nixpkgs/pkgs/by-name/zi/zircolite/package.nix

{ lib
, fetchFromGitHub
, makeWrapper
, python3
}:

python3.pkgs.buildPythonApplication rec {
  pname = "zircolite";
  version = "2.30.1";
  format = "other";

  src = fetchFromGitHub {
    owner = "wagga40";
    repo = "Zircolite";
    rev = "refs/tags/${version}";
    hash = "sha256-9stQa0EMNA/qEN+bU7qBOdcwUR1vMGk70Br6wxRK8cs=";
  };

  __darwinAllowLocalNetworking = true;

  build-system = [
    makeWrapper
  ];

  dependencies = with python3.pkgs; [
    aiohttp
    colorama
    elastic-transport
    elasticsearch
    evtx
    jinja2
    lxml
    orjson
    requests
    tqdm
    urllib3
    xxhash
  ] ++ elasticsearch.optional-dependencies.async;

  installPhase = ''
    runHook preInstall

    mkdir -p $out/bin $out/share $out/share/zircolite
    cp -R . $out/share/zircolite

    makeWrapper ${python3.interpreter} $out/bin/zircolite \
      --set PYTHONPATH "$PYTHONPATH:$out/bin/zircolite.py" \
      --add-flags "$out/share/zircolite/zircolite.py"

    runHook postInstall
  '';

  meta = with lib; {
    description = "SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs";
    mainProgram = "zircolite";
    homepage = "https://github.com/wagga40/Zircolite";
    changelog = "https://github.com/wagga40/Zircolite/releases/tag/${version}";
    license = licenses.gpl3Only;
    maintainers = with maintainers; [ fab ];
  };
}
zircolite: init at 2.9.9 SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs https://github.com/wagga40/Zircolite 2024-01-14 16:08:59 -07:00			`{ lib`
			`, fetchFromGitHub`
			`, makeWrapper`
			`, python3`
			`}:`

			`python3.pkgs.buildPythonApplication rec {`
			`pname = "zircolite";`
zircolite: 2.20.0 -> 2.30.1 2024-11-16 17:12:00 -07:00			`version = "2.30.1";`
zircolite: init at 2.9.9 SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs https://github.com/wagga40/Zircolite 2024-01-14 16:08:59 -07:00			`format = "other";`

			`src = fetchFromGitHub {`
			`owner = "wagga40";`
			`repo = "Zircolite";`
			`rev = "refs/tags/${version}";`
zircolite: 2.20.0 -> 2.30.1 2024-11-16 17:12:00 -07:00			`hash = "sha256-9stQa0EMNA/qEN+bU7qBOdcwUR1vMGk70Br6wxRK8cs=";`
zircolite: init at 2.9.9 SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs https://github.com/wagga40/Zircolite 2024-01-14 16:08:59 -07:00			`};`

zircolite: enable darwin build 2024-01-15 05:16:56 -07:00			`__darwinAllowLocalNetworking = true;`

zircolite: refactor 2024-03-29 03:17:14 -06:00			`build-system = [`
zircolite: init at 2.9.9 SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs https://github.com/wagga40/Zircolite 2024-01-14 16:08:59 -07:00			`makeWrapper`
			`];`

zircolite: refactor 2024-03-29 03:17:14 -06:00			`dependencies = with python3.pkgs; [`
zircolite: init at 2.9.9 SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs https://github.com/wagga40/Zircolite 2024-01-14 16:08:59 -07:00			`aiohttp`
			`colorama`
			`elastic-transport`
			`elasticsearch`
			`evtx`
			`jinja2`
			`lxml`
			`orjson`
			`requests`
			`tqdm`
			`urllib3`
			`xxhash`
			`] ++ elasticsearch.optional-dependencies.async;`

			`installPhase = ''`
			`runHook preInstall`

			`mkdir -p $out/bin $out/share $out/share/zircolite`
			`cp -R . $out/share/zircolite`

			`makeWrapper ${python3.interpreter} $out/bin/zircolite \`
			`--set PYTHONPATH "$PYTHONPATH:$out/bin/zircolite.py" \`
			`--add-flags "$out/share/zircolite/zircolite.py"`

			`runHook postInstall`
			`'';`

			`meta = with lib; {`
			`description = "SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs";`
treewide: add meta.mainProgram to packages with a single binary The nixpkgs-unstable channel's programs.sqlite was used to identify packages producing exactly one binary, and these automatically added to their package definitions wherever possible. 2024-03-18 20:14:51 -06:00			`mainProgram = "zircolite";`
zircolite: init at 2.9.9 SIGMA-based detection tool for EVTX, Auditd, Sysmon and other logs https://github.com/wagga40/Zircolite 2024-01-14 16:08:59 -07:00			`homepage = "https://github.com/wagga40/Zircolite";`
			`changelog = "https://github.com/wagga40/Zircolite/releases/tag/${version}";`
			`license = licenses.gpl3Only;`
			`maintainers = with maintainers; [ fab ];`
			`};`
			`}`