| 14 Dec 2025 |
 dish [Fox/It/She] | * lcov-results-merger, for example, was in the initial import to nodePackages | 22:14:01 |
| dish [Fox/It/She] | so... idk if we'll get responses for those(no idea how I'd even find the person who originally merged it lol) | 22:15:25 |
 Tomodachi94 (they/them) | One package doesn't really look maintained for how high-profile it is, and might be affected by a CVE in a dependency, so I'm inclined to drop it | 22:16:15 |
| Tomodachi94 (they/them) | Or at the very least mark knownVulns on it | 22:16:29 |
| dish [Fox/It/She] | i'd say drop if unmaintained | 22:18:29 |
| dish [Fox/It/She] | lets stop carrying around baggage, if someone wants it in nixpkgs they can re-add it and become its maintainer | 22:18:49 |
| dish [Fox/It/She] | i think unless its used in nixpkgs(or someone is currently PRing it), it should be gone. | 22:21:57 |
| dish [Fox/It/She] | found some packages using nodePackages.nodejs as their node binary for... some reason. fixing that. | 22:25:40 |
| dish [Fox/It/She] | found some packages using nodePackages.nodejs as their node binary for... some reason. fixing that in a PR | 22:25:45 |
| dish [Fox/It/She] | https://github.com/nixos/nixpkgs/pull/470862 | 22:34:32 |
 Cobalt | Redacted or Malformed Event | 23:36:02 |
| Cobalt | * | 23:38:21 |
| 15 Dec 2025 |
| Tomodachi94 (they/them) | https://github.com/NixOS/nixpkgs/issues/470892 | 01:46:46 |
| Tomodachi94 (they/them) | Considering also adding knownVulns for that package on 25.11 | 01:47:04 |
| dish [Fox/It/She] | In reply to @tomodachi94:matrix.org
https://github.com/NixOS/nixpkgs/issues/470892 awesome, merge button clicked | 02:18:27 |
| Tomodachi94 (they/them) | Also made a PR for coc-go, I'm going to poke around in some Nix Golang areas to see if anyone wants to maintain it (I'm not a Golang person so I feel that I wouldn't adequately maintain it): https://github.com/NixOS/nixpkgs/issues/470903 | 02:26:50 |
| Tomodachi94 (they/them) | * | 02:27:09 |
| Tomodachi94 (they/them) | https://github.com/NixOS/nixpkgs/pull/470915 | 03:33:25 |
|  ghishadow joined the room. | 08:19:16 |
| 17 Dec 2025 |
 Emma [it/its] | ended up looking back into this, and yeah i figured out what makes it tick | 03:31:13 |
| Emma [it/its] | npmDeps = pkgs.importNpmLock { npmRoot = ./.; };
npmConfigHook = pkgs.importNpmLock.npmConfigHook;
instead of setting an npmDepsHash (yay, i can drop that file and its scripts now!) | 03:32:21 |
| Emma [it/its] | and it does massively cut down on build time for rebuilds (notably with a lot of packages on a slower connection) | 03:34:12 |
| 18 Dec 2025 |
|  antifuchs joined the room. | 03:58:29 |
| antifuchs | I'm not familiar with pnpm or the nix tooling but I find myself needing to build a thing that uses pnpm (v10) in nix... is there something like importNpmLock or prefetch-yarn-deps for the pnpm ecosystem, or do I have to do the old "set hash to "", rebuild, copy&paste the hash" dance? | 04:00:02 |
| antifuchs | * I'm not familiar with pnpm or the nix tooling for it but I find myself needing to build a thing that uses pnpm (v10) in nix... is there something like importNpmLock or prefetch-yarn-deps for the pnpm ecosystem, or do I have to do the old "set hash to "", rebuild, copy&paste the hash" dance? | 04:00:39 |
| antifuchs | * I'm not familiar with pnpm or the nix tooling for it but I find myself needing to build a thing that uses pnpm (v10) in nix... is there something like importNpmLock or prefetch-yarn-deps for the pnpm ecosystem, or do I have to do the old "set hash to "", rebuild, copy&paste the hash" dance? (nixpkgs javascript docs seem to suggest it's only the latter?) | 04:01:01 |
| Emma [it/its] | i didnt even know about alternatives up until yesterday so... check the build-support folder in nixpkgs i would say? | 04:25:48 |
| antifuchs | Yeah, couldn’t find anything in there. Thanks for checking (: | 04:43:43 |
| dish [Fox/It/She] | In reply to @antifuchs:asf.computer
I'm not familiar with pnpm or the nix tooling for it but I find myself needing to build a thing that uses pnpm (v10) in nix... is there something like importNpmLock or prefetch-yarn-deps for the pnpm ecosystem, or do I have to do the old "set hash to "", rebuild, copy&paste the hash" dance? (nixpkgs javascript docs seem to suggest it's only the latter?) set hash etc | 05:01:53 |
| antifuchs | Thank you /: | 13:20:45 |
