pyrox.dev
bob: fix vulnerable dependencies
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
+17
-2
pkgs/development/tools/build-managers/bob/default.nix
+17
-2
pkgs/development/tools/build-managers/bob/default.nix
···
1
-
{ lib, stdenv, buildGoModule, fetchFromGitHub, installShellFiles }:
2
3
buildGoModule rec {
4
pname = "bob";
···
11
hash = "sha256-zmWfOLBb+GWw9v6LdCC7/WaP1Wz7UipPwqkmI1+rG8Q=";
12
};
13
14
ldflags = [ "-s" "-w" "-X main.Version=${version}" ];
15
16
-
vendorHash = "sha256-S1XUgjdSVTWXehOLCxXcvj0SH12cxqvYadVlCw/saF4=";
17
18
excludedPackages = [ "example/server-db" "test/e2e" "tui-example" ];
19
···
1
+
{ lib
2
+
, stdenv
3
+
, buildGoModule
4
+
, fetchFromGitHub
5
+
, installShellFiles
6
+
, fetchpatch
7
+
}:
8
9
buildGoModule rec {
10
pname = "bob";
···
17
hash = "sha256-zmWfOLBb+GWw9v6LdCC7/WaP1Wz7UipPwqkmI1+rG8Q=";
18
};
19
20
+
patches = [
21
+
# Fix vulnerable dependencies
22
+
# Backport of https://github.com/benchkram/bob/pull/387
23
+
(fetchpatch {
24
+
url = "https://github.com/benchkram/bob/commit/5020e6fafbfbcb1b3add5d936886423ce882793d.patch";
25
+
hash = "sha256-if1ZErI0Un7d26eOkYSkEa87+VTRcEtF6JbsJYOHpHE=";
26
+
})
27
+
];
28
+
29
ldflags = [ "-s" "-w" "-X main.Version=${version}" ];
30
31
+
vendorHash = "sha256-u0nFaTQWU9O7A/RAhGaLcBka+YNGjSlpycDF8TLQALw=";
32
33
excludedPackages = [ "example/server-db" "test/e2e" "tui-example" ];
34