pyrox.dev / nixpkgs
lol
fork atom

paretosecurity: 0.0.88 -> 0.0.89 (#391613)

Domen Kožar 4b3a3d6e c1d0a28f

options
unified split
Changed files
+19 -4
nixos
tests
paretosecurity.nix
pkgs
by-name
pa
paretosecurity
package.nix
+17 -2
nixos/tests/paretosecurity.nix 
···

       
7

       
 

       
    { config, pkgs, ... }:


     

       
8

       
 

       
    {


     

       
9

       
 

       
      services.paretosecurity.enable = true;


     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       
10

       
 

       
    };


     

       
11

       
 

       



     

       
12

       
 

       
  testScript = ''


     

       
13

       
-

       
    (status, out) = machine.execute("paretosecurity check")


     

       
14

       
-

       
    assert status == 1, "paretosecurity did not return 1 on failing checks"


     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       
15

       
 

       
  '';


     

       
16

       
 

       
}


     
···

       
7

       
 

       
    { config, pkgs, ... }:


     

       
8

       
 

       
    {


     

       
9

       
 

       
      services.paretosecurity.enable = true;


     

       
10

       
+

       



     

       
11

       
+

       
      users.users.alice = {


     

       
12

       
+

       
        isNormalUser = true;


     

       
13

       
+

       
      };


     

       
14

       
 

       
    };


     

       
15

       
 

       



     

       
16

       
 

       
  testScript = ''


     

       
17

       
+

       
    machine.succeed(


     

       
18

       
+

       
      "su -- alice -c 'paretosecurity check"


     

       
19

       
+

       



     

       
20

       
+

       
      # Disable some checks that need intricate test setup so that this test


     

       
21

       
+

       
      # remains simple and fast. Tests for all checks and edge cases available


     

       
22

       
+

       
      # at https://github.com/ParetoSecurity/agent/tree/main/test/integration


     

       
23

       
+

       
      + " --skip c96524f2-850b-4bb9-abc7-517051b6c14e"  # SecureBoot


     

       
24

       
+

       
      + " --skip 37dee029-605b-4aab-96b9-5438e5aa44d8"  # Screen lock


     

       
25

       
+

       
      + " --skip 21830a4e-84f1-48fe-9c5b-beab436b2cdb"  # Disk encryption


     

       
26

       
+

       
      + " --skip 44e4754a-0b42-4964-9cc2-b88b2023cb1e"  # Pareto Security is up to date


     

       
27

       
+

       
      + " --skip f962c423-fdf5-428a-a57a-827abc9b253e"  # Password manager installed


     

       
28

       
+

       
      + "'"


     

       
29

       
+

       
    )


     

       
30

       
 

       
  '';


     

       
31

       
 

       
}
+2 -2
pkgs/by-name/pa/paretosecurity/package.nix 
···

       
9

       
 

       



     

       
10

       
 

       
buildGoModule rec {


     

       
11

       
 

       
  pname = "paretosecurity";


     

       
12

       
-

       
  version = "0.0.88";


     

       
13

       
 

       



     

       
14

       
 

       
  src = fetchFromGitHub {


     

       
15

       
 

       
    owner = "ParetoSecurity";


     

       
16

       
 

       
    repo = "agent";


     

       
17

       
 

       
    rev = version;


     

       
18

       
-

       
    hash = "sha256-UVnZhkajrc9q6AZvIU7oi931ugxkiVSPk1NugAERnek=";


     

       
19

       
 

       
  };


     

       
20

       
 

       



     

       
21

       
 

       
  vendorHash = "sha256-HReQu23sHLaxc5N8h2vYv64ruJPmY4HM9whAEKV+3Eo=";


     
···

       
9

       
 

       



     

       
10

       
 

       
buildGoModule rec {


     

       
11

       
 

       
  pname = "paretosecurity";


     

       
12

       
+

       
  version = "0.0.89";


     

       
13

       
 

       



     

       
14

       
 

       
  src = fetchFromGitHub {


     

       
15

       
 

       
    owner = "ParetoSecurity";


     

       
16

       
 

       
    repo = "agent";


     

       
17

       
 

       
    rev = version;


     

       
18

       
+

       
    hash = "sha256-qZMJFrkHRurUvltDVubyfol5IHKxfyDbNE2XFo/KXF8=";


     

       
19

       
 

       
  };


     

       
20

       
 

       



     

       
21

       
 

       
  vendorHash = "sha256-HReQu23sHLaxc5N8h2vYv64ruJPmY4HM9whAEKV+3Eo=";