diff options
Diffstat (limited to 'pkgs/tools/security/zlint/default.nix')
-rw-r--r-- | pkgs/tools/security/zlint/default.nix | 55 |
1 files changed, 55 insertions, 0 deletions
diff --git a/pkgs/tools/security/zlint/default.nix b/pkgs/tools/security/zlint/default.nix new file mode 100644 index 0000000000000..9c67bb504b296 --- /dev/null +++ b/pkgs/tools/security/zlint/default.nix @@ -0,0 +1,55 @@ +{ lib +, buildGoModule +, fetchFromGitHub +, testers +, zlint +}: + +buildGoModule rec { + pname = "zlint"; + version = "3.4.1"; + + src = fetchFromGitHub { + owner = "zmap"; + repo = "zlint"; + rev = "v${version}"; + hash = "sha256-edCZQeBZelDfZGBZgevvJ8fgm1G2QFILJKB3778D7ac="; + }; + + modRoot = "v3"; + + vendorHash = "sha256-OiHEyMHuSiWDB/1YRvAhErb1h/rFfXXVcagcP386doc="; + + postPatch = '' + # Remove a package which is not declared in go.mod. + rm -rf v3/cmd/genTestCerts + ''; + + excludedPackages = [ + "lints" + ]; + + ldflags = [ + "-s" + "-w" + "-X main.version=${version}" + ]; + + passthru.tests.version = testers.testVersion { + package = zlint; + command = "zlint -version"; + }; + + meta = with lib; { + description = "X.509 Certificate Linter focused on Web PKI standards and requirements"; + longDescription = '' + ZLint is a X.509 certificate linter written in Go that checks for + consistency with standards (e.g. RFC 5280) and other relevant PKI + requirements (e.g. CA/Browser Forum Baseline Requirements). + ''; + homepage = "https://github.com/zmap/zlint"; + changelog = "https://github.com/zmap/zlint/releases/tag/${src.rev}"; + license = licenses.asl20; + maintainers = with maintainers; [ baloo ]; + }; +} |