diff options
author | 06kellyjac <dev@j-k.io> | 2021-10-26 09:26:27 +0100 |
---|---|---|
committer | 06kellyjac <dev@j-k.io> | 2021-10-26 09:30:29 +0100 |
commit | ea06d20e142f62b1239ea8134d49063d2964500a (patch) | |
tree | b72741bc1686459892d363220b80cafac08f21b7 /pkgs/tools/security/snowcat | |
parent | 23f71e9427c7cd2a6f87a167b4f6dc170b4431df (diff) |
snowcat: init at 0.1.3
Diffstat (limited to 'pkgs/tools/security/snowcat')
-rw-r--r-- | pkgs/tools/security/snowcat/default.nix | 33 |
1 files changed, 33 insertions, 0 deletions
diff --git a/pkgs/tools/security/snowcat/default.nix b/pkgs/tools/security/snowcat/default.nix new file mode 100644 index 0000000000000..e6211caec5567 --- /dev/null +++ b/pkgs/tools/security/snowcat/default.nix @@ -0,0 +1,33 @@ +{ lib, buildGoModule, fetchFromGitHub }: + +buildGoModule rec { + pname = "snowcat"; + version = "0.1.3"; + + src = fetchFromGitHub { + owner = "praetorian-inc"; + repo = pname; + rev = "v${version}"; + sha256 = "sha256-EulQYGOMIh952e4Xp13hT/HMW3qP1QXYtt5PEej1VTY="; + }; + vendorSha256 = "sha256-D6ipwGMxT0B3uYUzg6Oo2TYnsOVBY0mYO5lC7vtVPc0="; + + ldflags = [ "-s" "-w" ]; + + meta = with lib; { + homepage = "https://github.com/praetorian-inc/snowcat"; + changelog = "https://github.com/praetorian-inc/snowcat/releases/tag/v${version}"; + description = "A tool to audit the istio service mesh"; + longDescription = '' + Snowcat gathers and analyzes the configuration of an Istio cluster and + audits it for potential violations of security best practices. + + There are two main modes of operation for Snowcat. With no positional + argument, Snowcat will assume it is running inside of a cluster enabled + with Istio, and begin to enumerate the required data. Optionally, you can + point snowcat at a directory containing Kubernets YAML files. + ''; + license = licenses.asl20; + maintainers = with maintainers; [ jk ]; + }; +} |