{ lib , fetchFromGitHub , python3 }: python3.pkgs.buildPythonApplication rec { pname = "appthreat-depscan"; version = "3.5.3"; src = fetchFromGitHub { owner = "AppThreat"; repo = "dep-scan"; rev = "refs/tags/v${version}"; hash = "sha256-D/i1KGKPuhayKU8jaXhWnVgpU5Z/SG12AW8R7bgSQh8="; }; propagatedBuildInputs = with python3.pkgs; [ appthreat-vulnerability-db defusedxml pyyaml rich ]; checkInputs = with python3.pkgs; [ pytestCheckHook ]; postPatch = '' substituteInPlace pytest.ini \ --replace " --cov-append --cov-report term --cov depscan" "" ''; preCheck = '' export HOME=$(mktemp -d); ''; disabledTests = [ # Assertion Error "test_query_metadata2" ]; pythonImportsCheck = [ "depscan" ]; meta = with lib; { description = "Tool to audit dependencies based on known vulnerabilities and advisories"; homepage = "https://github.com/AppThreat/dep-scan"; changelog = "https://github.com/AppThreat/dep-scan/releases/tag/v${version}"; license = with licenses; [ mit ]; maintainers = with maintainers; [ fab ]; }; }