nixpkgs/pkgs/tools/security/zlint/default.nix

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

56 lines
1.2 KiB
Nix
Raw Normal View History

2022-11-18 04:59:43 +01:00
{ lib
, buildGoModule
, fetchFromGitHub
, testers
, zlint
}:
2022-11-16 19:56:45 +01:00
buildGoModule rec {
pname = "zlint";
2024-04-15 04:51:24 +02:00
version = "3.6.2";
2022-11-16 19:56:45 +01:00
src = fetchFromGitHub {
owner = "zmap";
2022-11-18 04:59:43 +01:00
repo = "zlint";
2022-11-16 19:56:45 +01:00
rev = "v${version}";
2024-04-15 04:51:24 +02:00
hash = "sha256-UwtWYDWbln64nE4KDV+gWIhhdbyvlrs0fM96otnfqfE=";
2022-11-16 19:56:45 +01:00
};
modRoot = "v3";
2022-11-18 04:59:43 +01:00
2024-01-08 07:42:58 +01:00
vendorHash = "sha256-LP7I7NY/Am6zWfVSvwJanCFwiLfcHKA3Fb9RIMD76a0=";
2022-11-18 04:59:43 +01:00
postPatch = ''
# Remove a package which is not declared in go.mod.
rm -rf v3/cmd/genTestCerts
'';
excludedPackages = [
"lints"
2022-11-18 04:59:43 +01:00
];
ldflags = [
"-s"
"-w"
"-X main.version=${version}"
];
passthru.tests.version = testers.testVersion {
package = zlint;
command = "zlint -version";
};
2022-11-16 19:56:45 +01:00
meta = with lib; {
2022-11-18 04:59:43 +01:00
description = "X.509 Certificate Linter focused on Web PKI standards and requirements";
longDescription = ''
ZLint is a X.509 certificate linter written in Go that checks for
consistency with standards (e.g. RFC 5280) and other relevant PKI
requirements (e.g. CA/Browser Forum Baseline Requirements).
'';
homepage = "https://github.com/zmap/zlint";
changelog = "https://github.com/zmap/zlint/releases/tag/${src.rev}";
2022-11-16 19:56:45 +01:00
license = licenses.asl20;
maintainers = with maintainers; [ baloo ];
};
}