646b892680
Some checks failed
Periodic Merges (6h) / master → staging-nixos (push) Failing after 12m50s
Periodic Merges (6h) / master → staging-next (push) Failing after 12m54s
Periodic Merges (24h) / merge-base(master,staging) → haskell-updates (push) Failing after 11m54s
Periodic Merges (6h) / staging-next → staging (push) Failing after 12m13s
Periodic Merges (24h) / staging-next-25.05 → staging-25.05 (push) Failing after 13m24s
Periodic Merges (24h) / release-25.05 → staging-next-25.05 (push) Failing after 14m28s
40 lines
1023 B
Nix
40 lines
1023 B
Nix
{
|
|
fetchurl,
|
|
lib,
|
|
stdenv,
|
|
flex,
|
|
}:
|
|
|
|
stdenv.mkDerivation rec {
|
|
pname = "splint";
|
|
version = "3.1.2";
|
|
|
|
src = fetchurl {
|
|
url = "https://www.splint.org/downloads/${pname}-${version}.src.tgz";
|
|
sha256 = "02pv8kscsrkrzip9r08pfs9xs98q74c52mlxzbii6cv6vx1vd3f7";
|
|
};
|
|
|
|
patches = [ ./tmpdir.patch ] ++ lib.optional stdenv.hostPlatform.isDarwin ./darwin.patch;
|
|
|
|
buildInputs = [ flex ];
|
|
|
|
doCheck = true;
|
|
|
|
meta = with lib; {
|
|
homepage = "http://www.splint.org/";
|
|
description = "Annotation-assisted lightweight static analyzer for C";
|
|
mainProgram = "splint";
|
|
|
|
longDescription = ''
|
|
Splint is a tool for statically checking C programs for security
|
|
vulnerabilities and coding mistakes. With minimal effort, Splint
|
|
can be used as a better lint. If additional effort is invested
|
|
adding annotations to programs, Splint can perform stronger
|
|
checking than can be done by any standard lint.
|
|
'';
|
|
|
|
license = licenses.gpl2Plus;
|
|
platforms = platforms.unix;
|
|
};
|
|
}
|