30 May 2024 |
patka (new account: @patka:envs.net) | Aren't those things orthogonal? From buildComposerProject 's perspective it doesn't matter whether something is private or not. If you are already granted access to the private repo in the usual way then it works just the same, no? | 12:06:32 |
Pol | I guess it should be transparent, but I never tested that sadly. | 12:12:32 |
andmuz | Adding auth.json does seem to help with fetching the dependencies, thanks for pointing me towards that! This should be enough for me to proceed with the POC. | 12:34:26 |
6 Jun 2024 |
w | Guys, hey there! I am having an issue, nginx is preventing pdf downloads in a wordpress host. Has anyone faced this issue? | 17:36:22 |
tgerbet | https://www.php.net/ChangeLog-8.php
8.3.8, 8.2.20, 8.1.29
The bypass of arg injection in PHP CGI is not great (if you still run stuff with that)
Does anyone have the time to deal with it? | 17:37:58 |
w | In reply to @wjjunyor:matrix.org Guys, hey there! I am having an issue, nginx is preventing pdf downloads in a wordpress host. Has anyone faced this issue? TLDR - Solved:
Added to conf:
| 17:46:28 |
w | In reply to @wjjunyor:matrix.org Guys, hey there! I am having an issue, nginx is preventing pdf downloads in a wordpress host. Has anyone faced this issue? * TLDR - Solved:
Added to conf:
root = "/var/www/${domain}";
extraConfig = ''
fastcgi_index index.php;
fastcgi_split_path_info ^(.+\.php)(/.*)$;
try_files $uri $uri/ index.php /index.php$is_args$args;
include ${pkgs.nginx}/conf/fastcgi_params;
fastcgi_pass 127.0.0.1:9000;
fastcgi_param SCRIPT_FILENAME $request_filename;
fastcgi_param APP_ENV dev;
'';
};
locations."~* (.*\.pdf)" = {
extraConfig = ''
types { application/octet-stream .pdf; }
default_type application/octet-stream;
'';
};
| 17:46:45 |
Pol | In reply to @tgerbet:matrix.org https://www.php.net/ChangeLog-8.php
8.3.8, 8.2.20, 8.1.29
The bypass of arg injection in PHP CGI is not great (if you still run stuff with that)
Does anyone have the time to deal with it? Yes in 1 or 2 hours. | 17:55:39 |
Pol | Gotta take care of family first here :S | 17:55:46 |
Pol | Done: https://github.com/NixOS/nixpkgs/pull/317830 | 21:08:55 |
7 Jun 2024 |
Pol | Merged | 05:30:07 |
| merlindawizard joined the room. | 13:21:41 |
10 Jun 2024 |
| NixOS Moderation Bot unbanned @jonringer:matrix.org. | 00:17:11 |
Pol | Composer Security PR: https://github.com/NixOS/nixpkgs/pull/318910 | 21:05:13 |
tgerbet | Flagged for automatic backport on stable branches, from a quick look it should be fine
It's nice to get an audit from the Cure53 people | 21:12:15 |
Pol | It's also nice to be able to publish updates so quickly | 21:13:19 |
tgerbet | Oh you flagged them before me drupol 👍 | 21:13:22 |
Pol | This is one of the reason why I love Nix. | 21:13:29 |
11 Jun 2024 |
Pol | tgerbet: Should I backport for 23.11 too? | 06:15:46 |
Pol | I'm looking for some help in here: https://github.com/NixOS/nixpkgs/issues/318913 | 06:39:06 |
Pol | Oh you did it | 07:30:49 |
tgerbet | In reply to @drupol:matrix.org tgerbet: Should I backport for 23.11 too? Yes, we still support it for ~ 20 days, I created the PR from scratch since it cannot really be cherry-picked | 07:31:04 |
Pol | yeah I wanted to backport all the PR we did in between in the meantime | 07:31:25 |
Pol | But I don't think this is a good idea | 07:31:30 |
Pol | Ready to merge. | 07:31:40 |
Pol | Thank you for doing it. | 07:32:01 |
tgerbet | Yeah they are large changes, it's probably "safer" to do the upgrade manually | 07:33:50 |
Pol | OK. | 07:36:02 |
tgerbet | And it's less work 😅 | 07:36:31 |
17 Jun 2024 |
Pol | Jan Tojnar: https://github.com/fossar/nix-phps/pull/350 | 12:31:50 |