BoomMicrophone/nixpkgs-suyu
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

kubernetes-polaris: init at 7.3.2

Browse source
This commit is contained in:
Michał Mieszczak 2023-03-08 12:43:59 +01:00
parent 4c62f1c783
commit e8d6cef103
2 changed files with 54 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

52
pkgs/tools/security/kubernetes-polaris/default.nix Normal file
View file

@ -0,0 +1,52 @@
{ lib, buildGoModule, fetchFromGitHub, installShellFiles, packr, ... }:
buildGoModule rec {
pname = "kubernetes-polaris";
version = "7.3.2";
src = fetchFromGitHub {
owner = "FairwindsOps";
repo = "polaris";
rev = version;
sha256 = "sha256-LteclhYNMFNuGjFSuhPuY9ZA1Vlq4DPdcCGAQaujwh8=";
};
vendorSha256 = "sha256-3htwwRkUOf8jLyLfRlhcWhftBImmcUglc/PP/Yk2oF0=";
nativeBuildInputs = [ installShellFiles ];
ldflags = [
"-s"
"-w"
"-X main.Version=${version}"
"-X main.Commit=${version}"
];
preBuild = ''
${packr}/bin/packr2 -v --ignore-imports
'';
postInstall = ''
installShellCompletion --cmd polaris \
--bash <($out/bin/polaris completion bash) \
--fish <($out/bin/polaris completion fish) \
--zsh <($out/bin/polaris completion zsh)
'';
doInstallCheck = true;
installCheckPhase = ''
runHook preInstallCheck
$out/bin/polaris help
$out/bin/polaris version | grep 'Polaris version:${version}'
runHook postInstallCheck
'';
meta = with lib; {
description = "Validate and remediate Kubernetes resources to ensure configuration best practices are followed";
homepage = "https://www.fairwinds.com/polaris";
license = with licenses; [ asl20 ];
maintainers = with maintainers; [ longer ];
};
}

2
pkgs/top-level/all-packages.nix
View file

@ -18267,6 +18267,8 @@ with pkgs;
kubeprompt = callPackage ../development/tools/kubeprompt { };
kubernetes-polaris = callPackage ../tools/security/kubernetes-polaris { };
kubescape = callPackage ../tools/security/kubescape { };
kubesec = callPackage ../tools/security/kubesec { };