nixpkgs

Author	SHA1	Message	Date
Tamara Schmitz	b80c3284d5	nixos/hardened: update hardened profile to new recommendations Borrowing from here to match hardened profile with more recent kernels: * https://madaidans-insecurities.github.io/guides/linux-hardening.html?#boot-parameters * https://github.com/a13xp0p0v/kernel-hardening-checker/ Removed "slub_debug" as that option disables kernel memory address hashing. You also see a big warning about this in the dmesg: "This system shows unhashed kernel memory addresses via the console, logs, and other interfaces." "init_on_alloc=1" and "init_on_free=1" zeroes all SLAB and SLUB allocations. Introduced in 6471384af2a6530696fc0203bafe4de41a23c9ef. Also the default for the Android Google kernel btw. It is on by default through the KConfig. "slab_nomerge" prevents the merging of slab/slub caches. These are effectively slab/slub pools. "LEGACY_VSYSCALL_NONE" disables the older vsyscall mechanic that relies on static address. It got superseeded by vdsos a decade ago. Read some LWN.net to learn more ;) "debugfs=off" I'm sure there are some few userspace programs that rely on debugfs, but they shouldn't. Most other things mentioned on the blog where already the default on a running machine or may not be applicable. Most other Kconfigs changes come from the kernel hardening checker and were added, when they were not applied to the kernel already. Unsure about CONFIG_STATIC_USERMODEHELPER. Would need testing.	2024-01-27 20:43:58 +00:00
Ben Siraphob	30b34ac007	Merge pull request #267499 from NilsIrl/pygrep-pythonpath [pre-commit] Forward sys.path to pygrep via PYTHONPATH	2024-01-27 15:12:49 -05:00
R. Ryantm	30722c14c1	cryptor: 1.0.3 -> 1.1.0	2024-01-27 19:59:38 +00:00
André Silva	9a17c9cf0b	Merge pull request #284309 from Lillecarl/browserpass_copy_manifest browserpass: Copy FF manifest to common location	2024-01-27 19:55:21 +00:00
maxine	4f34f35eae	Merge pull request #283184 from trofi/colord-update	2024-01-27 20:35:05 +01:00
h7x4	ce5a6076f0	Merge pull request #281653 from yisraeldov/fennel-ls fennel-ls: init at 0.1.0	2024-01-27 20:29:44 +01:00
Weijia Wang	86b6eb881e	Merge pull request #281063 from r-ryantm/auto-update/btrfs-assistant btrfs-assistant: 1.8 -> 1.9	2024-01-27 20:07:36 +01:00
Weijia Wang	f19fe975a5	Merge pull request #281801 from r-ryantm/auto-update/istioctl istioctl: 1.20.1 -> 1.20.2	2024-01-27 20:04:46 +01:00
Weijia Wang	c19c4390f0	Merge pull request #281887 from r-ryantm/auto-update/faustPhysicalModeling faustPhysicalModeling: 2.69.3 -> 2.70.3	2024-01-27 20:03:59 +01:00
Weijia Wang	dd48ea90aa	Merge pull request #282319 from r-ryantm/auto-update/kubeseal kubeseal: 0.24.5 -> 0.25.0	2024-01-27 20:00:20 +01:00
Weijia Wang	877861c939	Merge pull request #282108 from r-ryantm/auto-update/linkerd_edge linkerd_edge: 23.12.4 -> 24.1.2	2024-01-27 19:58:26 +01:00
