 2001
From: Julie Qiu <julie@golang.org>
Date: Fri, 12 Aug 2022 11:16:26 -0400
Subject: [PATCH] reports: add missing GHSAs

For golang/vulndb#57
For golang/vulndb#380
For golang/vulndb#384
For golang/vulndb#386
For golang/vulndb#402
For golang/vulndb#534

Change-Id: I953da31e396f0afae72e8d4e2fc7bc51fb303570
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/423038
Reviewed-by: Damien Neil <dneil@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Run-TryBot: Julie Qiu <julieqiu@google.com>
---
 reports/GO-2021-0057.yaml | 2 ++
 reports/GO-2022-0380.yaml | 1 +
 reports/GO-2022-0384.yaml | 1 +
 reports/GO-2022-0386.yaml | 1 +
 reports/GO-2022-0402.yaml | 1 +
 reports/GO-2022-0534.yaml | 2 ++
 6 files changed, 8 insertions(+)

diff --git a/reports/GO-2021-0057.yaml b/reports/GO-2021-0057.yaml
index 4d0ae64e..9e985a32 100644
--- a/reports/GO-2021-0057.yaml
+++ b/reports/GO-2021-0057.yaml
@@ -32,6 +32,8 @@ description: |
 published: 2021-04-14T20:04:52Z
 cves:
   - CVE-2020-35381
+ghsas:
+  - GHSA-8vrw-m3j9-j27c
 credit: '@toptotu'
 links:
     pr: https://github.com/buger/jsonparser/pull/221
diff --git a/reports/GO-2022-0380.yaml b/reports/GO-2022-0380.yaml
index 3e5b6fe9..f9ee939b 100644
--- a/reports/GO-2022-0380.yaml
+++ b/reports/GO-2022-0380.yaml
@@ -20,6 +20,7 @@ cves:
   - CVE-2020-26892
 ghsas:
   - GHSA-2c64-vj8g-vwrq
+  - GHSA-4w5x-x539-ppf5
 links:
     commit: https://github.com/nats-io/jwt/commit/e11ce317263cef69619fc1ca743b195d02aa1d8a
     context:
diff --git a/reports/GO-2022-0384.yaml b/reports/GO-2022-0384.yaml
index d8047030..a5450635 100644
--- a/reports/GO-2022-0384.yaml
+++ b/reports/GO-2022-0384.yaml
@@ -25,5 +25,6 @@ cves:
   - CVE-2021-32690
 ghsas:
   - GHSA-56hp-xqp3-w2jf
+  - GHSA-7jr6-prv4-5wf5
 links:
     commit: https://github.com/helm/helm/commit/61d8e8c4a6f95540c15c6a65f36a6dd0a45e7a2f
diff --git a/reports/GO-2022-0386.yaml b/reports/GO-2022-0386.yaml
index 80ec408f..e2eacd2a 100644
--- a/reports/GO-2022-0386.yaml
+++ b/reports/GO-2022-0386.yaml
@@ -34,6 +34,7 @@ cves:
 ghsas:
   - GHSA-j756-f273-xhp4
   - GHSA-62mh-w5cv-p88c
+  - GHSA-9r5x-fjv3-q6h4
 links:
     pr: https://github.com/nats-io/jwt/pull/149
     context:
diff --git a/reports/GO-2022-0402.yaml b/reports/GO-2022-0402.yaml
index b26a1e82..2f911f31 100644
--- a/reports/GO-2022-0402.yaml
+++ b/reports/GO-2022-0402.yaml
@@ -18,6 +18,7 @@ cves:
   - CVE-2020-26521
 ghsas:
   - GHSA-hmm9-r2m2-qg9w
+  - GHSA-h2fg-54x9-5qhq
 links:
     pr: https://github.com/nats-io/jwt/pull/107
     context:
diff --git a/reports/GO-2022-0534.yaml b/reports/GO-2022-0534.yaml
index d71fc59f..774c1536 100644
--- a/reports/GO-2022-0534.yaml
+++ b/reports/GO-2022-0534.yaml
@@ -15,6 +15,8 @@ description: |
     then forge the request.
 cves:
   - CVE-2022-24912
+ghsas:
+  - GHSA-jxqv-jcvh-7gr4
 credit: cedws
 links:
     pr: https://github.com/runatlantis/atlantis/pull/2392