nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-27 01:13:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

poetry: mark insecure

Browse Source 
The version of cleo in poetry.lock (1.0.0a5) is vulnerable to
CVE-2022-42966.
This commit is contained in:
Robert Schütz 2022-06-04 16:44:42 +00:00
parent c2e9f0550a
commit d1bdaa9a99
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix
View File

@ -52,5 +52,8 @@ poetry2nix.mkPoetryApplication {
meta = with lib; {
inherit (python.meta) platforms;
maintainers = with maintainers; [ adisbladis jakewaksbaum ];
knownVulnerabilities = [
"CVE-2022-42966" # cleo version in poetry.lock is vulnerable
];
};
}