pyrox.dev / nixpkgs
lol
fork atom

Merge pull request #121244 from 06kellyjac/trivy

trivy: 0.16.0 -> 0.17.1

authored by

Sandro and committed by
GitHub de251509 dbc10ea6

+9 -12
unified split
+9 -12
pkgs/tools/admin/trivy/default.nix
··· 2 2 3 3 buildGoModule rec { 4 4 pname = "trivy"; 5 - version = "0.16.0"; 5 + version = "0.17.1"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "aquasecurity"; 9 9 repo = pname; 10 10 rev = "v${version}"; 11 - sha256 = "sha256-E/tPjVc+XLDCFYzloAipwWjB4I86kAe/6NVoJSCrY2M="; 11 + sha256 = "sha256-5TOKYxH1Tnsd1t2yoUflFUSW0QGS9l5+0JtS2Fo6vL0="; 12 12 }; 13 13 14 - vendorSha256 = "sha256-YoQF0Eug747LhsR3V0IplwXgm0ndDqK1pUVjguOhjOU="; 14 + vendorSha256 = "sha256-zVe1bTTLOHxfdbb6VcztOCWMbCbzT6igNpvPytktMWs="; 15 15 16 - subPackages = [ "cmd/trivy" ]; 16 + excludedPackages = "misc"; 17 17 18 - buildFlagsArray = [ 19 - "-ldflags=" 20 - "-s" 21 - "-w" 22 - "-X main.version=v${version}" 23 - ]; 18 + preBuild = '' 19 + buildFlagsArray+=("-ldflags" "-s -w -X main.version=v${version}") 20 + ''; 24 21 25 22 meta = with lib; { 23 + homepage = "https://github.com/aquasecurity/trivy"; 24 + changelog = "https://github.com/aquasecurity/trivy/releases/tag/v${version}"; 26 25 description = "A simple and comprehensive vulnerability scanner for containers, suitable for CI"; 27 26 longDescription = '' 28 27 Trivy is a simple and comprehensive vulnerability scanner for containers ··· 31 30 vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and 32 31 application dependencies (Bundler, Composer, npm, yarn, etc.). 33 32 ''; 34 - homepage = src.meta.homepage; 35 - changelog = "${src.meta.homepage}/releases/tag/v${version}"; 36 33 license = licenses.asl20; 37 34 maintainers = with maintainers; [ jk ]; 38 35 };