Skip to content
This repository has been archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
base: e3926c8043cf
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
compare: e117e6dd268c
Choose a head ref
  • 17 commits
  • 11 files changed
  • 7 contributors

Commits on Jun 30, 2019

  1. gnupg: change default keyserver to non-SKS 

    See https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f.

The SKS network is vulnerable to certificate poisoning, which can
destroy GnuPG installations. keys.openpgp.org is a new non-SKS keyserver
that is resistant to this type of attack.

With such an attack being possible, it is unsafe to use SKS keyservers
for almost anything, and so we should protect our users from a now
unsafe default. keys.openpgp.org offers some (but not all) functionality
of SKS, and is better than nothing.

This default is only present in gnupg22. gnupg20 and gnupg1orig are not
affected.
    @alyssais
    alyssais committed Jun 30, 2019
    Copy the full SHA
    c727083 View commit details
    Browse the repository at this point in the history

  2. gitAndTools.hub: 2.12.0 -> 2.12.1

    @marsam
    marsam committed Jun 30, 2019
    Copy the full SHA
    76a9a0c View commit details
    Browse the repository at this point in the history

  3. gnupg: apply default server CA verification patch 

    See discussion at
NixOS/nixpkgs#63952 (comment).

Upstream commit:

commit 1c9cc97e9d47d73763810dcb4a36b6cdf31a2254
Author: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Date:   Sun Jun 30 11:54:35 2019 -0400

    dirmngr: Only use SKS pool CA for SKS pool

    * dirmngr/http.c (http_session_new): when checking whether the
    keyserver is the HKPS pool, check specifically against the pool name,
    as ./configure might have been used to select a different default
    keyserver.  It makes no sense to apply Kristian's certificate
    authority to anything other than the literal host
    hkps.pool.sks-keyservers.net.

    Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
    GnuPG-Bug-Id: 4593
    @alyssais
    alyssais committed Jun 30, 2019
    Copy the full SHA
    ba23c14 View commit details
    Browse the repository at this point in the history

  4. scalafmt: 2.0.0-RC7 -> 2.0.0

    @kalbasit
    kalbasit committed Jun 30, 2019
    Copy the full SHA
    ae20c68 View commit details
    Browse the repository at this point in the history

  5. cargo-outdated: fix darwin build

    @arcnmx
    arcnmx committed Jun 30, 2019
    Copy the full SHA
    c75653b View commit details
    Browse the repository at this point in the history

  6. Merge pull request #63952 from alyssais/gnupg-sks 

    gnupg: change default keyserver to non-SKS
    @alyssais
    alyssais committed Jun 30, 2019
    Copy the full SHA
    fd593be View commit details
    Browse the repository at this point in the history

  7. scalafmt: 2.0.0-RC7 -> 2.0.0 (#63961)

    @kalbasit
    kalbasit committed Jun 30, 2019
    Copy the full SHA
    4a5c80e View commit details
    Browse the repository at this point in the history

  8. riot-web: 1.2.1 -> 1.2.2

    @nyanloutre
    nyanloutre committed Jun 30, 2019
    Copy the full SHA
    26a0e5f View commit details
    Browse the repository at this point in the history

  9. riot-desktop: 1.2.1 -> 1.2.2

    @nyanloutre
    nyanloutre committed Jun 30, 2019
    Copy the full SHA
    f38d3ee View commit details
    Browse the repository at this point in the history

  10. Merge pull request #63945 from nyanloutre/riot_1_2_2 

    riot-{web,desktop}: 1.2.1 -> 1.2.2
    @worldofpeace
    worldofpeace committed Jun 30, 2019
    Copy the full SHA
    06cf681 View commit details
    Browse the repository at this point in the history

  11. Merge pull request #63963 from arcnmx/rust-darwin-outdated 

    cargo-outdated: fix darwin build
    @worldofpeace
    worldofpeace committed Jun 30, 2019
    Copy the full SHA
    76a50f0 View commit details
    Browse the repository at this point in the history

Commits on Jul 1, 2019

  1. watson: 1.5.2 -> 1.7.0

    @nathyong
    nathyong committed Jul 1, 2019
    Copy the full SHA
    f7710fd View commit details
    Browse the repository at this point in the history

  2. watson: use expected pname in NixOS package

    @nathyong
    nathyong committed Jul 1, 2019
    Copy the full SHA
    50855c5 View commit details
    Browse the repository at this point in the history

  3. watson: use pytest for testing

    @nathyong
    nathyong committed Jul 1, 2019
    Copy the full SHA
    4976d7e View commit details
    Browse the repository at this point in the history

  4. Merge pull request #63972 from nathyong/update-td-watson 

    watson: 1.5.2 -> 1.7.0
    @worldofpeace
    worldofpeace committed Jul 1, 2019
    Copy the full SHA
    d9b7cfd View commit details
    Browse the repository at this point in the history

  5. Merge pull request #63956 from marsam/update-gitAndTools.hub 

    gitAndTools.hub: 2.12.0 -> 2.12.1
    @worldofpeace
    worldofpeace committed Jul 1, 2019
    Copy the full SHA
    e78e2cf View commit details
    Browse the repository at this point in the history

  6. prototool: init at 1.8.0 (#63887)

    @marsam @kalbasit
    marsam authored and kalbasit committed Jul 1, 2019
    Copy the full SHA
    e117e6d View commit details
    Browse the repository at this point in the history