pyrox.dev / nixpkgs
lol
fork atom

Merge master into staging-next

authored by

github-actions[bot] and committed by
GitHub 8e2d0e45 28876dae

+207 -98
unified split
+24
nixos/modules/services/web-apps/mastodon.nix
··· 43 43 LogsDirectoryMode = "0750"; 44 44 # Access write directories 45 45 UMask = "0027"; 46 + # Capabilities 47 + CapabilityBoundingSet = ""; 48 + # Security 49 + NoNewPrivileges = true; 46 50 # Sandboxing 51 + ProtectSystem = "strict"; 52 + ProtectHome = true; 47 53 PrivateTmp = true; 54 + PrivateDevices = true; 55 + PrivateUsers = true; 56 + ProtectClock = true; 57 + ProtectHostname = true; 58 + ProtectKernelLogs = true; 59 + ProtectKernelModules = true; 60 + ProtectKernelTunables = true; 61 + ProtectControlGroups = true; 62 + RestrictAddressFamilies = [ "AF_UNIX" "AF_INET" "AF_INET6" "AF_NETLINK" ]; 63 + RestrictNamespaces = true; 64 + LockPersonality = true; 65 + MemoryDenyWriteExecute = false; 66 + RestrictRealtime = true; 67 + RestrictSUIDSGID = true; 68 + PrivateMounts = true; 69 + # System Call Filtering 70 + SystemCallArchitectures = "native"; 71 + SystemCallFilter = "~@clock @cpu-emulation @debug @keyring @module @mount @obsolete @reboot @resources @setuid @swap"; 48 72 }; 49 73 50 74 envFile = pkgs.writeText "mastodon.env" (lib.concatMapStrings (s: s + "\n") (
+2 -2
pkgs/applications/audio/helio-workstation/default.nix
··· 5 5 6 6 stdenv.mkDerivation rec { 7 7 pname = "helio-workstation"; 8 - version = "3.3"; 8 + version = "3.4"; 9 9 10 10 src = fetchFromGitHub { 11 11 owner = "helio-fm"; 12 12 repo = pname; 13 13 rev = version; 14 14 fetchSubmodules = true; 15 - sha256 = "sha256-meeNqV1jKUwWc7P3p/LicPsbpzpKKFmQ1wP9DuXc9NY="; 15 + sha256 = "sha256-zXsDu/xi7OV6VtnZK9ZJ8uwPeA5uTgNpAQsqe90iwG4="; 16 16 }; 17 17 18 18 buildInputs = [
+3 -3
pkgs/applications/backup/pika-backup/default.nix
··· 19 19 20 20 stdenv.mkDerivation rec { 21 21 pname = "pika-backup"; 22 - version = "0.2.1"; 22 + version = "0.2.2"; 23 23 24 24 src = fetchFromGitLab { 25 25 domain = "gitlab.gnome.org"; 26 26 owner = "World"; 27 27 repo = "pika-backup"; 28 28 rev = "v${version}"; 29 - sha256 = "0fm6vwpw0pa98v2yn8p3818rrlv9lk3pmgnal1b2kh52im5ll7m8"; 29 + sha256 = "16284gv31wdwmb99056962d1gh6xz26ami6synr47nsbbp5l0s6k"; 30 30 }; 31 31 32 32 cargoDeps = rustPlatform.fetchCargoTarball { 33 33 inherit src; 34 34 name = "${pname}-${version}"; 35 - sha256 = "1f5s6a0wjrs2spsicirhbvb5xlz9iflwsaqchij9k02hfcsr308y"; 35 + sha256 = "12ymjwpxx3sdna8w5j9fnwwfk8ynk9ziwl0lkpq68y0vyllln5an"; 36 36 }; 37 37 38 38 patches = [
+2 -2
pkgs/applications/editors/ghostwriter/default.nix
··· 2 2 3 3 mkDerivation rec { 4 4 pname = "ghostwriter"; 5 - version = "2.0.0-rc4"; 5 + version = "2.0.0-rc5"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "wereturtle"; 9 9 repo = pname; 10 10 rev = version; 11 - sha256 = "07547503a209hc0fcg902w3x0s1m899c10nj3gqz3hak0cmrasi3"; 11 + sha256 = "sha256-Gc0/AHxxJd5Cq3dBQ0Xy2TF78CBmQFYUzm4s7q1aHEE="; 12 12 }; 13 13 14 14 nativeBuildInputs = [ qmake pkg-config qttools ];
+1 -1
pkgs/applications/editors/vscode/vscode.nix
