yandex-browser: mark insecure

2022-03-11 17:26:45 +03:00 · 2022-03-11 17:26:45 +03:00 · dde9e8d070
commit dde9e8d070
parent 767b5c1730
1 changed files with 7 additions and 0 deletions
--- a/pkgs/applications/networking/browsers/yandex-browser/default.nix
+++ b/pkgs/applications/networking/browsers/yandex-browser/default.nix
@ -132,5 +132,12 @@ stdenv.mkDerivation rec {
    license = licenses.unfree;
    maintainers = with maintainers; [ dan4ik605743 ];
    platforms = [ "x86_64-linux" ];
+
+    knownVulnerabilities = [
+      ''
+      Trusts a Russian government issued CA certificate for some websites.
+      See https://habr.com/en/company/yandex/blog/655185/ (Russian) for details.
+      ''
+    ];
  };
 }