secretscanner: 20210214-42a38f9 -> 1.2.0

1 files changed, 23 insertions, 6 deletions

diff --git a/pkgs/tools/security/secretscanner/default.nix b/pkgs/tools/security/secretscanner/default.nix
index 93d440009f3f..859e6edc6fa0 100644
--- a/pkgs/tools/security/secretscanner/default.nix
+++ b/pkgs/tools/security/secretscanner/default.nix
@@ -3,26 +3,43 @@
 , fetchFromGitHub
 , hyperscan
 , pkg-config
+, protobuf
+, protoc-gen-go
+, protoc-gen-go-grpc
 }:
 
 buildGoModule rec {
   pname = "secretscanner";
-  version = "20210214-${lib.strings.substring 0 7 rev}";
-  rev = "42a38f9351352bf6240016b5b93d971be35cad46";
+  version = "1.2.0";
 
   src = fetchFromGitHub {
     owner = "deepfence";
     repo = "SecretScanner";
-    inherit rev;
-    sha256 = "0yga71f7bx5a3hj5agr88pd7j8jnxbwqm241fhrvv8ic4sx0mawg";
+    rev = "v${version}";
+    fetchSubmodules = true;
+    hash = "sha256-lTUZLuEiC9xpHYWn3uv4ZtbvHX6ETsjxacjd/O0kU8I=";
   };
 
-  vendorSha256 = "0b7qa83iqnigihgwlqsxi28n7d9h0dk3wx1bqvhn4k01483cipsd";
+  vendorHash = "sha256-lB+fiSdflIYGw0hMN0a9IOtRcJwYEUPQqaeU7mAfSQs=";
 
-  nativeBuildInputs = [ pkg-config ];
+  excludedPackages = [
+    "./agent-plugins-grpc/proto" # No need to build submodules
+  ];
+
+  nativeBuildInputs = [
+    pkg-config
+    protobuf
+    protoc-gen-go
+    protoc-gen-go-grpc
+  ];
 
   buildInputs = [ hyperscan ];
 
+  preBuild = ''
+    # Compile proto files
+    make -C agent-plugins-grpc go
+  '';
+
   postInstall = ''
     mv $out/bin/SecretScanner $out/bin/$pname
   '';