pkgs/by-name/os/osv-scanner/package.nix

   1 { lib
   2 , buildGoModule
   3 , fetchFromGitHub
   4 , testers
   5 , osv-scanner
   6 }:
   7
   8 buildGoModule rec {
   9   pname = "osv-scanner";
  10   version = "1.9.1";
  11
  12   src = fetchFromGitHub {
  13     owner = "google";
  14     repo = "osv-scanner";
  15     rev = "refs/tags/v${version}";
  16     hash = "sha256-s288EHtF/YRkPVwe7b1+q/1ky8tQdHvzb8GaOPpRqTw=";
  17   };
  18
  19   vendorHash = "sha256-DNUkUmxzej/NDwJ3lgPek/6C3/ytjlHmFIb1IvKvAQs=";
  20
  21   subPackages = [
  22     "cmd/osv-scanner"
  23   ];
  24
  25   ldflags = [
  26     "-s"
  27     "-w"
  28     "-X=github.com/google/osv-scanner/internal/version.OSVVersion=${version}"
  29     "-X=main.commit=n/a"
  30     "-X=main.date=1970-01-01T00:00:00Z"
  31   ];
  32
  33   # Tests require network connectivity to query https://api.osv.dev.
  34   doCheck = false;
  35
  36   passthru.tests.version = testers.testVersion {
  37     package = osv-scanner;
  38   };
  39
  40   meta = with lib; {
  41     description = "Vulnerability scanner written in Go which uses the data provided by https://osv.dev";
  42     mainProgram = "osv-scanner";
  43     homepage = "https://github.com/google/osv-scanner";
  44     changelog = "https://github.com/google/osv-scanner/releases/tag/v${version}";
  45     license = licenses.asl20;
  46     maintainers = with maintainers; [ stehessel urandom ];
  47   };
  48 }