nixpkgs

Author	SHA1	Message	Date
ajs124	e5212aaa67	cacert: 3.83 -> 3.86 https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/NqCkaX216zY/m/QAUPTaBWCgAJ	2022-12-09 00:22:17 +01:00
maxine	b1c7b94e53	Merge pull request #202190 from r-ryantm/auto-update/ell ell: 0.53 -> 0.54, iwd: 1.30 -> 2.0	2022-12-08 23:16:17 +01:00
Martin Weinelt	31dd47d911	Merge pull request #205127 from mweinelt/certifi	2022-12-08 22:39:54 +01:00
Maxine Aubrey	89f245f012	iwd: 1.30 -> 2.0	2022-12-08 22:36:43 +01:00
Martin Weinelt	8456141e25	python3Packages.requests: rely on patched certifi The where() function in certifi has been patched to allow more consumers of the certifi package to use the system ca-bundle.	2022-12-08 16:14:24 +01:00
Martin Weinelt	b40cf0d095	python3Packages.certifi: 2022.09.24 -> 2022.12.07 Diff: https://github.com/certifi/python-certifi/compare/2022.09.24...2022.12.07	2022-12-08 16:14:23 +01:00
Martin Weinelt	8d7cc9cac9	python3Packages.certifi: use system ca-bundle We update that one more reliably and it allows ties in with module based configuration applied through `security.pki`. Also allow overwriting the CA bundle used through `NIX_SSL_CERT_FILE` as is common throughout nixpkgs. Fixes: CVE-2022-23491	2022-12-08 16:14:23 +01:00
Sandro	6d6fbe89fc	Merge pull request #203986 from tjni/hide-unittest2	2022-12-08 15:11:48 +01:00
maxine	72b1b627de	Merge pull request #204882 from maxeaubrey/tracker_drop_patch tracker: drop sqlite compat patch	2022-12-08 10:44:31 +01:00
Theodore Ni	73dea7fb56	python27Packages.unittest: remove completely	2022-12-07 14:25:04 -08:00
Theodore Ni	de0f03b56d	python{27,310}Packages.unittest2: move to python2-modules	2022-12-07 14:25:01 -08:00
Sandro	a061ba34b1	Merge pull request #204707 from SuperSandro2000/python310Packages.tzdata	2022-12-07 22:51:04 +01:00
Sandro	469797dc2a	Merge pull request #204691 from SuperSandro2000/igc	2022-12-07 22:41:33 +01:00
Sandro	13e33c7c98	Merge pull request #204545 from SuperSandro2000/qrencode-nox	2022-12-07 22:29:48 +01:00
Martin Weinelt	bdb82dffc0	Merge pull request #204902 from mweinelt/cpython-39-310-312	2022-12-07 17:55:35 +01:00
Martin Weinelt	73474b9dd8	Merge pull request #204900 from mweinelt/cpython312	2022-12-07 16:43:57 +01:00
Martin Weinelt	e824b21ba7	python310: 3.10.8 -> 3.10.9 https://docs.python.org/release/3.10.9/whatsnew/changelog.html https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html Fixes: CVE-2022-37454, CVE-2022-45061, CVE-2022-42919	2022-12-07 16:41:58 +01:00
Martin Weinelt	2fce48831c	python39: 3.9.15 -> 3.9.16 https://docs.python.org/release/3.9.16/whatsnew/changelog.html https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html Fixes: CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2015-20107	2022-12-07 16:40:42 +01:00
Sandro	8db4e2d64a	Merge pull request #204845 from qowoz/go119	2022-12-07 15:31:16 +01:00
Linus Heckemann	36cec7c971	Merge pull request #204795 from mweinelt/cacert-distrust-trustcore cacert: Distrust TrustCor root certificates	2022-12-07 11:37:47 +01:00
Fabian Affolter	446ce471e0	Merge pull request #204759 from fabaff/exceptiongroup-bump python310Packages.exceptiongroup: 1.0.1 -> 1.0.4	2022-12-07 09:24:44 +01:00
Martin Weinelt	1328f79d81	python312: 3.12.0a2 -> 3.12.0a3 https://docs.python.org/3.12/whatsnew/changelog.html#python-3-12-0-alpha3 https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html Fixes: CVE-2022-45061	2022-12-07 02:37:58 +01:00
Maxine Aubrey	bfbfcb70c4	tracker: drop sqlite compat patch	2022-12-07 00:57:16 +01:00
Sandro Jäckel	714cd4a0a5	nixos/no-x-libs: add qrencode	2022-12-06 22:01:30 +01:00
Sandro Jäckel	5770a02799	qrencode: move SDL2 to tests to easily disable dependency on xorg	2022-12-06 22:01:03 +01:00
zowoq	5b349b72d5	go_1_19: 1.19.3 -> 1.19.4 https://github.com/golang/go/releases/tag/go1.19.4	2022-12-07 06:11:21 +10:00
ajs124	8bc69af9f3	Merge pull request #204546 from r-ryantm/auto-update/re2 re2: 2022-06-01 -> 2022-12-01	2022-12-06 19:15:39 +01:00
