From 76e765c5f88cd90d6895d251b6549240633fff9f Mon Sep 17 00:00:00 2001 From: Fabian Affolter Date: Sat, 20 May 2023 23:25:42 +0200 Subject: [PATCH] kubeclarity: rename from kubei --- pkgs/tools/security/kubeclarity/default.nix | 55 +++++++++++++++++++++ pkgs/tools/security/kubei/default.nix | 31 ------------ pkgs/top-level/aliases.nix | 1 + pkgs/top-level/all-packages.nix | 2 +- 4 files changed, 57 insertions(+), 32 deletions(-) create mode 100644 pkgs/tools/security/kubeclarity/default.nix delete mode 100644 pkgs/tools/security/kubei/default.nix diff --git a/pkgs/tools/security/kubeclarity/default.nix b/pkgs/tools/security/kubeclarity/default.nix new file mode 100644 index 000000000000..871d1594fe0c --- /dev/null +++ b/pkgs/tools/security/kubeclarity/default.nix @@ -0,0 +1,55 @@ +{ lib +, btrfs-progs +, buildGoModule +, fetchFromGitHub +, lvm2 +, pkg-config +}: + +buildGoModule rec { + pname = "kubeclarity"; + version = "2.18.0"; + + src = fetchFromGitHub { + owner = "openclarity"; + repo = pname; + rev = "refs/tags/v${version}"; + hash = "sha256-qXBD3JurBU7RBemj+gr/tBGpfqKhwk5VPBKaTuM4URg="; + }; + + vendorHash = "sha256-L7g48EH3cuhgSZ87JoMVvv5nGDzjUpOufsikINCdhao="; + + nativeBuildInputs = [ + pkg-config + ]; + + buildInputs = [ + btrfs-progs + lvm2 + ]; + + sourceRoot = "${src.name}/cli"; + + ldflags = [ + "-s" + "-w" + ]; + + postInstall = '' + mv $out/bin/cli $out/bin/kubeclarity + ''; + + meta = with lib; { + description = "Kubernetes runtime scanner"; + longDescription = '' + KubeClarity is a vulnerabilities scanning and CIS Docker benchmark tool that + allows users to get an accurate and immediate risk assessment of their + kubernetes clusters. Kubei scans all images that are being used in a + Kubernetes cluster, including images of application pods and system pods. + ''; + homepage = "https://github.com/openclarity/kubeclarity"; + changelog = "https://github.com/openclarity/kubeclarity/releases/tag/v${version}"; + license = with licenses; [ asl20 ]; + maintainers = with maintainers; [ fab ]; + }; +} diff --git a/pkgs/tools/security/kubei/default.nix b/pkgs/tools/security/kubei/default.nix deleted file mode 100644 index 840b4f69fc0a..000000000000 --- a/pkgs/tools/security/kubei/default.nix +++ /dev/null @@ -1,31 +0,0 @@ -{ lib -, buildGoModule -, fetchFromGitHub -}: - -buildGoModule rec { - pname = "kubei"; - version = "1.0.12"; - - src = fetchFromGitHub { - owner = "Portshift"; - repo = pname; - rev = version; - sha256 = "sha256-QUPRw8fQ6ahBLZox6m4+feYIrcgDnCTe72nMF8iAV+Y="; - }; - - vendorSha256 = "sha256-uWDQf0zcTTPBthK60bmGJBP/m+yUu5PvYAbwyd0dcWE="; - - meta = with lib; { - description = "Kubernetes runtime scanner"; - longDescription = '' - Kubei is a vulnerabilities scanning and CIS Docker benchmark tool that - allows users to get an accurate and immediate risk assessment of their - kubernetes clusters. Kubei scans all images that are being used in a - Kubernetes cluster, including images of application pods and system pods. - ''; - homepage = "https://github.com/Portshift/kubei"; - license = with licenses; [ asl20 ]; - maintainers = with maintainers; [ fab ]; - }; -} diff --git a/pkgs/top-level/aliases.nix b/pkgs/top-level/aliases.nix index 874d45b287d4..15021ddf49e6 100644 --- a/pkgs/top-level/aliases.nix +++ b/pkgs/top-level/aliases.nix @@ -812,6 +812,7 @@ mapAliases ({ krename-qt5 = throw "'krename-qt5' has been renamed to/replaced by 'krename'"; # Converted to throw 2022-02-22 krita-beta = krita; # moved from top-level 2021-12-23 kube-aws = throw "kube-aws is deprecated and archived by upstream"; # Added 2022-04-05 + kubei = kubeclarity; # Added 2023-05-20 kubeless = throw "kubeless is deprecated and archived by upstream"; # Added 2022-04-05 kubicorn = throw "kubicorn has been dropped due to the lack of maintenance from upstream since 2019"; # Added 2022-05-30 kvm = throw "'kvm' has been renamed to/replaced by 'qemu_kvm'"; # Converted to throw 2022-02-22 diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix index 6b03392cf33e..1f2b70fbd67a 100644 --- a/pkgs/top-level/all-packages.nix +++ b/pkgs/top-level/all-packages.nix @@ -18622,7 +18622,7 @@ with pkgs; kube-prompt = callPackage ../development/tools/kube-prompt { }; - kubei = callPackage ../tools/security/kubei { }; + kubeclarity = callPackage ../tools/security/kubeclarity { }; kubemq-community = callPackage ../servers/kubemq-community { };