pkgs/development/tools/appthreat-depscan/default.nix

   1 { lib
   2 , fetchFromGitHub
   3 , python3
   4 }:
   5
   6 python3.pkgs.buildPythonApplication rec {
   7   pname = "appthreat-depscan";
   8   version = "2.1.9";
   9
  10   src = fetchFromGitHub {
  11     owner = "AppThreat";
  12     repo = "dep-scan";
  13     rev = "refs/tags/v${version}";
  14     hash = "sha256-3K8dIKeb9bqopu8B8f1fHLIzXHTfmn4ZtDztRBSm10k=";
  15   };
  16
  17   propagatedBuildInputs = with python3.pkgs; [
  18     appthreat-vulnerability-db
  19     defusedxml
  20     pyyaml
  21     rich
  22   ];
  23
  24   checkInputs = with python3.pkgs; [
  25     pytestCheckHook
  26   ];
  27
  28   postPatch = ''
  29     substituteInPlace pytest.ini \
  30       --replace " --cov-append --cov-report term --cov depscan" ""
  31   '';
  32
  33   preCheck = ''
  34     export HOME=$(mktemp -d);
  35   '';
  36
  37   disabledTests = [
  38     # Assertion Error
  39     "test_query_metadata2"
  40   ];
  41
  42   pythonImportsCheck = [
  43     "depscan"
  44   ];
  45
  46   meta = with lib; {
  47     description = "Tool to audit dependencies based on known vulnerabilities and advisories";
  48     homepage = "https://github.com/AppThreat/dep-scan";
  49     license = with licenses; [ mit ];
  50     maintainers = with maintainers; [ fab ];
  51   };
  52 }