34 lines
939 B
Nix
34 lines
939 B
Nix
|
{ buildGoModule
|
||
|
, fetchFromGitHub
|
||
|
, lib
|
||
|
}:
|
||
|
|
||
|
buildGoModule rec {
|
||
|
pname = "terrascan";
|
||
|
version = "1.2.0";
|
||
|
|
||
|
src = fetchFromGitHub {
|
||
|
owner = "accurics";
|
||
|
repo = pname;
|
||
|
rev = "v${version}";
|
||
|
sha256 = "1kjis0ylvmv1gvzp5qvi9a7x4611bjv8yx5mb6nkc0a8lscwb4c3";
|
||
|
};
|
||
|
|
||
|
vendorSha256 = "0yfybzwjvnan4qf5w25k22iwh5hp9v8si93p4jv9bx25rw91swws";
|
||
|
|
||
|
# tests want to download a vulnerable Terraform project
|
||
|
doCheck = false;
|
||
|
|
||
|
meta = with lib; {
|
||
|
description = "Detect compliance and security violations across Infrastructure";
|
||
|
longDescription = ''
|
||
|
Detect compliance and security violations across Infrastructure as Code to
|
||
|
mitigate risk before provisioning cloud native infrastructure. It contains
|
||
|
500+ polices and support for Terraform and Kubernetes.
|
||
|
'';
|
||
|
homepage = "https://github.com/accurics/terrascan";
|
||
|
license = with licenses; [ asl20 ];
|
||
|
maintainers = with maintainers; [ fab ];
|
||
|
};
|
||
|
}
|