| 22 Jul 2025 |
 emily | (but unfortunately the committer who volunteered for Edge hasn't reviewed/merged any PRs) | 02:18:30 |
 jonhermansen | Thanks emily. Is there anything else I should do there? | 02:20:44 |
| emily | just have to wait for someone to merge. but in the long run there'll need to be an active committer involved in the package to sustainably merge security updates; pretty much every browser update has CVEs. (should probably move to #security-discuss:nixos.org for extended discussion) | 02:23:29 |
| 23 Jul 2025 |
|  implr set a profile picture. | 10:57:46 |
| implr changed their profile picture. | 11:21:44 |
 transcaffeine | https://github.com/NixOS/nixpkgs/pull/427778 snipe-it (due to livewire's CVE-2025-54068) | 15:46:29 |
 Grimmauld (any/all) | Marking all the libsoup_2_4 vulnerabilities:
https://github.com/NixOS/nixpkgs/pull/427813
(following the conversation in #dev:nixos.org ) | 17:31:29 |
| Grimmauld (any/all) | * Marking all the libsoup_2_4 vulnerabilities, should wait for Jan to ack this:
https://github.com/NixOS/nixpkgs/pull/427813
(following the conversation in #dev:nixos.org ) | 17:31:46 |
| Grimmauld (any/all) | * Marking all the libsoup_2_4 vulnerabilities, should wait for Jan Tojnar to ack this but figured i might as well put it here:
https://github.com/NixOS/nixpkgs/pull/427813
(following the conversation in #dev:nixos.org ) | 17:32:04 |
| 24 Jul 2025 |
 tgerbet | GLIBC-SA-2025-0005 cc ma27
https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2025-0005;h=8bcccc59a546800624576e3a835b759d9ad1f1e0;hb=HEAD
| 06:53:09 |
 vcunat | This doesn't seem very serious, fortunately. | 07:01:27 |
 ma27 | preparing an update anyways. | 08:06:33 |
 h0nig2k | does someone already have sqlite CVE 9.8 CVE-2025-6965 this on his/her radar? https://github.com/NixOS/nixpkgs/issues/428033 | 12:30:15 |
| h0nig2k | * does someone already have sqlite CVE 7.2 CVE-2025-6965 this on his/her radar? https://github.com/NixOS/nixpkgs/issues/428033 | 12:30:58 |
 K900 | Please search existing PRs before posting: https://github.com/NixOS/nixpkgs/pull/420837 | 12:32:02 |
| h0nig2k | @K900 the PR is for unstable, the issue was created for 25.05 | 13:30:59 |
| ma27 | In reply to @ma27:nicht-so.sexy
preparing an update anyways. https://github.com/NixOS/nixpkgs/pull/428072 | 14:20:38 |
|  @xayomer:kif.rocks left the room. | 16:09:16 |
| vcunat | 25.05 proposal: https://github.com/NixOS/nixpkgs/pull/428121 | 18:02:30 |
| 25 Jul 2025 |
 niklaskorz | Nvidia legacy driver 535 update addressing CVE-2025-23286 ("vulnerability where an attacker may access sensitive system-level information"):
https://github.com/NixOS/nixpkgs/pull/428379 | 16:18:55 |
| 26 Jul 2025 |
|  oak 🏳️🌈♥️ changed their profile picture. | 08:28:43 |
| 27 Jul 2025 |
|  NullCube joined the room. | 04:50:47 |
| 31 Jul 2025 |
|  sammy (It/Its) joined the room. | 09:39:32 |
|  @sammy:cherrykitten.dev left the room. | 09:39:40 |
| 1 Aug 2025 |
|  @tejing:matrix.org joined the room. | 02:15:38 |
| @tejing:matrix.org | Given that it's addressing an RCE, I'd appreciate a quick turnaround on https://github.com/NixOS/nixpkgs/pull/429899 (The bot's review isn't relevant in this case) | 02:17:54 |
| @tejing:matrix.org | Thanks! | 03:23:39 |
| @tejing:matrix.org left the room. | 03:55:47 |
| 2 Aug 2025 |
|  @saiko:knifepoint.net changed their profile picture. | 00:27:56 |
 hexa | https://webkitgtk.org/security/WSA-2025-0005.html cc Jan Tojnar | 13:42:11 |
