pkgs/by-name/bu/bubblewrap/package.nix at python-updates

tjh.dev / nixpkgs

fork atom

nixpkgs mirror (for testing) github.com/NixOS/nixpkgs

nix

fork atom

nixpkgs / pkgs / by-name / bu / bubblewrap / package.nix

at python-updates 62 lines 1.1 kB view raw

wrap content

 1{
 2  lib,
 3  stdenv,
 4  fetchFromGitHub,
 5  docbook_xsl,
 6  libxslt,
 7  meson,
 8  ninja,
 9  pkg-config,
10  bash-completion,
11  libcap,
12  libselinux,
13}:
14
15stdenv.mkDerivation (finalAttrs: {
16  pname = "bubblewrap";
17  version = "0.11.0";
18
19  src = fetchFromGitHub {
20    owner = "containers";
21    repo = "bubblewrap";
22    rev = "v${finalAttrs.version}";
23    hash = "sha256-8IDMLQPeO576N1lizVudXUmTV6hNOiowjzRpEWBsZ+U=";
24  };
25
26  outputs = [
27    "out"
28    "dev"
29  ];
30
31  postPatch = ''
32    substituteInPlace tests/libtest.sh \
33      --replace "/var/tmp" "$TMPDIR"
34  '';
35
36  nativeBuildInputs = [
37    docbook_xsl
38    libxslt
39    meson
40    ninja
41    pkg-config
42  ];
43
44  buildInputs = [
45    bash-completion
46    libcap
47    libselinux
48  ];
49
50  # incompatible with Nix sandbox
51  doCheck = false;
52
53  meta = {
54    changelog = "https://github.com/containers/bubblewrap/releases/tag/${finalAttrs.src.rev}";
55    description = "Unprivileged sandboxing tool";
56    homepage = "https://github.com/containers/bubblewrap";
57    license = lib.licenses.lgpl2Plus;
58    maintainers = with lib.maintainers; [ dotlambda ];
59    platforms = lib.platforms.linux;
60    mainProgram = "bwrap";
61  };
62})