nixpkgs/pkgs/tools/security/deepsecrets/default.nix
stuebinm ff1a94e523 treewide: add meta.mainProgram to packages with a single binary
The nixpkgs-unstable channel's programs.sqlite was used to identify
packages producing exactly one binary, and these automatically added
to their package definitions wherever possible.
2024-03-19 03:14:51 +01:00

52 lines
1.1 KiB
Nix

{ lib
, python3
, fetchFromGitHub
}:
python3.pkgs.buildPythonApplication rec {
pname = "deepsecrets";
version = "1.0.6";
pyproject = true;
src = fetchFromGitHub {
owner = "avito-tech";
repo = "deepsecrets";
rev = "refs/tags/v${version}";
hash = "sha256-VfIsPgStHcIYGbfrOs1mvgoq0ZoVSZwILFVBeMt/5Jc=";
};
postPatch = ''
substituteInPlace pyproject.toml \
--replace-warn 'pyyaml = "^5.4.1"' 'pyyaml = "*"' \
--replace-warn 'regex = "^2023.3.23"' 'regex = "*"' \
--replace-warn 'mmh3 = "^3.0.0"' 'mmh3 = "*"'
'';
nativeBuildInputs = with python3.pkgs; [
poetry-core
];
propagatedBuildInputs = with python3.pkgs; [
dotwiz
mmh3
ordered-set
pydantic_1
pygments
pyyaml
regex
];
pythonImportsCheck = [
"deepsecrets"
];
meta = with lib; {
description = "Secrets scanner that understands code";
mainProgram = "deepsecrets";
homepage = "https://github.com/avito-tech/deepsecrets";
changelog = "https://github.com/avito-tech/deepsecrets/releases/tag/v${version}";
license = licenses.mit;
maintainers = with maintainers; [ fab ];
};
}