mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-26 08:53:21 +00:00
prefetch-yarn-deps: add cacert to provide certificates during fetches
Ideally fetch-yarn-deps could do like some other fetchers and support using SSL_CERT_FILE if it exists and also only verify integrity on FOD hash unless using an empty/test hash. But this should keep at least the same semantics as before the recent Node.js change to stop using the built-in certificate store in favor of the system one (which does not exist by default in the build sandbox).
This commit is contained in:
parent
e4ad989506
commit
ab99231a36
@ -62,7 +62,7 @@ in {
|
|||||||
dontUnpack = src == null;
|
dontUnpack = src == null;
|
||||||
dontInstall = true;
|
dontInstall = true;
|
||||||
|
|
||||||
nativeBuildInputs = [ prefetch-yarn-deps ];
|
nativeBuildInputs = [ prefetch-yarn-deps cacert ];
|
||||||
GIT_SSL_CAINFO = "${cacert}/etc/ssl/certs/ca-bundle.crt";
|
GIT_SSL_CAINFO = "${cacert}/etc/ssl/certs/ca-bundle.crt";
|
||||||
|
|
||||||
buildPhase = ''
|
buildPhase = ''
|
||||||
|
Loading…
Reference in New Issue
Block a user