nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-31 18:15:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

yarn2nix: fix "Incomplete URL substring sanitization"

Browse Source 
'https://codeload.github.com' may be followed by an arbitrary host name.
This commit is contained in:
Sandro Jäckel 2024-09-17 15:23:13 +02:00
parent a9c9441997
commit 60550330ce
No known key found for this signature in database
GPG Key ID: 3AF5A43A3EECC2E5
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pkgs/development/tools/yarn2nix-moretea/yarn2nix/lib/fixPkgAddMissingSha1.js
View File

@ -46,7 +46,7 @@ async function fixPkgAddMissingSha1(pkg) {
const [url, sha1] = pkg.resolved.split("#", 2);
if (sha1 || url.startsWith("https://codeload.github.com")) {
if (sha1 || url.startsWith("https://codeload.github.com/")) {
return pkg;
}