GoCenter and VSCode
If you’re a Golang developer using Visual Studio Code, keeping at-risk Go Modules out of your apps just got easier, and for free in the JFrog VSCode Extension.
GoCenter's integration with VSCode brings live vulnerability information about every public Go Module you’re using directly into your source editor. This means you can be aware of potential risks from your open-source Go Modules and make better choices, even before your first build.
VS Code doesn’t only show this information for your direct module dependencies. You can also see indirect (transitive) dependencies, in a hierarchical tree view.
You can jump from the module in the go.mod directly to the tree view and do the same from the tree to the module definition in the go.mod. Get the extension from the VSCode Marketplace today.