parent
6baf442a9e
commit
aa7a16a72f
@ -0,0 +1,36 @@ |
||||
{ lib, buildGoModule, fetchFromGitHub }: |
||||
|
||||
buildGoModule rec { |
||||
pname = "trivy"; |
||||
version = "0.11.0"; |
||||
|
||||
src = fetchFromGitHub { |
||||
owner = "aquasecurity"; |
||||
repo = pname; |
||||
rev = "v${version}"; |
||||
sha256 = "0mqzs0yjlqpsn2540kgl4gn77qjg3kfls1zwgjfxy66lazic3f1h"; |
||||
}; |
||||
|
||||
vendorSha256 = "1jmmx83c0qbqyppx0w8d9djz2j2i7dgibq9lb3vhdz78wc40zywy"; |
||||
|
||||
buildFlagsArray = [ |
||||
"-ldflags=" |
||||
"-s" |
||||
"-w" |
||||
"-X main.version=v${version}" |
||||
]; |
||||
|
||||
meta = with lib; { |
||||
description = "A simple and comprehensive vulnerability scanner for containers, suitable for CI"; |
||||
longDescription = '' |
||||
Trivy is a simple and comprehensive vulnerability scanner for containers |
||||
and other artifacts. A software vulnerability is a glitch, flaw, or |
||||
weakness present in the software or in an Operating System. Trivy detects |
||||
vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and |
||||
application dependencies (Bundler, Composer, npm, yarn, etc.). |
||||
''; |
||||
homepage = src.meta.homepage; |
||||
license = licenses.asl20; |
||||
maintainers = with maintainers; [ jk ]; |
||||
}; |
||||
} |
Loading…
Reference in new issue