nixpkgs/pkgs/tools/security/grype/default.nix
Profpatsch 4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00

35 lines
884 B
Nix

{ buildGoModule
, docker
, fetchFromGitHub
, lib, stdenv
}:
buildGoModule rec {
pname = "grype";
version = "0.6.1";
src = fetchFromGitHub {
owner = "anchore";
repo = pname;
rev = "v${version}";
sha256 = "0schq11vckvdj538mnkdzhxl452nrssqrfapab9qc44yxdi1wf8k";
};
vendorSha256 = "0lna7zhsj3wnw83nv0dp93aj869pplb51gqzrkka7vnqp0rjcw50";
propagatedBuildInputs = [ docker ];
# tests require a running Docker instance
doCheck = false;
meta = with lib; {
description = "Vulnerability scanner for container images and filesystems";
longDescription = ''
As a vulnerability scanner is grype abale to scan the contents of a container
image or filesystem to find known vulnerabilities.
'';
homepage = "https://github.com/anchore/grype";
license = with licenses; [ asl20 ];
maintainers = with maintainers; [ fab ];
};
}