··· 34 34 35 35 src = fetchurl { 36 36 name = "VSCode_${version}_${plat}.${archive_fmt}"; 37 - url = "https://vscode-update.azurewebsites.net/${version}/${plat}/stable"; 37 + url = "https://update.code.visualstudio.com/${version}/${plat}/stable"; 38 38 inherit sha256; 39 39 }; 40 40
+5 -5
pkgs/applications/misc/josm/default.nix
··· 1 1 { lib, stdenv, fetchurl, fetchsvn, makeWrapper, unzip, jre, libXxf86vm }: 2 2 let 3 3 pname = "josm"; 4 - version = "17560"; 4 + version = "17580"; 5 5 srcs = { 6 6 jar = fetchurl { 7 7 url = "https://josm.openstreetmap.de/download/josm-snapshot-${version}.jar"; 8 - sha256 = "1ffrbg2d4s2dmc9zy9b4fbsqnp9g0pvp6vnrq7gbsmxh0y23sw56"; 8 + sha256 = "05y1g48llnpbyv0r8dn3kyhcfqylsg4fbp540xn1n7sk3h17gwsw"; 9 9 }; 10 10 macosx = fetchurl { 11 - url = "https://josm.openstreetmap.de/download/macosx/josm-macosx-${version}.zip"; 12 - sha256 = "17qrilj20bvzd8ydfjjirpqjrsbqbkxyj4q35q87z9j3pgnd1h71"; 11 + url = "https://josm.openstreetmap.de/download/macosx/josm-macos-${version}-java16.zip"; 12 + sha256 = "0aqkr6951zbi7a6zawvpsh51i0c4nyz2xkj52gg8n4vxli5pp3y1"; 13 13 }; 14 14 pkg = fetchsvn { 15 15 url = "https://josm.openstreetmap.de/svn/trunk/native/linux/tested"; 16 16 rev = version; 17 - sha256 = "0wmncbi5g3ijn19qvmvwszb2m79wnv4jpdmpjd7332d3qi5rfmwn"; 17 + sha256 = "04mxrirlyjy8i5s6y8w84kxv3wjlhhdfmlaxxlxd25viim73g3zv"; 18 18 }; 19 19 }; 20 20 in
+3 -3
pkgs/applications/networking/browsers/chromium/upstream-info.json
··· 31 31 } 32 32 }, 33 33 "dev": { 34 - "version": "91.0.4449.6", 35 - "sha256": "1y6z7p64fi4dxyrxrnlmg0wwczgw58cinrsywhnrpl2wp2y3v6m3", 36 - "sha256bin64": "1baxra0hg981awinyyvm1x46rlskjmhs2m1h0zf72l11y1jyj5vc", 34 + "version": "91.0.4455.2", 35 + "sha256": "0nqw1jxysyl72dg2bqls7w9cm366j6i1p4sadf3s5vc0i7yr7h3i", 36 + "sha256bin64": "0d7s7bg58489ph4i92yj4vkww0cl7473pk9sir64gcmm9z18yjc3", 37 37 "deps": { 38 38 "gn": { 39 39 "version": "2021-03-12",
+31
pkgs/applications/version-management/git-and-tools/bit/default.nix
··· 1 + { lib 2 + , buildGoModule 3 + , fetchFromGitHub 4 + , git 5 + }: 6 + 7 + buildGoModule rec { 8 + pname = "bit"; 9 + version = "1.0.5"; 10 + 11 + src = fetchFromGitHub { 12 + owner = "chriswalz"; 13 + repo = pname; 14 + rev = "v${version}"; 15 + sha256 = "0dv6ma2vwb21cbxkxzrpmj7cqlhwr7a86i4g728m3y1aclh411sn"; 16 + }; 17 + 18 + vendorSha256 = "1j6w7bll4zyp99579dhs2rza4y9kgfz3g8d5grfzgqck6cjj9mn8"; 19 + 20 + propagatedBuildInputs = [ git ]; 21 + 22 + # Tests require a repository 23 + doCheck = false; 24 + 25 + meta = with lib; { 26 + description = "Command-line tool for git"; 27 + homepage = "https://github.com/chriswalz/bit"; 28 + license = with licenses; [ asl20 ]; 29 + maintainers = with maintainers; [ fab ]; 30 + }; 31 + }
+2 -2
pkgs/applications/version-management/git-and-tools/git-machete/default.nix
··· 4 4 5 5 buildPythonApplication rec { 6 6 pname = "git-machete"; 7 - version = "3.0.0"; 7 + version = "3.1.0"; 8 8 9 9 src = fetchPypi { 10 10 inherit pname version; 11 - sha256 = "077xs3grjidahxz1gc93565b25blf97lwsljmkmr0yapps8z630d"; 11 + sha256 = "0bb6ap8sdp4ad0xkh3y8vj46a363g5gdw0dzf9ycw0z9ah8ispfx"; 12 12 }; 13 13 14 14 nativeBuildInputs = [ installShellFiles pbr ];
