about summary refs log tree commit diff
path: root/pkgs/development/web/deno/default.nix
diff options
context:
space:
mode:
author06kellyjac <dev@j-k.io>2023-04-05 11:06:42 +0100
committer06kellyjac <dev@j-k.io>2023-04-06 15:23:20 +0100
commit531c554627c6d86cab3200723e75a602c58b7fc3 (patch)
tree8c9ce506ca37039588a41f9269a941c29f658203 /pkgs/development/web/deno/default.nix
parentce7730aa87b97b1ee92c7651de420bd293c0e32e (diff)
deno: fix CVE-2023-28446
Diffstat (limited to 'pkgs/development/web/deno/default.nix')
-rw-r--r--pkgs/development/web/deno/default.nix14


1 files changed, 12 insertions, 2 deletions
diff --git a/pkgs/development/web/deno/default.nix b/pkgs/development/web/deno/default.nix
index a8a4ff5bc4785..871406b109a83 100644
--- a/pkgs/development/web/deno/default.nix
+++ b/pkgs/development/web/deno/default.nix
@@ -2,6 +2,7 @@
 , lib
 , callPackage
 , fetchFromGitHub
+, fetchpatch
 , rustPlatform
 , installShellFiles
 , tinycc
@@ -23,9 +24,18 @@ rustPlatform.buildRustPackage rec {
     owner = "denoland";
     repo = pname;
     rev = "v${version}";
-    sha256 = "sha256-0S5BSXWnv4DMcc8cijRQx6NyDReg5aJJT65TeNFlkkw=";
+    hash = "sha256-0S5BSXWnv4DMcc8cijRQx6NyDReg5aJJT65TeNFlkkw=";
   };
-  cargoSha256 = "sha256-DZICb85B9pWT8bV06FYjS604RdomB5nqtR55R00CT8c=";
+  cargoHash = "sha256-7Xfnc91yQiAwAF5fvtiwnELUDb7LJeye3GtXNzYkUo8=";
+
+  cargoPatches = [
+    # resolved in 1.31.2
+    (fetchpatch {
+      name = "CVE-2023-28446.patch";
+      url = "https://github.com/denoland/deno/commit/78d430103a8f6931154ddbbe19d36f3b8630286d.patch";
+      hash = "sha256-kXwr9wWxk1OaaubCr8pfmSp3TrJMQkbAg72nIHp/seA=";
+    })
+  ];
 
   postPatch = ''
     # upstream uses lld on aarch64-darwin for faster builds

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-29 01:17:29 +0000