nixpkgs/pkgs/tools/security/grype/default.nix

{ buildGoModule
, docker
, fetchFromGitHub
, lib
}:

buildGoModule rec {
  pname = "grype";
  version = "0.7.0";

  src = fetchFromGitHub {
    owner = "anchore";
    repo = pname;
    rev = "v${version}";
    sha256 = "sha256-co00Ye/QVNSG4h67m56+37JLilBVzHxUwMs1vS3wYX4=";
  };

  vendorSha256 = "sha256-q7n8WLw/A2wr3z5h7zaFERY7lO5UIsmTD2mrcH/vpNs=";

  propagatedBuildInputs = [ docker ];

  # tests require a running Docker instance
  doCheck = false;

  meta = with lib; {
    description = "Vulnerability scanner for container images and filesystems";
    longDescription = ''
      As a vulnerability scanner is grype abale to scan the contents of a container
      image or filesystem to find known vulnerabilities.
    '';
    homepage = "https://github.com/anchore/grype";
    license = with licenses; [ asl20 ];
    maintainers = with maintainers; [ fab ];
  };
}
grype: init at 0.6.1 2021-01-06 18:11:00 +00:00			`{ buildGoModule`
			`, docker`
			`, fetchFromGitHub`
treewide: remove stdenv where not needed 2021-01-25 08:26:54 +00:00			`, lib`
grype: init at 0.6.1 2021-01-06 18:11:00 +00:00			`}:`

			`buildGoModule rec {`
			`pname = "grype";`
grype: 0.6.1 -> 0.7.0 2021-01-29 03:45:46 +00:00			`version = "0.7.0";`
grype: init at 0.6.1 2021-01-06 18:11:00 +00:00
			`src = fetchFromGitHub {`
			`owner = "anchore";`
			`repo = pname;`
			`rev = "v${version}";`
grype: 0.6.1 -> 0.7.0 2021-01-29 03:45:46 +00:00			`sha256 = "sha256-co00Ye/QVNSG4h67m56+37JLilBVzHxUwMs1vS3wYX4=";`
grype: init at 0.6.1 2021-01-06 18:11:00 +00:00			`};`

grype: 0.6.1 -> 0.7.0 2021-01-29 03:45:46 +00:00			`vendorSha256 = "sha256-q7n8WLw/A2wr3z5h7zaFERY7lO5UIsmTD2mrcH/vpNs=";`
grype: init at 0.6.1 2021-01-06 18:11:00 +00:00
			`propagatedBuildInputs = [ docker ];`

			`# tests require a running Docker instance`
			`doCheck = false;`

treewide: with stdenv.lib; in meta -> with lib; Part of: https://github.com/NixOS/nixpkgs/issues/108938 meta = with stdenv.lib; is a widely used pattern. We want to slowly remove the `stdenv.lib` indirection and encourage people to use `lib` directly. Thus let’s start with the meta field. This used a rewriting script to mostly automatically replace all occurances of this pattern, and add the `lib` argument to the package header if it doesn’t exist yet. The script in its current form is available at https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix 2021-01-11 07:54:33 +00:00			`meta = with lib; {`
grype: init at 0.6.1 2021-01-06 18:11:00 +00:00			`description = "Vulnerability scanner for container images and filesystems";`
			`longDescription = ''`
			`As a vulnerability scanner is grype abale to scan the contents of a container`
			`image or filesystem to find known vulnerabilities.`
			`'';`
			`homepage = "https://github.com/anchore/grype";`
			`license = with licenses; [ asl20 ];`
			`maintainers = with maintainers; [ fab ];`
			`};`
			`}`