nixpkgs/pkgs/tools/security/trufflehog/default.nix

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

39 lines
1.1 KiB
Nix
Raw Normal View History

2020-05-06 00:10:57 +00:00
{ lib, python3Packages }:
let
2020-05-06 00:10:57 +00:00
truffleHogRegexes = python3Packages.buildPythonPackage rec {
pname = "truffleHogRegexes";
2020-05-06 00:10:57 +00:00
version = "0.0.7";
src = python3Packages.fetchPypi {
inherit pname version;
2020-05-06 01:16:57 +00:00
sha256 = "b81dfc60c86c1e353f436a0e201fd88edb72d5a574615a7858485c59edf32405";
};
};
in
2020-05-06 00:10:57 +00:00
python3Packages.buildPythonApplication rec {
pname = "truffleHog";
2021-11-16 21:18:45 +00:00
version = "2.2.1";
2020-05-06 00:10:57 +00:00
src = python3Packages.fetchPypi {
inherit pname version;
2021-11-16 21:18:45 +00:00
sha256 = "sha256-fw0JyM2iqQrkL4FAXllEozJdkKWELS3eAURx5NZcceQ=";
};
# Relax overly restricted version constraint
postPatch = ''
substituteInPlace setup.py --replace "GitPython ==" "GitPython >= "
'';
2020-05-06 00:10:57 +00:00
propagatedBuildInputs = [ python3Packages.GitPython truffleHogRegexes ];
# Test cases run git clone and require network access
doCheck = false;
meta = {
homepage = "https://github.com/dxa4481/truffleHog";
description = "Searches through git repositories for high entropy strings and secrets, digging deep into commit history";
license = with lib.licenses; [ gpl2 ];
maintainers = with lib.maintainers; [ bhipple ];
};
}