dev/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

python312Packages.js2py: mark insecure (#348943)

Browse Source
This commit is contained in:
Emily 2024-10-17 06:55:12 +01:00 committed by GitHub
commit 02289590e9
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 3 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
pkgs/development/python-modules/js2py/default.nix
View File

@ -42,5 +42,6 @@ buildPythonPackage rec {
homepage = "https://github.com/PiotrDabkowski/Js2Py"; homepage = "https://github.com/PiotrDabkowski/Js2Py";
license = licenses.mit; license = licenses.mit;
maintainers = with maintainers; [ onny ]; maintainers = with maintainers; [ onny ];
knownVulnerabilities = [ "CVE-2024-28397" ];
}; };
} }

12
pkgs/development/python-modules/lark/default.nix
View File

@ -3,9 +3,6 @@
buildPythonPackage, buildPythonPackage,
fetchFromGitHub, fetchFromGitHub,
regex, regex,
pytestCheckHook,
pythonOlder,
js2py,
setuptools, setuptools,
}: }:
@ -33,13 +30,8 @@ buildPythonPackage rec {
"lark.grammars" "lark.grammars"
]; ];
# Js2py is not supported on 3.12 # Js2py is needed for tests but it's marked as insecure
doCheck = pythonOlder "3.12"; doCheck = false;
nativeCheckInputs = [
js2py
pytestCheckHook
];
meta = with lib; { meta = with lib; {
description = "Modern parsing library for Python, implementing Earley & LALR(1) and an easy interface"; description = "Modern parsing library for Python, implementing Earley & LALR(1) and an easy interface";