mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-26 17:03:01 +00:00
poetry: mark insecure
The version of cleo in poetry.lock (1.0.0a5) is vulnerable to CVE-2022-42966.
This commit is contained in:
parent
c2e9f0550a
commit
d1bdaa9a99
@ -52,5 +52,8 @@ poetry2nix.mkPoetryApplication {
|
||||
meta = with lib; {
|
||||
inherit (python.meta) platforms;
|
||||
maintainers = with maintainers; [ adisbladis jakewaksbaum ];
|
||||
knownVulnerabilities = [
|
||||
"CVE-2022-42966" # cleo version in poetry.lock is vulnerable
|
||||
];
|
||||
};
|
||||
}
|
||||
|
Loading…
Reference in New Issue
Block a user