+2 -2
pkgs/development/libraries/amdvlk/default.nix
··· 21 21 22 22 in stdenv.mkDerivation rec { 23 23 pname = "amdvlk"; 24 - version = "2021.Q1.5"; 24 + version = "2021.Q1.6"; 25 25 26 26 src = fetchRepoProject { 27 27 name = "${pname}-src"; 28 28 manifest = "https://github.com/GPUOpen-Drivers/AMDVLK.git"; 29 29 rev = "refs/tags/v-${version}"; 30 - sha256 = "OSX4alrR49jqIu2QZcTieurUnyWQJ0wheDwFiNd9QcY="; 30 + sha256 = "FSQ/bYlvdw0Ih3Yl329o8Gizw0YcZTLtiI222Ju4M8w="; 31 31 }; 32 32 33 33 buildInputs = [
+2 -2
pkgs/development/python-modules/boto3/default.nix
··· 13 13 14 14 buildPythonPackage rec { 15 15 pname = "boto3"; 16 - version = "1.17.33"; # N.B: if you change this, change botocore and awscli to a matching version 16 + version = "1.17.34"; # N.B: if you change this, change botocore and awscli to a matching version 17 17 18 18 src = fetchPypi { 19 19 inherit pname version; 20 - sha256 = "sha256-DKwv/8G6kV97tezuU5MYUy21HyGMkooij6/j5QHpRy4="; 20 + sha256 = "sha256-jzPLPS/EKwVHpVYKbXOXqpMzb1CJk4Z2KyRQaCwOmSs="; 21 21 }; 22 22 23 23 propagatedBuildInputs = [ botocore jmespath s3transfer ] ++ lib.optionals (!isPy3k) [ futures ];
+2 -2
pkgs/development/python-modules/botocore/default.nix
··· 12 12 13 13 buildPythonPackage rec { 14 14 pname = "botocore"; 15 - version = "1.20.33"; # N.B: if you change this, change boto3 and awscli to a matching version 15 + version = "1.20.34"; # N.B: if you change this, change boto3 and awscli to a matching version 16 16 17 17 src = fetchPypi { 18 18 inherit pname version; 19 - sha256 = "sha256-41UwUwlpnTrKHgBQ/CHUhZW0DbBGyw0kkc1X/1smkgs="; 19 + sha256 = "sha256-dJvbFR40AynxslYAv+nSI+kw+LomvXS3FHjKV4Hy/q8="; 20 20 }; 21 21 22 22 propagatedBuildInputs = [
+12 -5
pkgs/development/python-modules/forbiddenfruit/default.nix
··· 1 1 { lib 2 2 , buildPythonPackage 3 - , fetchPypi 3 + , fetchFromGitHub 4 4 , nose 5 5 }: 6 6 ··· 8 8 version = "0.1.4"; 9 9 pname = "forbiddenfruit"; 10 10 11 - src = fetchPypi { 12 - inherit pname version; 13 - sha256 = "e3f7e66561a29ae129aac139a85d610dbf3dd896128187ed5454b6421f624253"; 11 + src = fetchFromGitHub { 12 + owner = "clarete"; 13 + repo = "forbiddenfruit"; 14 + rev = version; 15 + sha256 = "16chhrxbbmg6lfbzm532fq0v00z8qihcsj0kg2b5jlgnb6qijwn8"; 14 16 }; 15 17 16 18 checkInputs = [ nose ]; 17 19 20 + preBuild = '' 21 + export FFRUIT_EXTENSION="true"; 22 + ''; 23 + 24 + # https://github.com/clarete/forbiddenfruit/pull/47 required to switch to pytest 18 25 checkPhase = '' 19 26 find ./build -name '*.so' -exec mv {} tests/unit \; 20 27 nosetests ··· 22 29 23 30 meta = with lib; { 24 31 description = "Patch python built-in objects"; 25 - homepage = "https://pypi.python.org/pypi/forbiddenfruit"; 32 + homepage = "https://github.com/clarete/forbiddenfruit"; 26 33 license = licenses.mit; 27 34 }; 28 35
+15 -3
pkgs/development/python-modules/hdbscan/default.nix
