Merge pull request #307213 from katexochen/bob/vuln

bob: fix vulnerable dependencies
2024-05-03 19:45:37 +03:00 · 2024-05-03 19:45:37 +03:00 · 17a5dca7ef
commit 17a5dca7ef
parent d7c846b443 39d27661d5
1 changed files with 17 additions and 2 deletions
--- a/pkgs/development/tools/build-managers/bob/default.nix
+++ b/pkgs/development/tools/build-managers/bob/default.nix
@ -1,4 +1,10 @@
-{ lib, stdenv, buildGoModule, fetchFromGitHub, installShellFiles }:
+{ lib
+, stdenv
+, buildGoModule
+, fetchFromGitHub
+, installShellFiles
+, fetchpatch
+}:

 buildGoModule rec {
  pname = "bob";
@ -11,9 +17,18 @@ buildGoModule rec {
    hash = "sha256-zmWfOLBb+GWw9v6LdCC7/WaP1Wz7UipPwqkmI1+rG8Q=";
  };

+  patches = [
+    # Fix vulnerable dependencies
+    # Backport of https://github.com/benchkram/bob/pull/387
+    (fetchpatch {
+      url = "https://github.com/benchkram/bob/commit/5020e6fafbfbcb1b3add5d936886423ce882793d.patch";
+      hash = "sha256-if1ZErI0Un7d26eOkYSkEa87+VTRcEtF6JbsJYOHpHE=";
+    })
+  ];
+
  ldflags = [ "-s" "-w" "-X main.Version=${version}" ];

-  vendorHash = "sha256-S1XUgjdSVTWXehOLCxXcvj0SH12cxqvYadVlCw/saF4=";
+  vendorHash = "sha256-u0nFaTQWU9O7A/RAhGaLcBka+YNGjSlpycDF8TLQALw=";

  excludedPackages = [ "example/server-db" "test/e2e" "tui-example" ];