There are 2 vulnerabilities in modules that you require. Use
-scan=symbol with govulncheck for more fine grained vulnerability
detection.
See https://pkg.go.dev/golang.org/x/vuln/cmd/govulncheck for details.

Vulnerability #1: GO-0000-0002
    Third-party vulnerability
  More info: https://pkg.go.dev/vuln/GO-0000-0002
  Module: golang.org/vmod
    Found in: golang.org/vmod@v0.0.1
    Fixed in: golang.org/vmod@v0.1.3

Vulnerability #2: GO-0000-0001
    Third-party vulnerability
  More info: https://pkg.go.dev/vuln/GO-0000-0001
  Module: golang.org/vmod
    Found in: golang.org/vmod@v0.0.1
    Fixed in: golang.org/vmod@v0.1.3
    Platforms: amd

Share feedback at https://go.dev/s/govulncheck-feedback.
