New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
electron: mark insecure versions (3,4,5) and require explicit version of electron in packages #89758
Conversation
41f6a53
to
57aa8bd
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good to me - thanks for taking the time to figure out which version rambox required. Saved me a headache down the road. :)
I like this approach, for whatever reason electron packages indeed aren't sufficiently tested (sometimes not at all, other times the issue is not immediately obvious). Conflict is hopefully minor :). Out of curiosity--if packaged applications find using specific versions of electron useful/necessary, (see also fun situation with LLVM versions ^_^) |
57aa8bd
to
9696188
Compare
9696188
to
de5799f
Compare
It was. :-) Resolved the conflict in de5799f3e75d2368c441a88364dc42cb2ca4335c
|
+ require explicit version of electron in packages
de5799f
to
1499874
Compare
@prusnak Thank you soo much ✨ 💖 |
Motivation for this change
Things done
sandbox
innix.conf
on non-NixOS linux)nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
./result/bin/
)nix path-info -S
before and after)