# Maintainer: kpcyrd <git@rxv.cc>
pkgname=osv-scanner
pkgver=1.3.4
pkgrel=2
pkgdesc="Vulnerability scanner written in Go which uses the data provided by https://osv.dev"
url="https://github.com/google/osv-scanner"
arch="all"
license="Apache-2.0"
makedepends="go"
options="net"
source="https://github.com/google/osv-scanner/archive/v$pkgver/osv-scanner-$pkgver.tar.gz"

export GOCACHE="${GOCACHE:-"$srcdir/go-cache"}"
export GOTMPDIR="${GOTMPDIR:-"$srcdir"}"
export GOMODCACHE="${GOMODCACHE:-"$srcdir/go"}"

build() {
	mkdir build
	go build -o build/ ./cmd/...
}

check() {
	# TestRun fails because more ghsa's were published since it was made
	# shellcheck disable=2046
	go test $(go list ./... | grep -v cmd/osv-scanner)
}

package() {
	install -Dm755 ./build/osv-scanner -t "$pkgdir"/usr/bin/
}

sha512sums="
71f854e4ed26825cf80f438fd02d6f4299c47030abaea0ccf54db10df450175f9f12c0c8b00421c1e81ff6aa72c7de1d8be2699946fcf23aac0d75355bb6c113  osv-scanner-1.3.4.tar.gz
"