summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSandro <sandro.jaeckel@gmail.com>2024-04-09 14:34:04 +0200
committerGitHub <noreply@github.com>2024-04-09 14:34:04 +0200
commitcd2c9968cf779c7341ee7c37bc003d722f61a5cc (patch)
tree08089db650304a6c35b98e3c84c73a046b391b91
parent4cc6ce454d3049ded63959b0c80f4c50dc6f89cc (diff)
parent70cabcb4d5f80a85c122412a3fc7f9335b56c2ff (diff)
Merge pull request #299429 from henrirosten/sbomnix-to-1.6.1
Diffstat
-rw-r--r--pkgs/development/python-modules/dfdiskcache/default.nix45
-rw-r--r--pkgs/development/python-modules/simplesqlite/default.nix46
-rw-r--r--pkgs/development/python-modules/sqliteschema/default.nix55
-rw-r--r--pkgs/tools/package-management/nix-visualize/default.nix49
-rw-r--r--pkgs/tools/security/sbomnix/default.nix58
-rw-r--r--pkgs/top-level/all-packages.nix2
-rw-r--r--pkgs/top-level/python-packages.nix6
7 files changed, 248 insertions, 13 deletions
diff --git a/pkgs/development/python-modules/dfdiskcache/default.nix b/pkgs/development/python-modules/dfdiskcache/default.nix
new file mode 100644
index 000000000000..d7a7de367a28
--- /dev/null
+++ b/pkgs/development/python-modules/dfdiskcache/default.nix
@@ -0,0 +1,45 @@
+{ lib
+, buildPythonPackage
+, fetchFromGitHub
+, pandas
+, setuptools
+, simplesqlite
+, typing-extensions
+, pytestCheckHook
+}:
+
+buildPythonPackage rec {
+ pname = "df-diskcache";
+ version = "0.0.2";
+ pyproject = true;
+
+ src = fetchFromGitHub {
+ owner = "thombashi";
+ repo = "df-diskcache";
+ rev = "v${version}";
+ hash = "sha256-s+sqEPXw6tbEz9mnG+qeUSF6BmDssYhaDYOmraFaRbw=";
+ };
+
+ nativeBuildInputs = [ setuptools ];
+
+ propagatedBuildInputs = [
+ pandas
+ simplesqlite
+ typing-extensions
+ ];
+
+ preCheck = ''
+ # Needed for Permission denied: '/homeless-shelter'
+ export HOME=$(mktemp -d)
+ '';
+
+ nativeCheckInputs = [ pytestCheckHook ];
+ pythonImportsCheck = [ "dfdiskcache" ];
+
+ meta = with lib; {
+ description = "Python library for caching pandas.DataFrame objects to local disk";
+ homepage = "https://github.com/thombashi/df-diskcache";
+ license = licenses.mit;
+ maintainers = with maintainers; [ henrirosten ];
+ };
+}
diff --git a/pkgs/development/python-modules/simplesqlite/default.nix b/pkgs/development/python-modules/simplesqlite/default.nix
new file mode 100644
index 000000000000..c61684181365
--- /dev/null
+++ b/pkgs/development/python-modules/simplesqlite/default.nix
@@ -0,0 +1,46 @@
+{ lib
+, buildPythonPackage
+, fetchFromGitHub
+, dataproperty
+, mbstrdecoder
+, pathvalidate
+, sqliteschema
+, setuptools
+, tabledata
+, typepy
+, pytestCheckHook
+}:
+
+buildPythonPackage rec {
+ pname = "SimpleSQLite";
+ version = "1.5.2";
+ pyproject = true;
+
+ src = fetchFromGitHub {
+ owner = "thombashi";
+ repo = "SimpleSQLite";
+ rev = "v${version}";
+ hash = "sha256-Yr17T0/EwVaOjG+mzdxopivj0fuvQdZdX1bFj8vq0MM=";
+ };
+
+ nativeBuildInputs = [ setuptools ];
+
+ propagatedBuildInputs = [
+ dataproperty
+ mbstrdecoder
+ pathvalidate
+ sqliteschema
+ tabledata
+ typepy
+ ];
+
+ nativeCheckInputs = [ pytestCheckHook ];
+ pythonImportsCheck = [ "simplesqlite" ];
+
+ meta = with lib; {
+ description = "Python library to simplify SQLite database operations";
+ homepage = "https://github.com/thombashi/simplesqlite";
+ license = licenses.mit;
+ maintainers = with maintainers; [ henrirosten ];
+ };
+}
diff --git a/pkgs/development/python-modules/sqliteschema/default.nix b/pkgs/development/python-modules/sqliteschema/default.nix
