cafkafk/nixpkgs
cafkafk/nixpkgs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 2
nixpkgs/pkgs/development/misc
History
Thiago Kenji Okada c44e0571fc resholve: mark it as knownVulnerabilities, allow resholve-utils usage 
We are marking `resholve` itself with `meta.knownVulnerabilities`, and
overriding `resholve-utils` functions's `resholve` with
`meta.knownVulnerabilities = [ ]`.

This way, we can still use `resholve` at build-time without triggering
security warnings, however we can't instantiate `resholve` itself. See:

```
$ nix-build -A resholve
error: Package ‘resholve-0.8.4’ in /.../nixpkgs/pkgs/development/misc/resholve/resholve.nix:48 is marked as insecure, refusing to evaluate.

$ nix-build -A ix
/nix/store/k8cvj1bfxkjj8zdg6kgm7r8942bbj7w7-ix-20190815
```

For debugging purposes, you can still bypass the security checks and
instantiate `resholve` by:

```
$ NIXPKGS_ALLOW_INSECURE=1 nix-build -A resholve
/nix/store/77s87hhqymc6x9wpclb04zg5jwm6fsij-resholve-0.8.4
```
2023-01-15 12:29:42 +00:00
..
avr/libc avrlibc: 2.0.0 -> 2.1.0 2022-10-26 18:27:51 +11:00
avr8-burn-omat
breakpad
brev-cli brev-cli: 0.6.186 -> 0.6.197 2022-12-21 17:35:52 +08:00
cppreference-doc cppreference-doc: init at 2022.07.30 2022-09-04 11:49:06 +02:00
datafusion datafusion-cli: unstable-2022-04-08 -> 15.0.0 2022-12-17 20:42:15 -05:00
h3
haskell haskellPackages.ldgallery-compiler: mark broken with ghc-9.2 2022-12-24 11:58:07 +09:00
loc
msp430 all-packages.nix: remove inherit (*xorg) *'s 2022-10-14 20:48:09 +03:00
newlib
or1k
rappel
resholve resholve: mark it as knownVulnerabilities, allow resholve-utils usage 2023-01-15 12:29:42 +00:00
rpiboot
umr
vc4
yelp-tools yelp-tools: 42.0 → 42.1 2022-11-08 21:55:59 -06:00