!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security Triage

708 Members
Coordination and triage of security issues in nixpkgs216 Servers

Load older messages

SenderMessageTime
1 Jun 2021
@buckley310:matrix.orgBuckley joined the room.13:56:15
* @r_i_s:matrix.orgris_ wonders if we should just automatically label all imagemagick PRs security 15:20:32
@stick:matrix.orgstick changed their display name from stick to prusnak.18:04:45
2 Jun 2021
@sandro:supersandro.deSandroWe can't with the current label action because if I recall correctly it would strip the label from all other PRs00:47:09
@sandro:supersandro.deSandroEither a label is fully handled by it or it is interfering with human changes00:47:30
@hexa:lossy.networkhexa dotlambda: did you look into https://github.com/NixOS/nixpkgs/pull/124975#issuecomment-851023573? 15:02:26
@hexa:lossy.networkhexa I just merged cacert updates into staging-20.09, so it would be good time to merge other pull requests with base:staging-20.09 15:02:50
@robert:funklause.dedotlambdaI don't have time for that rn, sorry.15:04:06
@robert:funklause.dedotlambdaI would suggest asking on upstream mailing list/IRC15:04:26
@hexa:lossy.networkhexathe changes apply cleanly and seem to make sense 15:04:58
@robert:funklause.dedotlambdaBut merging should definitely not harm, we can apply additional patches if necessary15:05:10
@hexa:lossy.networkhexayup, will do15:05:16
@hexa:lossy.networkhexa * yup, will do (merging)15:05:20
@robert:funklause.dedotlambdaThanks!15:05:21
3 Jun 2021
@hexa:lossy.networkhexahttps://github.com/NixOS/nixpkgs/pull/12251103:37:40
@hexa:lossy.networkhexanot sure where this went wrong03:37:51
@hexa:lossy.networkhexahttps://twitter.com/rw_grim/status/139981779965721805904:08:15
@hexa:lossy.networkhexahttps://www.openwall.com/lists/oss-security/2021/06/03/114:17:52
@rgrunbla:matrix.orgReventlov joined the room.15:16:03
@hexa:lossy.networkhexahttps://github.com/NixOS/nixpkgs/pull/12555419:33:16
@hexa:lossy.networkhexalooks like this one was embargoed, there is a gitlab.fdo link that goes 404 :)19:54:20
@hexa:lossy.networkhexaand boy, do I wish we had threading in here. The backlog is a mess.19:55:17
@hexa:lossy.networkhexaalso I wish we had a clarification to what branch (staging 🔥, staging-next 🔥🔥, master 🔥 🔥 🔥)19:59:13
@hexa:lossy.networkhexa * also I wish we had a clarification to what branch (staging 🔥, staging-next 🔥🔥, master 🔥🔥🔥) certain types of vulnerabilities go19:59:30
@hexa:lossy.networkhexathis is a local privesc and the current staging cycle is like two weeks at best20:00:00
4 Jun 2021
@lukegb:zxcvbnm.ninjalukegb (he/him)https://hydra.nixos.org/eval/1675207 for master00:54:29
@sgo:matrix.orgstigohttps://github.com/NixOS/nixpkgs/pull/12564610:27:53
@hexa:lossy.networkhexalooks like the polkit change went into master without a hitch12:05:31
@hexa:lossy.networkhexa stigo: the darwin ofborg builder is somewhat backed up with ~100 jobs in the queue fyi 12:05:49
@lukegb:zxcvbnm.ninjalukegb (he/him) hexa: yeah, just trying to unwedge hydra 12:06:08

Show newer messages

Back to Room ListRoom Version: 6