Weijia Wang	26ab3c9b8c	Merge pull request #282279 from r-ryantm/auto-update/elektroid elektroid: 2.5.2 -> 3.0	2024-01-27 19:53:54 +01:00
Weijia Wang	ea3d991f47	Merge pull request #282285 from r-ryantm/auto-update/linkerd_stable linkerd_stable: 2.14.8 -> 2.14.9	2024-01-27 19:51:29 +01:00
Weijia Wang	c519f75d1d	Merge pull request #282326 from r-ryantm/auto-update/kubeshark kubeshark: 52.0.0 -> 52.1.9	2024-01-27 19:51:08 +01:00
Weijia Wang	a37be07fd1	Merge pull request #282241 from r-ryantm/auto-update/trytond trytond: 7.0.2 -> 7.0.5	2024-01-27 19:49:44 +01:00
Janik	07e4d5a5a3	Merge pull request #281485 from KamilaBorowska/remove-xfix-matrix-from-maintainer-list Remove xfix's matrix address from maintainers list	2024-01-27 19:49:29 +01:00
Weijia Wang	e450ddfa0c	Merge pull request #282376 from r-ryantm/auto-update/tryton tryton: 5.4.2 -> 7.0.5	2024-01-27 19:47:39 +01:00
Weijia Wang	d66e92e063	Merge pull request #282357 from r-ryantm/auto-update/reaper reaper: 7.08 -> 7.09	2024-01-27 19:45:02 +01:00
Kamila Borowska	dc2e527441	maintainers: remove xfix matrix handle	2024-01-27 19:43:11 +01:00
Nick Cao	4e65ef1b83	Merge pull request #283925 from hzeller/20240125-make-synlig-compile yosys-synlig: fix compilation with Yosys 0.37	2024-01-27 13:42:41 -05:00
Weijia Wang	f12c049abc	Merge pull request #282386 from r-ryantm/auto-update/python311Packages.agate-sql python311Packages.agate-sql: 0.7.0 -> 0.7.2	2024-01-27 19:39:11 +01:00
Weijia Wang	be0ee62c35	Merge pull request #282389 from r-ryantm/auto-update/python312Packages.plaid-python python312Packages.plaid-python: 18.3.0 -> 18.4.0	2024-01-27 19:37:48 +01:00
Weijia Wang	4024d06810	Merge pull request #282754 from r-ryantm/auto-update/vivaldi vivaldi: 6.5.3206.50 -> 6.5.3206.55	2024-01-27 19:33:44 +01:00
Weijia Wang	801e7e56a0	Merge pull request #282784 from r-ryantm/auto-update/lziprecover lziprecover: 1.23 -> 1.24	2024-01-27 19:31:41 +01:00
Weijia Wang	14b2cfcacc	Merge pull request #282785 from r-ryantm/auto-update/vnstat vnstat: 2.11 -> 2.12	2024-01-27 19:31:12 +01:00
Janik	421628cb97	Merge pull request #279440 from brpaz/add-gomarkdoc gomarkdoc: init at 1.1.0	2024-01-27 19:22:21 +01:00
Weijia Wang	8829b6c2a0	Merge pull request #282760 from wegank/muparser-bump muparser: 2.2.3 -> 2.3.4, refactor	2024-01-27 19:09:57 +01:00
Cosima Neidahl	6b65515306	Merge pull request #284300 from r-ryantm/auto-update/lomiri.deviceinfo lomiri.deviceinfo: 0.2.1 -> 0.2.2	2024-01-27 19:09:06 +01:00
Nikolay Korotkiy	1dd556946e	Merge pull request #283508 from atorres1985-contrib/ventoy ventoy: 1.0.96 -> 1.0.97	2024-01-27 21:55:41 +04:00
Janik	e355ed2caa	Merge pull request #280084 from mabster314/kplex Add kplex v1.4	2024-01-27 18:47:10 +01:00
Dmitry Kalinkin	18d26c558f	Merge pull request #281054 from xworld21/texlive-20240114 texlive: 2022-final -> 2023.202411	2024-01-27 12:42:40 -05:00