··· 1 1 { lib 2 2 , buildPythonPackage 3 + , fetchpatch 3 4 , cython 4 5 , numpy 5 - , nose 6 + , pytestCheckHook 6 7 , scipy 7 8 , scikitlearn 8 9 , fetchPypi ··· 18 19 inherit pname version; 19 20 sha256 = "e3a418d0d36874f7b6a1bf0b7461f3857fc13a525fd48ba34caed2fe8973aa26"; 20 21 }; 21 - 22 - checkInputs = [ nose ]; 22 + patches = [ 23 + # This patch fixes compatibility with numpy 1.20. It will be in the next release 24 + # after 0.8.27 25 + (fetchpatch { 26 + url = "https://github.com/scikit-learn-contrib/hdbscan/commit/5b67a4fba39c5aebe8187a6a418da677f89a63e0.patch"; 27 + sha256 = "07d7jdwk0b8kgaqkifd529sarji01j1jiih7cfccc5kxmlb5py9h"; 28 + }) 29 + ]; 23 30 24 31 nativeBuildInputs = [ cython ]; 25 32 propagatedBuildInputs = [ numpy scipy scikitlearn joblib six ]; 33 + preCheck = '' 34 + cd hdbscan/tests 35 + rm __init__.py 36 + ''; 37 + checkInputs = [ pytestCheckHook ]; 26 38 27 39 meta = with lib; { 28 40 description = "Hierarchical Density-Based Spatial Clustering of Applications with Noise, a clustering algorithm with a scikit-learn compatible API";
-32
pkgs/development/python-modules/numtraits/default.nix
··· 1 - { lib 2 - , buildPythonPackage 3 - , fetchPypi 4 - , pytest 5 - , six 6 - , numpy 7 - , traitlets 8 - }: 9 - 10 - buildPythonPackage rec { 11 - pname = "numtraits"; 12 - version = "0.2"; 13 - 14 - src = fetchPypi { 15 - inherit pname version; 16 - sha256 = "2fca9a6c9334f7358ef1a3e2e64ccaa6a479fc99fc096910e0d5fbe8edcdfd7e"; 17 - }; 18 - 19 - checkInputs = [ pytest ]; 20 - propagatedBuildInputs = [ six numpy traitlets]; 21 - 22 - checkPhase = '' 23 - py.test 24 - ''; 25 - 26 - meta = { 27 - description = "Numerical traits for Python objects"; 28 - license = lib.licenses.bsd2; 29 - maintainers = with lib.maintainers; [ fridh ]; 30 - homepage = "https://github.com/astrofrog/numtraits"; 31 - }; 32 - }
+2 -1
pkgs/development/python-modules/onnx/default.nix
··· 46 46 ]; 47 47 48 48 postPatch = '' 49 - patchShebangs tools/protoc-gen-mypy.py 49 + chmod +x tools/protoc-gen-mypy.sh.in 50 + patchShebangs tools/protoc-gen-mypy.sh.in tools/protoc-gen-mypy.py 50 51 ''; 51 52 52 53 preBuild = ''
+15 -6
pkgs/development/python-modules/prance/default.nix
··· 6 6 , requests 7 7 , six 8 8 , semver 9 - , pytest 9 + , pytestCheckHook 10 10 , pytestcov 11 11 , pytestrunner 12 - , sphinx 13 12 , openapi-spec-validator 14 13 }: 15 14 ··· 35 34 ]; 36 35 37 36 checkInputs = [ 38 - pytest 37 + pytestCheckHook 39 38 pytestcov 40 39 openapi-spec-validator 41 40 ]; 42 41 43 42 postPatch = '' 44 43 substituteInPlace setup.py \ 45 - --replace "tests_require = dev_require," "tests_require = None," 44 + --replace "tests_require = dev_require," "tests_require = None," \ 45 + --replace "chardet~=4.0" "" \ 46 + --replace "semver~=2.13" "" 47 + substituteInPlace setup.cfg \ 48 + --replace "--cov-fail-under=90" "" 46 49 ''; 47 50 48 - # many tests require network connection 49 - doCheck = false; 51 + # Disable tests that require network 52 + disabledTestPaths = [ 53 + "tests/test_convert.py" 54 + ]; 55 + disabledTests = [ 56 + "test_fetch_url_http" 57 + ]; 58 + pythonImportsCheck = [ "prance" ]; 50 59 51 60 meta = with lib; { 52 61 description = "Resolving Swagger/OpenAPI 2.0 and 3.0.0 Parser";
