dev/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
c44e0571fc
nixpkgs/pkgs/development
History
Thiago Kenji Okada c44e0571fc resholve: mark it as knownVulnerabilities, allow resholve-utils usage 
We are marking `resholve` itself with `meta.knownVulnerabilities`, and
overriding `resholve-utils` functions's `resholve` with
`meta.knownVulnerabilities = [ ]`.

This way, we can still use `resholve` at build-time without triggering
security warnings, however we can't instantiate `resholve` itself. See:

```
$ nix-build -A resholve
error: Package ‘resholve-0.8.4’ in /.../nixpkgs/pkgs/development/misc/resholve/resholve.nix:48 is marked as insecure, refusing to evaluate.

$ nix-build -A ix
/nix/store/k8cvj1bfxkjj8zdg6kgm7r8942bbj7w7-ix-20190815
```

For debugging purposes, you can still bypass the security checks and
instantiate `resholve` by:

```
$ NIXPKGS_ALLOW_INSECURE=1 nix-build -A resholve
/nix/store/77s87hhqymc6x9wpclb04zg5jwm6fsij-resholve-0.8.4
```
2023-01-15 12:29:42 +00:00
..
androidndk-pkgs
beam-modules
bower-modules/generic
chez-modules
compilers Merge pull request #208132 from wegank/cmdstan-aarch64-linux 2023-01-10 11:46:50 +01:00
coq-modules coq_8_17: init at 8.17+rc1 (#209145) 2023-01-06 15:51:50 +01:00
dhall-modules
dotnet-modules
em-modules/generic
embedded avrdude: 7.0 -> 7.1 2023-01-10 09:10:22 +01:00
gnuradio-modules
guile-modules
haskell-modules Merge pull request #209816 from Artturin/deprecate-top-level-platform-aliases 2023-01-09 22:15:50 +02:00
idris-modules
interpreters Merge pull request #208928 from drupol/php/bumps-january-2023 2023-01-09 08:23:25 +01:00
java-modules
libraries Merge pull request #209684 from r-ryantm/auto-update/cgreen 2023-01-10 18:19:09 +01:00
lisp-modules
lisp-modules-new
lua-modules luaPackages.plenary-nvim: 2022-10 -> 2023-01 2023-01-09 12:26:57 +01:00
misc resholve: mark it as knownVulnerabilities, allow resholve-utils usage 2023-01-15 12:29:42 +00:00
mobile
nim-packages
node-packages
ocaml-modules ocamlPackages.biniou: 1.2.1 → 1.2.2 (#208852) 2023-01-10 00:37:56 +01:00
octave-modules
perl-modules strip-nondeterminism: 1.0.0 -> 1.13.0 2023-01-09 18:33:56 +02:00
pharo
php-packages php80Extensions.datadog_trace: 0.70.0 -> 0.82.0 2023-01-08 20:49:35 +01:00
python2-modules
python-modules Merge pull request #209661 from r-ryantm/auto-update/python310Packages.mailmanclient 2023-01-10 18:34:21 +01:00
quickemu
r-modules rPackages.classInt: add libiconv dependency to fix build on darwin 2023-01-06 12:05:12 +00:00
rocm-modules/update-script
ruby-modules bundler: 2.4.2 -> 2.4.3 2023-01-06 22:59:58 +01:00
scheme-modules/scheme-bytestructures
skaware-packages
tools Merge pull request #210005 from matthiasbeyer/update-cargo-llvm-cov 2023-01-10 12:28:29 -05:00
web flyctl: 0.0.441 -> 0.0.443 2023-01-08 11:01:23 +00:00