2022-04-27 09:35:20 +00:00
|
|
|
{ lib
|
|
|
|
, fetchFromGitHub
|
|
|
|
, coccinelle
|
|
|
|
, gnugrep
|
|
|
|
, python3
|
|
|
|
}:
|
|
|
|
|
|
|
|
python3.pkgs.buildPythonApplication rec {
|
2021-09-23 15:35:13 +00:00
|
|
|
pname = "cvehound";
|
2022-06-26 10:26:21 +00:00
|
|
|
version = "1.1.0";
|
2021-09-23 15:35:13 +00:00
|
|
|
|
|
|
|
src = fetchFromGitHub {
|
|
|
|
owner = "evdenis";
|
|
|
|
repo = "cvehound";
|
2022-06-26 10:26:21 +00:00
|
|
|
rev = "refs/tags/${version}";
|
|
|
|
hash = "sha256-4+0Virpsq4mwOIpostS87VYTX8hsumXEL1w8FiOrNtA=";
|
2021-09-23 15:35:13 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
makeWrapperArgs = [
|
|
|
|
"--prefix PATH : ${lib.makeBinPath [ coccinelle gnugrep ]}"
|
|
|
|
];
|
|
|
|
|
2022-04-27 09:35:20 +00:00
|
|
|
propagatedBuildInputs = with python3.pkgs; [
|
|
|
|
lxml
|
2021-09-23 15:35:13 +00:00
|
|
|
setuptools
|
|
|
|
sympy
|
|
|
|
];
|
|
|
|
|
2023-02-02 18:25:31 +00:00
|
|
|
nativeCheckInputs = with python3.pkgs; [
|
2022-12-17 10:02:37 +00:00
|
|
|
gitpython
|
2022-04-27 09:35:20 +00:00
|
|
|
psutil
|
2021-09-23 15:35:13 +00:00
|
|
|
pytestCheckHook
|
|
|
|
];
|
|
|
|
|
|
|
|
# Tries to clone the kernel sources
|
|
|
|
doCheck = false;
|
|
|
|
|
|
|
|
meta = with lib; {
|
2022-04-27 09:35:20 +00:00
|
|
|
description = "Tool to check linux kernel source dump for known CVEs";
|
2021-09-23 15:35:13 +00:00
|
|
|
homepage = "https://github.com/evdenis/cvehound";
|
2022-04-27 09:35:20 +00:00
|
|
|
changelog = "https://github.com/evdenis/cvehound/blob/${src.rev}/ChangeLog";
|
2021-09-23 15:35:13 +00:00
|
|
|
# See https://github.com/evdenis/cvehound/issues/22
|
2022-04-27 09:35:20 +00:00
|
|
|
license = with licenses; [ gpl2Only gpl3Plus ];
|
2021-09-23 15:35:13 +00:00
|
|
|
maintainers = with maintainers; [ ambroisie ];
|
|
|
|
};
|
|
|
|
}
|