+1 -1
pkgs/development/python-modules/sphinx-autobuild/default.nix
··· 24 24 description = "Rebuild Sphinx documentation on changes, with live-reload in the browser"; 25 25 homepage = "https://github.com/executablebooks/sphinx-autobuild"; 26 26 license = with licenses; [ mit ]; 27 - maintainer = with maintainers; [holgerpeters]; 27 + maintainers = with maintainers; [holgerpeters]; 28 28 }; 29 29 }
+3 -3
pkgs/development/tools/build-managers/mill/default.nix
··· 2 2 3 3 stdenv.mkDerivation rec { 4 4 pname = "mill"; 5 - version = "0.9.3"; 5 + version = "0.9.5"; 6 6 7 7 src = fetchurl { 8 - url = "https://github.com/lihaoyi/mill/releases/download/${version}/${version}"; 9 - sha256 = "0x9mvcm5znyi7w6cpiasj2v6f63y7d8qdck7lx03p2k6i9aa2f77"; 8 + url = "https://github.com/com-lihaoyi/mill/releases/download/${version}/${version}"; 9 + sha256 = "142vr40p60mapvvb5amn8hz6a8930kxsz510baql40hai4yhga7z"; 10 10 }; 11 11 12 12 nativeBuildInputs = [ makeWrapper ];
+2 -2
pkgs/development/tools/coursier/default.nix
··· 2 2 , coreutils, git, gnused, nix, nixfmt }: 3 3 4 4 let 5 - version = "2.0.15"; 5 + version = "2.0.16"; 6 6 7 7 zshCompletion = fetchurl { 8 8 url = ··· 19 19 src = fetchurl { 20 20 url = 21 21 "https://github.com/coursier/coursier/releases/download/v${version}/coursier"; 22 - sha256 = "sha256-XfTW8GNoPsNXamy0K9Ai3SSzBSyS1dNNCeWsbD8xCQI="; 22 + sha256 = "sha256-Yx6PvBo763GnEwU5s7AYUs++Au25TF6cZ4WYGgruHpw="; 23 23 }; 24 24 25 25 nativeBuildInputs = [ makeWrapper ];
+1 -1
pkgs/development/tools/go-task/default.nix
··· 22 22 ]; 23 23 24 24 postInstall = '' 25 - mv $out/bin/task $out/bin/go-task 25 + ln -s $out/bin/task $out/bin/go-task 26 26 ''; 27 27 28 28 meta = with lib; {
+2 -2
pkgs/development/tools/jbang/default.nix
··· 1 1 { stdenv, lib, fetchzip, jdk, makeWrapper, coreutils, curl }: 2 2 3 3 stdenv.mkDerivation rec { 4 - version = "0.68.0"; 4 + version = "0.69.1"; 5 5 pname = "jbang"; 6 6 7 7 src = fetchzip { 8 8 url = "https://github.com/jbangdev/jbang/releases/download/v${version}/${pname}-${version}.tar"; 9 - sha256 = "sha256-+hBI4asgRZg1nu50GMCl0/djqCxjb92xlO3roU4LZS8="; 9 + sha256 = "sha256-FuwivcF1SpGbLcoQshVNSWSQ7PgWC0XPCQF+i9zHb/w="; 10 10 }; 11 11 12 12 nativeBuildInputs = [ makeWrapper ];
+6 -5
pkgs/misc/emulators/cen64/default.nix
··· 2 2 3 3 stdenv.mkDerivation rec { 4 4 pname = "cen64"; 5 - version = "unstable-2020-02-20"; 5 + version = "unstable-2021-03-12"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "n64dev"; 9 9 repo = "cen64"; 10 - rev = "6f9f5784bf0a720522c4ecb0915e20229c126aed"; 11 - sha256 = "08q0a3b2ilb95zlz4cw681gwz45n2wrb2gp2z414cf0bhn90vz0s"; 10 + rev = "1b31ca9b3c3bb783391ab9773bd26c50db2056a8"; 11 + sha256 = "0x1fz3z4ffl5xssiyxnmbhpjlf0k0fxsqn4f2ikrn17742dx4c0z"; 12 12 }; 13 13 14 14 nativeBuildInputs = [ cmake ]; 15 15 buildInputs = [ libGL libiconv openal libX11 ]; 16 16 17 17 installPhase = '' 18 - mkdir -p $out/bin 19 - mv cen64 $out/bin 18 + runHook preInstall 19 + install -D {,$out/bin/}${pname} 20 + runHook postInstall 20 21 ''; 21 22 22 23 meta = with lib; {
