From 64cb19b340aad3c853b14c947f0de9ac2c4364b3864152f5fcec330de6c9d7de Mon Sep 17 00:00:00 2001 From: Johannes Kastl Date: Tue, 29 Oct 2024 14:03:49 +0000 Subject: [PATCH] new package grype-db: create a Grype vulnerability database from upstream vulnerability data sources OBS-URL: https://build.opensuse.org/package/show/devel:kubic/grype-db?expand=0&rev=1 --- .gitattributes | 23 ++++++++ .gitignore | 1 + _service | 20 +++++++ _servicedata | 4 ++ grype-db-0.26.0.obscpio | 3 ++ grype-db.changes | 5 ++ grype-db.obsinfo | 4 ++ grype-db.spec | 116 ++++++++++++++++++++++++++++++++++++++++ vendor.tar.gz | 3 ++ 9 files changed, 179 insertions(+) create mode 100644 .gitattributes create mode 100644 .gitignore create mode 100644 _service create mode 100644 _servicedata create mode 100644 grype-db-0.26.0.obscpio create mode 100644 grype-db.changes create mode 100644 grype-db.obsinfo create mode 100644 grype-db.spec create mode 100644 vendor.tar.gz diff --git a/.gitattributes b/.gitattributes new file mode 100644 index 0000000..9b03811 --- /dev/null +++ b/.gitattributes @@ -0,0 +1,23 @@ +## Default LFS +*.7z filter=lfs diff=lfs merge=lfs -text +*.bsp filter=lfs diff=lfs merge=lfs -text +*.bz2 filter=lfs diff=lfs merge=lfs -text +*.gem filter=lfs diff=lfs merge=lfs -text +*.gz filter=lfs diff=lfs merge=lfs -text +*.jar filter=lfs diff=lfs merge=lfs -text +*.lz filter=lfs diff=lfs merge=lfs -text +*.lzma filter=lfs diff=lfs merge=lfs -text +*.obscpio filter=lfs diff=lfs merge=lfs -text +*.oxt filter=lfs diff=lfs merge=lfs -text +*.pdf filter=lfs diff=lfs merge=lfs -text +*.png filter=lfs diff=lfs merge=lfs -text +*.rpm filter=lfs diff=lfs merge=lfs -text +*.tbz filter=lfs diff=lfs merge=lfs -text +*.tbz2 filter=lfs diff=lfs merge=lfs -text +*.tgz filter=lfs diff=lfs merge=lfs -text +*.ttf filter=lfs diff=lfs merge=lfs -text +*.txz filter=lfs diff=lfs merge=lfs -text +*.whl filter=lfs diff=lfs merge=lfs -text +*.xz filter=lfs diff=lfs merge=lfs -text +*.zip filter=lfs diff=lfs merge=lfs -text +*.zst filter=lfs diff=lfs merge=lfs -text diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..57affb6 --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +.osc diff --git a/_service b/_service new file mode 100644 index 0000000..70d302c --- /dev/null +++ b/_service @@ -0,0 +1,20 @@ + + + https://github.com/anchore/grype-db + git + .git + v0.26.0 + @PARENT_TAG@ + v(.*) + enable + + + + + + *.tar + gz + + + + diff --git a/_servicedata b/_servicedata new file mode 100644 index 0000000..8be89bd --- /dev/null +++ b/_servicedata @@ -0,0 +1,4 @@ + + + https://github.com/anchore/grype-db + 9c21aeed9b6e365d74465ab63fa5926c1272d5ec \ No newline at end of file diff --git a/grype-db-0.26.0.obscpio b/grype-db-0.26.0.obscpio new file mode 100644 index 0000000..fcc68bb --- /dev/null +++ b/grype-db-0.26.0.obscpio @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:a46af0e01d34868ca53b0c62d3b0e42a401e4b1bc8ac3da9327acdae05ea1cfb +size 16137741 diff --git a/grype-db.changes b/grype-db.changes new file mode 100644 index 0000000..bd578a5 --- /dev/null +++ b/grype-db.changes @@ -0,0 +1,5 @@ +------------------------------------------------------------------- +Thu Oct 24 13:31:04 UTC 2024 - Johannes Kastl + +- new package grype-db: create a Grype vulnerability database from + upstream vulnerability data sources diff --git a/grype-db.obsinfo b/grype-db.obsinfo new file mode 100644 index 0000000..94eb78f --- /dev/null +++ b/grype-db.obsinfo @@ -0,0 +1,4 @@ +name: grype-db +version: 0.26.0 +mtime: 1729718412 +commit: 9c21aeed9b6e365d74465ab63fa5926c1272d5ec diff --git a/grype-db.spec b/grype-db.spec new file mode 100644 index 0000000..f82757e --- /dev/null +++ b/grype-db.spec @@ -0,0 +1,116 @@ +# +# spec file for package grype-db +# +# Copyright (c) 2024 SUSE LLC +# +# All modifications and additions to the file contributed by third parties +# remain the property of their