new file mode 100644
index 000000000000..cb73b6e5a606
--- /dev/null
+++ b/pkgs/development/python-modules/sqliteschema/default.nix
@@ -0,0 +1,55 @@
+{ lib
+, buildPythonPackage
+, fetchFromGitHub
+, mbstrdecoder
+, setuptools
+, simplesqlite
+, sqliteschema
+, tabledata
+, typepy
+, pytestCheckHook
+}:
+
+buildPythonPackage rec {
+ pname = "sqliteschema";
+ version = "1.4.0";
+ pyproject = true;
+
+ src = fetchFromGitHub {
+ owner = "thombashi";
+ repo = "sqliteschema";
+ rev = "v${version}";
+ hash = "sha256-IzHdYBnh6udVsanWTPSsX4p4PG934YCdzs9Ow/NW86E=";
+ };
+
+ nativeBuildInputs = [ setuptools ];
+
+ propagatedBuildInputs = [
+ mbstrdecoder
+ tabledata
+ typepy
+ ];
+
+ nativeCheckInputs = [
+ pytestCheckHook
+ simplesqlite
+ sqliteschema
+ ];
+
+ pythonImportsCheck = [ "sqliteschema" ];
+
+ # Enabling tests would trigger infinite recursion due to circular
+ # dependency between this package and simplesqlite.
+ # Therefore, we enable tests only when building passthru.tests.
+ doCheck = false;
+ passthru.tests.pytest = sqliteschema.overridePythonAttrs (_: {
+ doCheck = true;
+ });
+
+ meta = with lib; {
+ description = "Python library to dump table schema of a SQLite database file";
+ homepage = "https://github.com/thombashi/sqliteschema";
+ license = licenses.mit;
+ maintainers = with maintainers; [ henrirosten ];
+ };
+}
diff --git a/pkgs/tools/package-management/nix-visualize/default.nix b/pkgs/tools/package-management/nix-visualize/default.nix
new file mode 100644
index 000000000000..9f1ba8b4d769
--- /dev/null
+++ b/pkgs/tools/package-management/nix-visualize/default.nix
@@ -0,0 +1,49 @@
+{ lib
+, fetchFromGitHub
+, nix
+, python
+, matplotlib
+, networkx
+, pandas
+, pygraphviz
+, setuptools
+}:
+
+python.pkgs.buildPythonApplication rec {
+ version = "1.0.5-unstable-2024-01-17";
+ pname = "nix-visualize";
+ pyproject = true;
+
+ src = fetchFromGitHub {
+ owner = "craigmbooth";
+ repo = "nix-visualize";
+ rev = "5b9beae330ac940df56433d347494505e2038904";
+ hash = "sha256-VgEsR/Odddc7v6oq2tNcVwCYm08PhiqhZJueuEYCR0o=";
+ };
+
+ postInstall = ''
+ wrapProgram $out/bin/nix-visualize \
+ --prefix PATH : ${lib.makeBinPath [nix]}
+ '';
+
+ nativeBuildInputs = [ setuptools ];
+
+ propagatedBuildInputs = [
+ matplotlib
+ networkx
+ pandas
+ pygraphviz
+ ];
+
+ pythonImportsCheck = [ "nix_visualize" ];
+ # No tests
+ doCheck = false;
+
+ meta = with lib; {
+ description = "Generate dependency graphs of a given nix package";
+ mainProgram = "nix-visualize";
+ homepage = "https://github.com/craigmbooth/nix-visualize";
+ license = with licenses; [ asl20 ];
+ maintainers = with maintainers; [ henrirosten ];
+ };
+}
diff --git a/pkgs/tools/security/sbomnix/default.nix b/pkgs/tools/security/sbomnix/default.nix
index 2449573c080a..d4ce0c4feaec 100644
--- a/pkgs/tools/security/sbomnix/default.nix
+++ b/pkgs/tools/security/sbomnix/default.nix
@@ -1,53 +1,85 @@
{ lib
, fetchFromGitHub
-, coreutils
-, curl
-, gnugrep
-, gnused
-, gzip
+, grype
, nix
+, nix-visualize
, python
- # python libs
+, vulnix
+, # python libs
+ beautifulsoup4
, colorlog
+, dfdiskcache
, graphviz
, numpy
, packageurl-python
+, packaging
, pandas
+, pyrate-limiter
, requests
+, requests-cache
+, requests-ratelimiter
, reuse
+, setuptools
, tabulate
+,
}:
python.pkgs.buildPythonApplication rec {
pname = "sbomnix";
- version = "1.4.5";