+2 -2
pkgs/os-specific/linux/kernel/hardened/config.nix
··· 55 55 56 56 # Wipe higher-level memory allocations on free() with page_poison=1 57 57 PAGE_POISONING = yes; 58 - PAGE_POISONING_NO_SANITY = yes; 59 - PAGE_POISONING_ZERO = yes; 58 + PAGE_POISONING_NO_SANITY = whenOlder "5.11" yes; 59 + PAGE_POISONING_ZERO = whenOlder "5.11" yes; 60 60 61 61 # Enable the SafeSetId LSM 62 62 SECURITY_SAFESETID = whenAtLeast "5.1" yes;
+4 -3
pkgs/servers/http/apache-modules/mod_perl/default.nix
··· 1 1 { stdenv, fetchurl, apacheHttpd, perl }: 2 2 3 3 stdenv.mkDerivation rec { 4 - name = "mod_perl-2.0.10"; 4 + pname = "mod_perl"; 5 + version = "2.0.11"; 5 6 6 7 src = fetchurl { 7 - url = "mirror://apache/perl/${name}.tar.gz"; 8 - sha256 = "0r1bhzwl5gr0202r6448943hjxsickzn55kdmb7dzad39vnq7kyi"; 8 + url = "mirror://apache/perl/${pname}-${version}.tar.gz"; 9 + sha256 = "0x3gq4nz96y202cymgrf56n8spm7bffkd1p74dh9q3zrrlc9wana"; 9 10 }; 10 11 11 12 buildInputs = [ apacheHttpd perl ];
+2 -2
pkgs/tools/admin/awscli/default.nix
··· 28 28 in 29 29 with py.pkgs; buildPythonApplication rec { 30 30 pname = "awscli"; 31 - version = "1.19.33"; # N.B: if you change this, change botocore and boto3 to a matching version too 31 + version = "1.19.34"; # N.B: if you change this, change botocore and boto3 to a matching version too 32 32 33 33 src = fetchPypi { 34 34 inherit pname version; 35 - sha256 = "sha256-Rz0aZTsFV3RAdH04d3jvvqi1wFuIIx3SFddONhM8c8E="; 35 + sha256 = "sha256-RJ+ibZmOxH4r+pGI/rrkRES89u0IRUU3sSE5OFSJ2qw="; 36 36 }; 37 37 38 38 # https://github.com/aws/aws-cli/issues/4837
+22
pkgs/tools/misc/tz/default.nix
··· 1 + { lib, buildGoModule, fetchFromGitHub }: 2 + 3 + buildGoModule rec { 4 + pname = "tz"; 5 + version = "0.4"; 6 + 7 + src = fetchFromGitHub { 8 + owner = "oz"; 9 + repo = "tz"; 10 + rev = "v${version}"; 11 + sha256 = "sha256-36nTau7xjABdeUOioHar28cuawFWW3DBaDH0YAvdufI="; 12 + }; 13 + 14 + vendorSha256 = "sha256-Soa87I7oMa34LjYKxNAz9Limi0kQ6JUtb/zI4G7yZnw="; 15 + 16 + meta = with lib; { 17 + description = "A time zone helper"; 18 + homepage = "https://github.com/oz/tz"; 19 + license = licenses.gpl3Plus; 20 + maintainers = with maintainers; [ siraben ]; 21 + }; 22 + }
+3
pkgs/tools/package-management/cargo-audit/default.nix
··· 15 15 buildInputs = [ openssl libiconv ] ++ lib.optionals stdenv.isDarwin [ Security ]; 16 16 nativeBuildInputs = [ pkg-config ]; 17 17 18 + # enables `cargo audit fix` 19 + cargoBuildFlags = [ "--features fix" ]; 20 + 18 21 # The tests require network access which is not available in sandboxed Nix builds. 19 22 doCheck = false; 20 23
+2 -2
pkgs/tools/security/ldeep/default.nix
··· 10 10 11 11 buildPythonApplication rec { 12 12 pname = "ldeep"; 13 - version = "1.0.9"; 13 + version = "1.0.10"; 14 14 15 15 src = fetchPypi { 16 16 inherit pname version; 17 - sha256 = "0n38idkn9hy31m5xkrc36dmw364d137c7phssvj76gr2gqsrqjy3"; 17 + sha256 = "sha256-/7mcmAj69NmuiK+xlQijAk39sMLDX8kHatmSI6XYbwE="; 18 18 }; 19 19 20 20 propagatedBuildInputs = [
