| blob | 65d38a29d1f6c478b1cb9c2a0f582eed2f82a039 |
1 {
2 lib,
3 buildPythonApplication,
4 fetchFromGitHub,
5 # aiohttp[speedups]
6 aiodns,
7 aiohttp,
8 beautifulsoup4,
9 brotlipy,
10 cvss,
11 distro,
12 filetype,
13 google-cloud-sdk,
14 jinja2,
15 jsonschema,
16 lib4sbom,
17 packageurl-python,
18 packaging,
19 plotly,
20 pytestCheckHook,
21 python-gnupg,
22 pyyaml,
23 requests,
24 rich,
25 rpmfile,
26 setuptools,
27 xmlschema,
28 zstandard,
29 reportlab,
30 pip,
31 testers,
32 cve-bin-tool,
33 }:
35 buildPythonApplication rec {
36 pname = "cve-bin-tool";
37 version = "3.3";
38 format = "setuptools";
40 src = fetchFromGitHub {
41 owner = "intel";
42 repo = "cve-bin-tool";
43 rev = "refs/tags/v${version}";
44 hash = "sha256-A5w4U5EDX+UZWNMuz8GTOcubo8N2KfDlVV0aRNsO8/E=";
45 };
47 # Wants to open a sqlite database, access the internet, etc
48 doCheck = false;
50 dependencies = [
51 # aiohttp[speedups]
52 aiodns
53 aiohttp
54 beautifulsoup4
55 brotlipy
56 cvss
57 distro
58 filetype
59 google-cloud-sdk # gsutil
60 jinja2
61 jsonschema
62 lib4sbom
63 packageurl-python
64 packaging
65 plotly
66 python-gnupg
67 pyyaml
68 requests
69 rich
70 rpmfile
71 setuptools
72 xmlschema
73 zstandard
74 ];
76 optional-dependencies = {
77 pdf = [ reportlab ];
78 };
80 propagatedBuildInputs = [ pip ];
82 nativeCheckInputs = [ pytestCheckHook ] ++ lib.flatten (lib.attrValues optional-dependencies);
84 pythonImportsCheck = [ "cve_bin_tool" ];
86 passthru.tests.version = testers.testVersion { package = cve-bin-tool; };
88 meta = with lib; {
89 description = "CVE Binary Checker Tool";
90 homepage = "https://github.com/intel/cve-bin-tool";
91 license = licenses.gpl3Plus;
92 maintainers = [ ];
93 };
94 }