kics: init at 1.5.12

2 files changed, 39 insertions, 0 deletions

diff --git a/pkgs/tools/admin/kics/default.nix b/pkgs/tools/admin/kics/default.nix
new file mode 100644
index 0000000000000..c6cc5db402783
--- /dev/null
+++ b/pkgs/tools/admin/kics/default.nix
@@ -0,0 +1,37 @@
+{ stdenv, buildGoModule, fetchFromGitHub, lib }:
+
+buildGoModule rec {
+  pname = "kics";
+  version = "1.5.12";
+
+  src = fetchFromGitHub {
+    owner = "Checkmarx";
+    repo = "kics";
+    rev = "v${version}";
+    sha256 = "sha256-jHspStyjq5T9jzYDRYaf2gOI4F/X+h4nDn0PFUOHoBY=";
+  };
+
+  vendorSha256 = "sha256-q5NuuP04kOoLVj210s17fIW2cxrsC/tAyET8YYGai0M=";
+
+  subPackages = [ "cmd/console" ];
+
+  postInstall = ''
+    mv $out/bin/console $out/bin/kics
+  '';
+
+  ldflags = [
+    "-s" "-w"
+    "-X github.com/Checkmarx/kics/internal/constant.SCMCommits=${version}"
+    "-X github.com/Checkmarx/kics/internal/constants.Version=${version}"
+  ];
+
+  meta = with lib; {
+    description = ''
+      Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development
+      cycle of your infrastructure-as-code with KICS by Checkmarx.
+    '';
+    homepage = "https://github.com/Checkmarx/kics";
+    license = licenses.asl20;
+    maintainers = with maintainers; [ patryk4815 ];
+  };
+}
diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix
index 18fda89db5183..78361410b22a3 100644
--- a/pkgs/top-level/all-packages.nix
+++ b/pkgs/top-level/all-packages.nix
@@ -5692,6 +5692,8 @@ with pkgs;
     ssh = openssh;
   };
 
+  kics = callPackage ../tools/admin/kics { };
+
   kramdown-asciidoc = callPackage ../tools/typesetting/kramdown-asciidoc { };
 
   lychee = callPackage ../tools/networking/lychee { };