copyright owners, unless otherwise agreed +# upon. The license for this file, and modifications and additions to the +# file, is the same license as for the pristine package itself (unless the +# license for the pristine package is not an Open Source License, in which +# case the license is the MIT License). An "Open Source License" is a +# license that conforms to the Open Source Definition (Version 1.9) +# published by the Open Source Initiative. + +# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# + + +Name: grype-db +Version: 0.26.0 +Release: 0 +Summary: A vulnerability scanner for container images and filesystems +License: Apache-2.0 +URL: https://github.com/anchore/grype-db +Source: %{name}-%{version}.tar.gz +Source1: vendor.tar.gz +BuildRequires: bash-completion +BuildRequires: fish +BuildRequires: go >= 1.23 +BuildRequires: zsh + +%description +Application to create a Grype vulnerability database from upstream +vulnerability data sources. + +%package -n %{name}-bash-completion +Summary: Bash Completion for %{name} +Group: System/Shells +Requires: %{name} = %{version} +Requires: bash-completion +Supplements: (%{name} and bash-completion) +BuildArch: noarch + +%description -n %{name}-bash-completion +Bash command line completion support for %{name}. + +%package -n %{name}-fish-completion +Summary: Fish Completion for %{name} +Group: System/Shells +Requires: %{name} = %{version} +Supplements: (%{name} and fish) +BuildArch: noarch + +%description -n %{name}-fish-completion +Fish command line completion support for %{name}. + +%package -n %{name}-zsh-completion +Summary: Zsh Completion for %{name} +Group: System/Shells +Requires: %{name} = %{version} +Supplements: (%{name} and zsh) +BuildArch: noarch + +%description -n %{name}-zsh-completion +zsh command line completion support for %{name}. + +%prep +%autosetup -p 1 -a 1 + +%build +COMMIT_HASH="$(sed -n 's/commit: \(.*\)/\1/p' %_sourcedir/%{name}.obsinfo)" + +DATE_FMT="+%%Y-%%m-%%dT%%H:%%M:%%SZ" +BUILD_DATE=$(date -u -d "@${SOURCE_DATE_EPOCH}" "${DATE_FMT}" 2>/dev/null || date -u -r "${SOURCE_DATE_EPOCH}" "${DATE_FMT}" 2>/dev/null || date -u "${DATE_FMT}") + +go build \ + -mod=vendor \ + -buildmode=pie \ + -ldflags=" \ + -X github.com/anchore/grype-db/cmd/grype-db/application.version=v%{version} \ + -X github.com/anchore/grype-db/cmd/grype-db/application.gitCommit=${COMMIT_HASH} \ + -X github.com/anchore/grype-db/cmd/grype-db/application.gitDescription=v%{version} \ + -X github.com/anchore/grype-db/cmd/grype-db/application.buildDate=$BUILD_DATE" \ + -o bin/%{name} ./cmd/%{name}/ + +%install +# Install the binary. +install -D -m 0755 bin/%{name} %{buildroot}/%{_bindir}/%{name} + +# create the bash completion file +mkdir -p %{buildroot}%{_datarootdir}/bash-completion/completions/ +%{buildroot}/%{_bindir}/%{name} completion bash > %{buildroot}%{_datarootdir}/bash-completion/completions/%{name} + +# create the fish completion file +mkdir -p %{buildroot}%{_datarootdir}/fish/vendor_completions.d/ +%{buildroot}/%{_bindir}/%{name} completion fish > %{buildroot}%{_datarootdir}/fish/vendor_completions.d/%{name}.fish + +# create the zsh completion file +mkdir -p %{buildroot}%{_datarootdir}/zsh/site-functions/ +%{buildroot}/%{_bindir}/%{name} completion zsh > %{buildroot}%{_datarootdir}/zsh/site-functions/_%{name} + +%files +%doc README.md +%license LICENSE +%{_bindir}/%{name} + +%files -n %{name}-bash-completion +%{_datarootdir}/bash-completion/completions/%{name} + +%files -n %{name}-fish-completion +%{_datarootdir}/fish/vendor_completions.d/%{name}.fish + +%files -n %{name}-zsh-completion +%{_datarootdir}/zsh/site-functions/_%{name} + +%changelog diff --git a/vendor.tar.gz b/vendor.tar.gz new file mode 100644 index 0000000..2aa6547 --- /dev/null +++ b/vendor.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:cc0e4e7c686b3244df780811d82677985fb152dbe6d48e70ce7cefbdfa736de8 +size 53406649