kubeclarity: rename from kubei

2023-05-20 23:25:42 +02:00 · 2023-05-20 23:25:42 +02:00 · 76e765c5f8
commit 76e765c5f8
parent b7a9deb5bd
4 changed files with 57 additions and 32 deletions
--- a/pkgs/tools/security/kubeclarity/default.nix
+++ b/pkgs/tools/security/kubeclarity/default.nix
@ -0,0 +1,55 @@
+{ lib
+, btrfs-progs
+, buildGoModule
+, fetchFromGitHub
+, lvm2
+, pkg-config
+}:
+
+buildGoModule rec {
+  pname = "kubeclarity";
+  version = "2.18.0";
+
+  src = fetchFromGitHub {
+    owner = "openclarity";
+    repo = pname;
+    rev = "refs/tags/v${version}";
+    hash = "sha256-qXBD3JurBU7RBemj+gr/tBGpfqKhwk5VPBKaTuM4URg=";
+  };
+
+  vendorHash = "sha256-L7g48EH3cuhgSZ87JoMVvv5nGDzjUpOufsikINCdhao=";
+
+  nativeBuildInputs = [
+    pkg-config
+  ];
+
+  buildInputs = [
+    btrfs-progs
+    lvm2
+  ];
+
+  sourceRoot = "${src.name}/cli";
+
+  ldflags = [
+    "-s"
+    "-w"
+  ];
+
+  postInstall = ''
+    mv $out/bin/cli $out/bin/kubeclarity
+  '';
+
+  meta = with lib; {
+    description = "Kubernetes runtime scanner";
+    longDescription = ''
+      KubeClarity is a vulnerabilities scanning and CIS Docker benchmark tool that
+      allows users to get an accurate and immediate risk assessment of their
+      kubernetes clusters. Kubei scans all images that are being used in a
+      Kubernetes cluster, including images of application pods and system pods.
+    '';
+    homepage = "https://github.com/openclarity/kubeclarity";
+    changelog = "https://github.com/openclarity/kubeclarity/releases/tag/v${version}";
+    license = with licenses; [ asl20 ];
+    maintainers = with maintainers; [ fab ];
+  };
+}
--- a/pkgs/tools/security/kubei/default.nix
+++ b/pkgs/tools/security/kubei/default.nix
@ -1,31 +0,0 @@
-{ lib
-, buildGoModule
-, fetchFromGitHub
-}:
-
-buildGoModule rec {
-  pname = "kubei";
-  version = "1.0.12";
-
-  src = fetchFromGitHub {
-    owner = "Portshift";
-    repo = pname;
-    rev = version;
-    sha256 = "sha256-QUPRw8fQ6ahBLZox6m4+feYIrcgDnCTe72nMF8iAV+Y=";
-  };
-
-  vendorSha256 = "sha256-uWDQf0zcTTPBthK60bmGJBP/m+yUu5PvYAbwyd0dcWE=";
-
-  meta = with lib; {
-    description = "Kubernetes runtime scanner";
-    longDescription = ''
-      Kubei is a vulnerabilities scanning and CIS Docker benchmark tool that
-      allows users to get an accurate and immediate risk assessment of their
-      kubernetes clusters. Kubei scans all images that are being used in a
-      Kubernetes cluster, including images of application pods and system pods.
-    '';
-    homepage = "https://github.com/Portshift/kubei";
-    license = with licenses; [ asl20 ];
-    maintainers = with maintainers; [ fab ];
-  };
-}
--- a/pkgs/top-level/aliases.nix
+++ b/pkgs/top-level/aliases.nix
@ -812,6 +812,7 @@ mapAliases ({
  krename-qt5 = throw "'krename-qt5' has been renamed to/replaced by 'krename'"; # Converted to throw 2022-02-22
  krita-beta = krita; # moved from top-level 2021-12-23
  kube-aws = throw "kube-aws is deprecated and archived by upstream"; # Added 2022-04-05
+  kubei = kubeclarity; # Added 2023-05-20
  kubeless = throw "kubeless is deprecated and archived by upstream"; # Added 2022-04-05
  kubicorn = throw "kubicorn has been dropped due to the lack of maintenance from upstream since 2019"; # Added 2022-05-30
  kvm = throw "'kvm' has been renamed to/replaced by 'qemu_kvm'"; # Converted to throw 2022-02-22
--- a/pkgs/top-level/all-packages.nix
+++ b/pkgs/top-level/all-packages.nix
@ -18622,7 +18622,7 @@ with pkgs;

  kube-prompt = callPackage ../development/tools/kube-prompt { };

-  kubei = callPackage ../tools/security/kubei { };
+  kubeclarity = callPackage ../tools/security/kubeclarity { };

  kubemq-community = callPackage ../servers/kubemq-community { };