+26
pkgs/tools/security/slowhttptest/default.nix
··· 1 + { lib 2 + , stdenv 3 + , fetchFromGitHub 4 + , openssl 5 + }: 6 + 7 + stdenv.mkDerivation rec { 8 + pname = "slowhttptest"; 9 + version = "1.8.2"; 10 + 11 + src = fetchFromGitHub { 12 + owner = "shekyan"; 13 + repo = pname; 14 + rev = "v${version}"; 15 + sha256 = "1xv2j3hl4zj0s2cxcsvlwgridh9ap4g84g7c4918d03id15wydcx"; 16 + }; 17 + 18 + buildInputs = [ openssl ]; 19 + 20 + meta = with lib; { 21 + description = "Application Layer DoS attack simulator"; 22 + homepage = "https://github.com/shekyan/slowhttptest"; 23 + license = with licenses; [ asl20 ]; 24 + maintainers = with maintainers; [ fab ]; 25 + }; 26 + }
+7 -1
pkgs/top-level/all-packages.nix
··· 1138 1138 1139 1139 bcachefs-tools = callPackage ../tools/filesystems/bcachefs-tools { }; 1140 1140 1141 + bit = callPackage ../applications/version-management/git-and-tools/bit { }; 1142 + 1141 1143 bitwarden = callPackage ../tools/security/bitwarden { }; 1142 1144 1143 1145 inherit (nodePackages) bitwarden-cli; ··· 8773 8775 txtw = callPackage ../tools/misc/txtw { }; 8774 8776 8775 8777 tydra = callPackage ../tools/misc/tydra { }; 8778 + 8779 + tz = callPackage ../tools/misc/tz { }; 8776 8780 8777 8781 u9fs = callPackage ../servers/u9fs { }; 8778 8782 ··· 19878 19882 # Hardened Linux 19879 19883 hardenedLinuxPackagesFor = kernel': overrides: 19880 19884 let # Note: We use this hack since the hardened patches can lag behind and we don't want to delay updates: 19881 - linux_latest_for_hardened = pkgs.linux_5_10; 19885 + linux_latest_for_hardened = pkgs.linux_5_11; 19882 19886 kernel = (if kernel' == pkgs.linux_latest then linux_latest_for_hardened else kernel').override overrides; 19883 19887 in linuxPackagesFor (kernel.override { 19884 19888 structuredExtraConfig = import ../os-specific/linux/kernel/hardened/config.nix { ··· 25291 25295 slmenu = callPackage ../applications/misc/slmenu {}; 25292 25296 25293 25297 slop = callPackage ../tools/misc/slop {}; 25298 + 25299 + slowhttptest = callPackage ../tools/security/slowhttptest { }; 25294 25300 25295 25301 slrn = callPackage ../applications/networking/newsreaders/slrn { }; 25296 25302
+1 -3
pkgs/top-level/python-packages.nix
··· 4716 4716 4717 4717 numpy-stl = callPackage ../development/python-modules/numpy-stl { }; 4718 4718 4719 - numtraits = callPackage ../development/python-modules/numtraits { }; 4720 - 4721 4719 nunavut = callPackage ../development/python-modules/nunavut { }; 4722 4720 4723 4721 nvchecker = callPackage ../development/python-modules/nvchecker { }; ··· 7877 7875 7878 7876 sphinx-argparse = callPackage ../development/python-modules/sphinx-argparse { }; 7879 7877 7880 - sphinx-autobuild = callPackage ../development/python-modules/sphinx-argparse { }; 7878 + sphinx-autobuild = callPackage ../development/python-modules/sphinx-autobuild { }; 7881 7879 7882 7880 sphinx-jinja = callPackage ../development/python-modules/sphinx-jinja { }; 7883 7881