Carl Hjerpe	62b78e643c	browserpass: Copy FF manifest to common location This allows is to link-farm native-messaging hosts easier elsewhere. (home-manager farms "${pkg}/lib/mozilla/native-messaging-hosts" into ~/.mozilla/native-messaging-hosts)	2024-01-27 18:30:09 +01:00
Doron Behar	f34b50851a	Merge pull request #284255 from r-ryantm/auto-update/sile sile: 0.14.14 -> 0.14.16	2024-01-27 19:19:22 +02:00
Henner Zeller	4fba3d0fa5	yosys-synlig: fix compilation with Yosys 0.37 Discussed in https://github.com/NixOS/nixpkgs/pull/281384 This is filed as upstream issue https://github.com/chipsalliance/synlig/issues/2299 ... and addressed in this pull request https://github.com/chipsalliance/synlig/pull/2300 Patched into this nix package. Co-authored-by: Luflosi <luflosi@luflosi.de>	2024-01-27 09:17:18 -08:00
Sandro	c0e3e5565a	Merge pull request #282930 from NixOS/SuperSandro2000-patch-1 ensemble-chorus: fix version format	2024-01-27 18:11:47 +01:00
Weijia Wang	7d71c61e9c	Merge pull request #282696 from wegank/dbus-c++-musl dbus_cplusplus: add musl support	2024-01-27 18:10:53 +01:00
OPNA2608	fac4c957b8	lomiri.deviceinfo: Add meta.changelog	2024-01-27 18:05:14 +01:00
Luke Granger-Brown	0f8804e6a5	Merge pull request #283916 from devusb/fix-pomerium-test nixos/pomerium: fix UI test	2024-01-27 17:02:35 +00:00
Maximilian Bosch	e5a33b929c	Merge pull request #284238 from r-ryantm/auto-update/cve cve: 1.2.1 -> 1.3.0	2024-01-27 17:57:57 +01:00
R. Ryantm	708f24b773	lomiri.deviceinfo: 0.2.1 -> 0.2.2	2024-01-27 16:56:13 +00:00
Nick Cao	1bb0495405	Merge pull request #284254 from r-ryantm/auto-update/pscale pscale: 0.177.0 -> 0.178.0	2024-01-27 11:40:17 -05:00
Nick Cao	26f8f975be	Merge pull request #284253 from r-ryantm/auto-update/pupdate pupdate: 3.0.0 -> 3.1.0	2024-01-27 11:39:56 -05:00
Nick Cao	6ae98d464d	Merge pull request #284247 from r-ryantm/auto-update/kode-mono kode-mono: 1.202 -> 1.204	2024-01-27 11:39:29 -05:00
Nick Cao	c5f8185879	Merge pull request #284243 from r-ryantm/auto-update/crawley crawley: 1.7.1 -> 1.7.2	2024-01-27 11:39:05 -05:00
Nick Cao	90dff5b34b	Merge pull request #284279 from r-ryantm/auto-update/terragrunt terragrunt: 0.54.16 -> 0.54.22	2024-01-27 11:38:10 -05:00
Nick Cao	4886420aab	Merge pull request #284274 from r-ryantm/auto-update/cargo-deny cargo-deny: 0.14.7 -> 0.14.10	2024-01-27 11:37:08 -05:00
Nick Cao	2268244969	Merge pull request #284272 from r-ryantm/auto-update/harsh harsh: 0.8.30 -> 0.8.31	2024-01-27 11:36:48 -05:00
Nick Cao	97326ab806	Merge pull request #284270 from r-ryantm/auto-update/python311Packages.aiovodafone python311Packages.aiovodafone: 0.5.3 -> 0.5.4	2024-01-27 11:36:11 -05:00
Nick Cao	e2aae1f51f	Merge pull request #284239 from r-ryantm/auto-update/cargo-semver-checks cargo-semver-checks: 0.27.0 -> 0.28.0	2024-01-27 11:35:15 -05:00
Nick Cao	4536a546cb	Merge pull request #284242 from r-ryantm/auto-update/diff-pdf diff-pdf: 0.5.1 -> 0.5.2	2024-01-27 11:34:46 -05:00

1 2 3 4 5 ...

577112 Commits