+ version = "1.6.1";
+ pyproject = true;
src = fetchFromGitHub {
owner = "tiiuae";
- repo = pname;
+ repo = "sbomnix";
rev = "refs/tags/v${version}";
- hash = "sha256-RxDFxVGivVBw2uhtzf231Q2HHTBFKSqGrknr2Es/ygM=";
+ hash = "sha256-kPjCK9NEs3D0qFsSSVX6MYGKbwqeij0svTfzz5JC4qM=";
+
+ # Remove documentation as it contains references to nix store
+ postFetch = ''
+ rm -fr "$out"/doc
+ find "$out" -name '*.md' ! -name "README.md" -exec rm -f '{}' \;
+ '';
};
- makeWrapperArgs = [
- "--prefix PATH : ${lib.makeBinPath [ coreutils curl gnugrep gnused gzip graphviz nix ]}"
- ];
+ postInstall = ''
+ wrapProgram $out/bin/sbomnix \
+ --prefix PATH : ${lib.makeBinPath [nix graphviz]}
+ wrapProgram $out/bin/nixgraph \
+ --prefix PATH : ${lib.makeBinPath [nix graphviz]}
+ wrapProgram $out/bin/vulnxscan \
+ --prefix PATH : ${lib.makeBinPath [grype nix vulnix]}
+ wrapProgram $out/bin/nix_outdated \
+ --prefix PATH : ${lib.makeBinPath [nix-visualize]}
+ wrapProgram $out/bin/provenance \
+ --prefix PATH : ${lib.makeBinPath [nix]}
+ '';
+
+ nativeBuildInputs = [ setuptools ];
propagatedBuildInputs = [
+ beautifulsoup4
colorlog
+ dfdiskcache
graphviz
numpy
packageurl-python
+ packaging
pandas
+ pyrate-limiter
requests
+ requests-cache
+ requests-ratelimiter
reuse
tabulate
];
pythonImportsCheck = [ "sbomnix" ];
+ # Tests require network access
+ doCheck = false;
meta = with lib; {
- description = "Generate SBOMs for nix targets";
+ description = "Utilities to help with software supply chain challenges on nix targets";
homepage = "https://github.com/tiiuae/sbomnix";
license = with licenses; [ asl20 bsd3 cc-by-30 ];
maintainers = with maintainers; [ henrirosten jk ];
diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix
index 710ded329967..0a6145760cd7 100644
--- a/pkgs/top-level/all-packages.nix
+++ b/pkgs/top-level/all-packages.nix
@@ -40047,6 +40047,8 @@ with pkgs;
nix-simple-deploy = callPackage ../tools/package-management/nix-simple-deploy { };
+ nix-visualize = python3.pkgs.callPackage ../tools/package-management/nix-visualize { };
+
alejandra = callPackage ../tools/nix/alejandra { };
nixci = callPackage ../tools/nix/nixci {
diff --git a/pkgs/top-level/python-packages.nix b/pkgs/top-level/python-packages.nix
index f33225e8e8eb..249c3a2c8b7e 100644
--- a/pkgs/top-level/python-packages.nix
+++ b/pkgs/top-level/python-packages.nix
@@ -2939,6 +2939,8 @@ self: super: with self; {
devtools = callPackage ../development/python-modules/devtools { };
+ dfdiskcache = callPackage ../development/python-modules/dfdiskcache { };
+
diagrams = callPackage ../development/python-modules/diagrams { };
diceware = callPackage ../development/python-modules/diceware { };
@@ -13762,6 +13764,8 @@ self: super: with self; {
simplesat = callPackage ../development/python-modules/simplesat { };
+ simplesqlite = callPackage ../development/python-modules/simplesqlite { };
+
simple-dftd3 = callPackage ../development/libraries/science/chemistry/simple-dftd3/python.nix {
inherit (pkgs) simple-dftd3;
};
@@ -14276,6 +14280,8 @@ self: super: with self; {
sqlite-utils = callPackage ../development/python-modules/sqlite-utils { };
+ sqliteschema = callPackage ../development/python-modules/sqliteschema { };
+
sqlmap = callPackage ../development/python-modules/sqlmap { };
sqlmodel = callPackage ../development/python-modules/sqlmodel { };
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-15 02:48:03 +0000