| 19 Aug 2022 |
 stigo | rather than parsing it with regexps, if that's possible | 14:10:13 |
| stigo | (oh, the attributes can be optionally quoted too...) | 14:11:05 |
 @janne.hess:helsinki-systems.de | In reply to @stigo:matrix.org
rather than parsing it with regexps, if that's possible nix eval --impure --raw --expr 'builtins.concatStringsSep " " (builtins.attrNames (import ./. {}).perlPackages)' | 14:11:24 |
| @janne.hess:helsinki-systems.de | better: nix eval --impure --json --expr 'builtins.attrNames (import ./. { config.allowAliases = false; }).perlPackages' | 14:12:18 |
| stigo | https://github.com/NixOS/nixpkgs/pull/187480 <-- feel like patching HTTP::Tiny so it verifies TLS connections by default :) | 17:49:44 |
 @qbit:tapenet.org | nice! | 18:26:09 |
| @qbit:tapenet.org | i was following a thread on the perl mailing list that was talking about enabling tls by default.. but i can't find it now.. did that happen? | 18:29:20 |
| @qbit:tapenet.org | dang: https://marc.info/?t=163769025000001&r=1&w=2 nope | 18:33:35 |
| stigo | Probably not yet, perl is usually quite deeply rooted in dependency trees.. openssl requires perl to build for instance. | 18:34:07 |
| @qbit:tapenet.org | right, but that build doesn't have to include openssl :D | 18:34:36 |
| stigo | Very true, i totally agree that tls should be available in perl's core by default | 18:35:12 |
| stigo | the issue became highlighted after the GPG signature scheme on cpan was shown to be quite broken | 18:36:04 |
| @qbit:tapenet.org | ahh | 18:36:18 |
| @qbit:tapenet.org | https://gist.github.com/afresh1/c4ac35cdd29e6b2cd15eef38246c4c71 <-- my fav approach so far :D | 18:36:26 |
| stigo | Nice :D | 18:36:47 |
| stigo | btw, I've been looking at creating a replacement for the (also somewhat broken) Module::Signature module using openssh instead of gpg (very early work though) https://github.com/stigtsp/CPAN-Author-Signature | 18:38:49 |
| stigo | * btw, I've been looking at proposing an alternative to the (also somewhat broken) Module::Signature module using openssh instead of gpg (very early work though) https://github.com/stigtsp/CPAN-Author-Signature | 18:39:15 |
| @qbit:tapenet.org | awesome! | 18:39:38 |
| stigo | it uses metacpan -> (github|gitlab|foobar) as a trust root for ssh keys etc | 18:40:44 |
| @qbit:tapenet.org | i have been using my yubikey bio to do hardware fingerprintie ssh sigs :D | 18:41:09 |
| @qbit:tapenet.org | feels like the future | 18:41:22 |
| stigo | yeah that's quite nice | 18:41:23 |
| stigo | thinking to replace my yubikey-gpg setup with fido2 here, a lot simpler and harder to mess up | 18:41:52 |
| @qbit:tapenet.org | i do fear loose ports because of it :D | 18:42:00 |
| stigo | does the fprint reader work ok? | 18:42:14 |
| @qbit:tapenet.org | ya, better than i expected! | 18:42:34 |
| stigo | cool, should order one then :) | 18:42:46 |
| @qbit:tapenet.org | but things like cuts / scratches for sure mess it up (understandably) | 18:42:51 |
| stigo | ah right, more fragile i guess | 18:43:03 |
| 20 Aug 2022 |
| @janne.hess:helsinki-systems.de | 🎉 | 15:53:05 |
