Merge pull request #121244 from 06kellyjac/trivy

trivy: 0.16.0 -> 0.17.1

authored by

Sandro and committed by
GitHub
de251509 dbc10ea6

+9 -12
+9 -12
pkgs/tools/admin/trivy/default.nix
··· 2 2 3 3 buildGoModule rec { 4 4 pname = "trivy"; 5 - version = "0.16.0"; 5 + version = "0.17.1"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "aquasecurity"; 9 9 repo = pname; 10 10 rev = "v${version}"; 11 - sha256 = "sha256-E/tPjVc+XLDCFYzloAipwWjB4I86kAe/6NVoJSCrY2M="; 11 + sha256 = "sha256-5TOKYxH1Tnsd1t2yoUflFUSW0QGS9l5+0JtS2Fo6vL0="; 12 12 }; 13 13 14 - vendorSha256 = "sha256-YoQF0Eug747LhsR3V0IplwXgm0ndDqK1pUVjguOhjOU="; 14 + vendorSha256 = "sha256-zVe1bTTLOHxfdbb6VcztOCWMbCbzT6igNpvPytktMWs="; 15 15 16 - subPackages = [ "cmd/trivy" ]; 16 + excludedPackages = "misc"; 17 17 18 - buildFlagsArray = [ 19 - "-ldflags=" 20 - "-s" 21 - "-w" 22 - "-X main.version=v${version}" 23 - ]; 18 + preBuild = '' 19 + buildFlagsArray+=("-ldflags" "-s -w -X main.version=v${version}") 20 + ''; 24 21 25 22 meta = with lib; { 23 + homepage = "https://github.com/aquasecurity/trivy"; 24 + changelog = "https://github.com/aquasecurity/trivy/releases/tag/v${version}"; 26 25 description = "A simple and comprehensive vulnerability scanner for containers, suitable for CI"; 27 26 longDescription = '' 28 27 Trivy is a simple and comprehensive vulnerability scanner for containers ··· 31 30 vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and 32 31 application dependencies (Bundler, Composer, npm, yarn, etc.). 33 32 ''; 34 - homepage = src.meta.homepage; 35 - changelog = "${src.meta.homepage}/releases/tag/v${version}"; 36 33 license = licenses.asl20; 37 34 maintainers = with maintainers; [ jk ]; 38 35 };