From 9a125361b3063e8202a6067b1ba17dea77ef41c1 Mon Sep 17 00:00:00 2001
From: ruby0b <106119328+ruby0b@users.noreply.github.com>
Date: Wed, 16 Oct 2024 03:33:37 +0200
Subject: [PATCH] python312Packages.js2py: mark insecure

https://github.com/Marven11/CVE-2024-28397-js2py-Sandbox-Escape
(cherry picked from commit ac6983c06360b104851da95679c85ee5467fefa0)
---
 pkgs/development/python-modules/js2py/default.nix | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pkgs/development/python-modules/js2py/default.nix b/pkgs/development/python-modules/js2py/default.nix
index fd28870e0e76..1ecceaf8329e 100644
--- a/pkgs/development/python-modules/js2py/default.nix
+++ b/pkgs/development/python-modules/js2py/default.nix
@@ -42,5 +42,6 @@ buildPythonPackage rec {
     homepage = "https://github.com/PiotrDabkowski/Js2Py";
     license = licenses.mit;
     maintainers = with maintainers; [ onny ];
+    knownVulnerabilities = [ "CVE-2024-28397" ];
   };
 }