| 7 Apr 2026 |
 leona | doesn't matter | 21:49:54 |
| leona | it waits anyway for release-25.11 to finish eval. That should happen in the next minutes | 21:50:09 |
| leona | I'm going to sleep too. Someone should trigger an eval for nixos:unstable at some point | 21:50:28 |
| leona | * I'm going to bed too. Someone should trigger an eval for nixos:unstable at some point | 21:50:35 |
 Winter | (wait, where is that configured in the jobset?) | 21:50:51 |
| leona | hydra-evaluator only evaluates one jobset at at ime | 21:51:09 |
| Winter | can do that once 25.11 and small are done | 21:51:11 |
| leona | * hydra-evaluator only evaluates one jobset at at time | 21:51:13 |
| Winter | ah, right. wait, just to clarify: did you kick off a -small before i did? | 21:51:40 |
| Winter | just don't want to have two in a short period of time, if i have to cancel one i will | 21:51:53 |
| leona | I evaled release-25.11. Then I evaled unstable-small (which just means that it will eval once 25.11 is finished). Your additional eval request for unstable-small merges with mine, so only one eval will be created | 21:52:56 |
| leona | * I evaled release-25.11. Then I evaled unstable-small (which just means that it will eval once 25.11 is finished / it gets added to the "eval queue"). Your additional eval request for unstable-small merges with mine, so only one eval will be created | 21:53:44 |
 tgerbet | Flatpak sandbox escape CVE-2026-34078 + arbitrary file deletion on the host CVE-2026-34079 @getchoo:matrix.org https://github.com/flatpak/flatpak/releases/tag/1.16.4 | 22:22:00 |
 Bart | https://github.com/NixOS/nixpkgs/pull/507753 | 22:41:10 |
| Bart | Builds on x86_64-linux, should not break any builds theoretically | 22:41:31 |
|  infowski joined the room. | 23:35:02 |
| 8 Apr 2026 |
|  JamieMagee set a profile picture. | 03:42:56 |
 getchoo | the above was merged. will hopefully do the 25.11 backport tonight
thanks for the heads up :) | 03:48:44 |
 K900 | Adjacent XDP update: https://www.phoronix.com/news/XDG-Desktop-Portal-1.20.4 | 05:17:20 |
|  Marcel joined the room. | 13:11:09 |
 ari ❄ | how about some openssl? https://openssl-library.org/news/secadv/20260407.txt | 15:08:27 |
| Marcel | ive created a PR https://github.com/NixOS/nixpkgs/pull/507974 | 15:50:50 |
| Bart | https://github.com/NixOS/nixpkgs/pull/507985 | 16:15:46 |
| Bart | https://github.com/NixOS/nixpkgs/pull/507860 | 16:16:18 |
| 9 Apr 2026 |
 Samuel Dionne-Riel | avahi CVEs and mitigation https://github.com/NixOS/nixpkgs/pull/508012 | 14:19:37 |
|  andre4ik3 joined the room. | 21:49:06 |
| andre4ik3 | Hi, would appreciate review/and or merge of https://github.com/NixOS/nixpkgs/pull/508083 for Cockpit CVE-2026-4631 (https://github.com/advisories/GHSA-rq49-h582-83m7) | 21:49:32 |
|  caverav joined the room. | 22:07:46 |
|  Sapii joined the room. | 23:06:48 |
| 10 Apr 2026 |
 Tom | Could someone please take a look at this go bump: https://github.com/NixOS/nixpkgs/pull/508457
Particullary relevant for nixos-25.11 since there it's the default go version. | 20:35:19 |
