depot/third_party/nixpkgs/pkgs/development/tools/konstraint/default.nix
Default email 9c6ee729d6 Project import generated by Copybara.
GitOrigin-RevId: 6cee3b5893090b0f5f0a06b4cf42ca4e60e5d222
2023-07-15 19:15:38 +02:00

49 lines
1.7 KiB
Nix

{ lib, buildGoModule, fetchFromGitHub, installShellFiles }:
buildGoModule rec {
pname = "konstraint";
version = "0.30.0";
src = fetchFromGitHub {
owner = "plexsystems";
repo = pname;
rev = "v${version}";
sha256 = "sha256-lO9yXIqasVYf+FHQeodS9nlqEPp+rpU/NckSMhQ5wqY=";
};
vendorHash = "sha256-MWg0RHKXxkZ52MqRglBuR5P9bRDg8RKG9XRux1PjJ1g=";
# Exclude go within .github folder
excludedPackages = ".github";
nativeBuildInputs = [ installShellFiles ];
ldflags = [ "-s" "-w" "-X github.com/plexsystems/konstraint/internal/commands.version=${version}" ];
postInstall = ''
installShellCompletion --cmd konstraint \
--bash <($out/bin/konstraint completion bash) \
--fish <($out/bin/konstraint completion fish) \
--zsh <($out/bin/konstraint completion zsh)
'';
doInstallCheck = true;
installCheckPhase = ''
runHook preInstallCheck
$out/bin/konstraint --help
$out/bin/konstraint --version | grep "${version}"
runHook postInstallCheck
'';
meta = with lib; {
homepage = "https://github.com/plexsystems/konstraint";
changelog = "https://github.com/plexsystems/konstraint/releases/tag/v${version}";
description = "A policy management tool for interacting with Gatekeeper";
longDescription = ''
konstraint is a CLI tool to assist with the creation and management of templates and constraints when using
Gatekeeper. Automatically copy Rego to the ConstraintTemplate. Automatically update all ConstraintTemplates with
library changes. Enable writing the same policies for Conftest and Gatekeeper.
'';
license = licenses.mit;
maintainers = with maintainers; [ jk ];
};
}