diff options
author | sterni <sternenseemann@systemli.org> | 2021-10-10T19·31+0200 |
---|---|---|
committer | sterni <sternenseemann@systemli.org> | 2021-10-12T14·15+0000 |
commit | 3a2fd6e275580616b86190c9959654521760abe4 (patch) | |
tree | 849b7d11d789872f875113ff4da935d8a2b36de6 /third_party/python | |
parent | 14282370e9519bb916da650c311f8f90ce73ce82 (diff) |
feat(nixpkgs-crate-holes): report vulnerable crates in cargoDeps r/2969
nixpkgs-crate-holes can build a markdown report detailing all vulnerable crates pinned in cargoDeps vendors in nixpkgs according to RustSec's advisory db. This report is intended to be pasted into a GitHub issue. The report is produced by a derivation and can be obtained like this: nix-build -A users.sterni.nixpkgs-crate-holes.full \ --argstr nixpkgsPath /path/to/nixpkgs Example output: https://gist.github.com/sternenseemann/27509eece93d6eff35cd4b8ce75423b5 Additionally, you can obtain a more verbose report for a single attribute of nixpkgs, in HTML format since we just reuse the command line output of cargo-audit and convert it to HTML using ansi2html: nix-build -A users.sterni.nixpkgs-crate-holes.single \ --argstr nixpkgsPath /path/to/nixpkgs --argstr attr ripgrep Change-Id: Ic1c029ab67770fc41ba521b2acb798628357f9b2 Reviewed-on: https://cl.tvl.fyi/c/depot/+/3715 Tested-by: BuildkiteCI Reviewed-by: sterni <sternenseemann@systemli.org>
Diffstat (limited to 'third_party/python')
0 files changed, 0 insertions, 0 deletions