Merge pull request #205342 from dotlambda/nixops-insecure

nixops: mark certifi insecure
This commit is contained in:
Robert Schütz 2022-12-11 13:08:08 -08:00 committed by GitHub
commit 823d4b7e8c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 13 additions and 0 deletions

View File

@ -69,6 +69,14 @@ let
};
})
(self: super: {
certifi = super.certifi.overridePythonAttrs (old: {
meta = old.meta // {
knownVulnerabilities = [ "CVE-2022-23491" ];
};
});
})
];
}
).python;

View File

@ -9,6 +9,11 @@ let
overrides = [
poetry2nix.defaultPoetryOverrides
(self: super: {
certifi = super.certifi.overridePythonAttrs (old: {
meta = old.meta // {
knownVulnerabilities = [ "CVE-2022-23491" ];
};
});
pyjwt = super.pyjwt.overridePythonAttrs (old: {
meta = old.meta // {
knownVulnerabilities = lib.optionals (lib.versionOlder old.version "2.4.0") [