nixos/nixpkgs.git - Nix Packages collection

diff options

author	Thiago Kenji Okada <thiagokokada@gmail.com>	2023-01-10 18:21:04 +0000
committer	Thiago Kenji Okada <thiagokokada@gmail.com>	2023-01-15 12:29:42 +0000
commit	c44e0571fccee3d2da453e106bf947f8db575273 (patch)
tree	c8a5d3653da185d391ec237e130891e001cb8eea /pkgs/development/python-modules/python-mapnik/python-mapnik_std_optional.patch
parent	e13660c50c1f8e76158dff19602206a67806db04 (diff)

resholve: mark it as knownVulnerabilities, allow resholve-utils usage

We are marking `resholve` itself with `meta.knownVulnerabilities`, and overriding `resholve-utils` functions's `resholve` with `meta.knownVulnerabilities = [ ]`. This way, we can still use `resholve` at build-time without triggering security warnings, however we can't instantiate `resholve` itself. See: ``` $ nix-build -A resholve error: Package ‘resholve-0.8.4’ in /.../nixpkgs/pkgs/development/misc/resholve/resholve.nix:48 is marked as insecure, refusing to evaluate. $ nix-build -A ix /nix/store/k8cvj1bfxkjj8zdg6kgm7r8942bbj7w7-ix-20190815 ``` For debugging purposes, you can still bypass the security checks and instantiate `resholve` by: ``` $ NIXPKGS_ALLOW_INSECURE=1 nix-build -A resholve /nix/store/77s87hhqymc6x9wpclb04zg5jwm6fsij-resholve-0.8.4 ```

Diffstat (limited to 'pkgs/development/python-modules/python-mapnik/python-mapnik_std_optional.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: