tjh.dev / nixpkgs
nixpkgs mirror (for testing) github.com/NixOS/nixpkgs
nix
fork atom
nixpkgs / pkgs / by-name / ly / lynis / package.nix
at python-updates 50 lines 1.2 kB view raw
1{ 2 lib, 3 stdenv, 4 makeWrapper, 5 fetchFromGitHub, 6 gawk, 7 installShellFiles, 8}: 9 10stdenv.mkDerivation (finalAttrs: { 11 pname = "lynis"; 12 version = "3.1.6"; 13 14 src = fetchFromGitHub { 15 owner = "CISOfy"; 16 repo = "lynis"; 17 tag = finalAttrs.version; 18 hash = "sha256-f1iV9OBkycrwP3ydjaGMX45JIBtzZKHEJqnEoVuZPu4="; 19 }; 20 21 nativeBuildInputs = [ 22 installShellFiles 23 makeWrapper 24 ]; 25 26 postPatch = '' 27 grep -rl '/usr/local/lynis' ./ | xargs sed -i "s@/usr/local/lynis@$out/share/lynis@g" 28 ''; 29 30 installPhase = '' 31 install -d $out/bin $out/share/lynis 32 install -Dm555 -t $out/libexec lynis 33 cp -r include db default.prf plugins $out/share/lynis/ 34 makeWrapper "$out/libexec/lynis" "$out/bin/lynis" \ 35 --prefix PATH : ${lib.makeBinPath [ gawk ]} 36 37 installManPage lynis.8 38 installShellCompletion --bash --name lynis.bash \ 39 extras/bash_completion.d/lynis 40 ''; 41 42 meta = { 43 description = "Security auditing tool for Linux, macOS, and UNIX-based systems"; 44 mainProgram = "lynis"; 45 homepage = "https://cisofy.com/lynis/"; 46 license = lib.licenses.gpl3Only; 47 platforms = lib.platforms.unix; 48 maintainers = with lib.maintainers; [ ryneeverett ]; 49 }; 50})