Martin Weinelt	2e7853293d	cacert: Distrust TrustCor root certificates Mozilla set "Distrust After" for the three TrustCor Root CAs¹, so new certificates issued would not be trusted after 2022/11/30, while older enduser certificates would continue working until they expire. This is a fine-grained policy option available to consumers of the NSS library, such as Firefox or Thunderbird. For Linux systems we generally export the Mozilla trust store into our own CA bundle that ultimately lacks that metadata, because there is no standardized way to parse it in the first place. That means that as long as Mozilla keeps the certificate in their CA program, even with time-based "Distrust" configured, we would keep trusting it fully². That is completely unreasonable and that is why we reject these CAs here for all users of nixpkgs. The TrustCor CAs were primarily used to sign certificates for dynamic hosts for domains provided through no-ip.com, so we expect the fallout from this to be minimal. [1] https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/oxX69KFvsm4/m/yLohoVqtCgAJ [2] https://utcc.utoronto.ca/~cks/space/blog/linux/CARootStoreTrustProblem	2022-12-06 19:12:53 +01:00
Jan Tojnar	f2d78a4d52	Merge pull request #204383 from jtojnar/gnome-staging GNOME staging updates	2022-12-06 16:25:14 +01:00
Fabian Affolter	9dd5cd8441	python310Packages.exceptiongroup: 1.0.1 -> 1.0.4 Changelog: https://github.com/agronholm/exceptiongroup/blob/1.0.4/CHANGES.rst	2022-12-06 11:25:09 +01:00
Fabian Affolter	88c2174353	python310Packages.exceptiongroup: add changelog to meta	2022-12-06 09:09:54 +01:00
Martin Weinelt	60f52f6c83	Merge remote-tracking branch 'origin/staging-next' into staging	2022-12-06 01:27:11 +01:00
Martin Weinelt	7ea3d4395d	Merge remote-tracking branch 'origin/master' into staging-next	2022-12-06 01:26:56 +01:00
Sandro	d74e49d8d1	Merge pull request #202078 from 2xsaiko/outgoing/crystal-aarch64-darwin	2022-12-06 01:23:20 +01:00
github-actions[bot]	0ac4c6779e	Merge master into staging-next	2022-12-06 00:02:32 +00:00
Martin Weinelt	b786c2bf9c	Merge pull request #204709 from r-ryantm/auto-update/python310Packages.aioesphomeapi python310Packages.aioesphomeapi: 13.0.0 -> 13.0.1	2022-12-06 00:35:17 +01:00
figsoda	ff93685724	Merge pull request #199371 from figsoda/fetchCrate fetchCrate: rewrite in terms of fetchzip	2022-12-05 18:15:33 -05:00
Sandro Jäckel	4bdc54de0e	python310Packages.tzdata: 2022.6 -> 2022.7	2022-12-06 00:05:52 +01:00
R. Ryantm	3b03e122ef	python310Packages.aioesphomeapi: 13.0.0 -> 13.0.1	2022-12-05 22:31:39 +00:00
Anderson Torres	2987aa0aab	Merge pull request #204617 from r-ryantm/auto-update/freecad freecad: 0.20.1 -> 0.20.2	2022-12-05 19:22:16 -03:00
Robert Scott	602ee7a175	Merge pull request #204584 from tjni/rav1e rav1e: 0.5.1 -> 0.6.1	2022-12-05 22:12:18 +00:00
Sandro Jäckel	19b27fb2bf	intel-graphics-compiler: 1.0.12260.1 -> 1.0.12504.5	2022-12-05 23:08:23 +01:00
Sandro Jäckel	8d2372e44a	spirv-llvm-translator: bump to intel-graphics-compiler recommended version	2022-12-05 23:00:14 +01:00
figsoda	32df8276ec	Merge pull request #204592 from figsoda/use-nextest treewide: enable cargo parallel tests with nextest	2022-12-05 16:37:32 -05:00
Martin Weinelt	121bab7fa7	Merge pull request #204524 from mweinelt/ansible-language-server	2022-12-05 22:33:20 +01:00
Sandro	e8d94a5d9e	Merge pull request #201054 from wkral/scryer-prolog-update	2022-12-05 22:26:06 +01:00
Sandro	25bdd85ab6	Merge pull request #198644 from Luflosi/update/python3Packages.sphinxext-opengraph	2022-12-05 22:20:57 +01:00
Fabian Affolter	966244ff8f	Merge pull request #204662 from fabaff/winacl-bump python310Packages.winacl: 0.1.5 -> 0.1.6	2022-12-05 22:16:00 +01:00
Thiago Kenji Okada	387779ef69	Merge pull request #204630 from PedroHLC/zen-kernels-6.0.11 zen-kernels: 6.0.10 -> 6.0.11	2022-12-05 21:01:32 +00:00
Sandro	4484c12d81	Merge pull request #196449 from natto1784/crate-overrides	2022-12-05 22:00:51 +01:00

1 2 3 4 5 ...

433001 commits