chore(flake): Automatic flake update

EdenEast commented 3 years ago

Flake input changes:

Updated fenix: 8bd76e91 ➡️ 24731cb4
Updated fenix/rust-analyzer-src: 7729473d ➡️ 237ea0d3
Updated home-manager: 371576cd ➡️ 0f3dfc94
Updated neovim-nightly: 1543de28 ➡️ 85afd4de
Updated neovim-nightly/neovim-flake: 924e8e4f ➡️ 724ffe70
Updated nixpkgs: 79c444b5 ➡️ 82155ff5
Updated nur: f2e2290d ➡️ ddfc44de

github-actions[bot] commented 3 years ago

Report for `eden`

Version changes:

Version 1 -> 2:
  bash: 4.4-p23 → 5.1-p8, +218.5 KiB
  bash-interactive: 4.4-p23 → 5.1-p8, +761.8 KiB
  bat: -8.3 KiB
  bottom: -24.3 KiB
  cryptsetup: 2.3.6 → 2.4.0, -169.3 KiB
  delta: -9.3 KiB
  diffutils: 3.7 → 3.8, +100.1 KiB
  dotnet-sdk: 5.0.202 → 5.0.401, +5520.6 KiB
  dua: 2.14.6 → 2.14.7
  fd: -13.9 KiB
  glib: 2.68.3 → 2.68.4, -18.8 KiB
  glibc: 2.33-49 → 2.33-50
  glibc-locales: 2.33-49 → 2.33-50
  htop: 3.0.5 → 3.1.0, +37.4 KiB
  just: 0.10.1 → 0.10.2, +481.4 KiB
  kmod: 27 → 29, +9.1 KiB
  lab: 0.22.0 → 0.23.0, -1919.5 KiB
  libarchive: 3.5.1 → 3.5.2
  libexif: 0.6.22 → 0.6.23, +70.3 KiB
  libgcrypt: 1.9.3 → 1.9.4
  libglvnd: 1.3.3 → 1.3.4
  libssh2: 1.9.0 → 1.10.0
  luajit: 2.1.0-2021-08-12-luv-1.30.0-0 → 2.1.0-2021-08-12-luv-1.42.0-0, +82.2 KiB
  neovim-unwrapped: +107.6 KiB
  nix: 2.4pre20210908_3c56f62 → 2.4pre20210922_bcd73eb, +56.5 KiB
  nixpkgs-fmt: +8.8 KiB
  nodejs: 14.17.6 → 14.18.0, +134.8 KiB
  openssh: 8.6p1 → 8.7p1, +115.1 KiB
  procs: -14.7 KiB
  pyright: 1.1.166 → 1.1.170, +104.1 KiB
  python3: +95.9 KiB
  python3.9-Pillow: 8.3.1 → 8.3.2
  readline: 7.0p5 → ∅, -396.9 KiB
  rnix-lsp: 0.1.0 → 0.2.1, +386.4 KiB
  rust-analyzer-nightly: 7729473 → 237ea0d, +223.5 KiB
  s2n-tls: 1.0.16 → 1.0.17, +158.3 KiB
  sccache: -19.3 KiB
  source: +1245.9 KiB
  sqlite: 3.35.5 → 3.36.0
  starship: 0.57.0 → 0.58.0, +50.4 KiB
  stylua: 0.10.1 → 0.11.0, -28.3 KiB
  systemd: 247.6 → 249.4, +1696.4 KiB
  systemd-minimal: 247.6 → 249.4, +489.3 KiB
  tokei: -9.2 KiB
  tree-sitter-c-grammar: +43.9 KiB
  tree-sitter-cpp-grammar: +32.0 KiB
  tree-sitter-fennel-grammar: -20.2 KiB
  tree-sitter-typescript-grammar: -535.6 KiB
  typescript: 4.4.2 → 4.4.3
  wget: 1.21.1 → 1.21.2, +102.6 KiB
  zellij: 0.17.0 → 0.18.1, +593.0 KiB

Security vulnerability report

31 derivations with active advisories
10 derivations left out due to whitelisting

------------------------------------------------------------------------
ShellCheck-0.7.2

/nix/store/6dpdv2cqsd27md5h5zfgxcdydpqybzgq-ShellCheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
anymap-0.12.1

/nix/store/78ny6m0xd4y5yhb0xcaxw5z6wa1a7wk2-anymap-0.12.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38187    9.8

------------------------------------------------------------------------
binutils-2.35.1

/nix/store/ggr48dn1j52ynhvh2nfn7m6lc6dmlf0s-binutils-2.35.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-20294    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3487     6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-20284    5.5

------------------------------------------------------------------------
charset-0.3.8

/nix/store/bbz2xf2nd9p95pizkl62fbingp4qq89m-charset-0.3.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.1

/nix/store/0yy3ph99h9b7zl9hf4mq1n9sikgms42s-commonmark-0.2.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
curl-7.76.1

/nix/store/kmrngfx7wr1xifvlsmsallf4cdiinapn-curl-7.76.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-22926    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22922    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22923    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-22925    5.3

------------------------------------------------------------------------
dot-0.1.4

/nix/store/ir1c5sdbg58a75cyn2r04cja2vf0q0xj-dot-0.1.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3

------------------------------------------------------------------------
git-2.33.0

/nix/store/20kxi2q5c0b0rw4liwdb3w9niqgr0dbg-git-2.33.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
glibc-2.33-50

/nix/store/4aihxwzxf93x2rqyh1knwam2qiz0y8f5-glibc-2.33-50.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/9h20pqid3gzc6n63cqvwm50ymj3r05al-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-34558    6.5

------------------------------------------------------------------------
go-1.16.8

/nix/store/r90gp6razxqyb8hayz1p5kdp1mlaqi58-go-1.16.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5

------------------------------------------------------------------------
home-0.5.3

/nix/store/y1iw4wb4q7han8w5pyzga7xsrg1v0sjd-home-0.5.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7

------------------------------------------------------------------------
hub-2.14.2

/nix/store/j5mzipkych8f3kgxsifw300crijlzxz7-hub-2.14.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36209    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-37540    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37541    6.1

------------------------------------------------------------------------
instant-0.1.11

/nix/store/2a8yndv8fp0l10akzyjmjwzvhy6mmhfr-instant-0.1.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9

------------------------------------------------------------------------
jose-0.8.4

/nix/store/9bbiyb9n2x0rnig1ac4fjfsn1qjg1p1k-jose-0.8.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
libarchive-3.5.2

/nix/store/739y91cc5hrhch17zj3br8r6baxkq757-libarchive-3.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
lua-5.3.6

/nix/store/1447jz1magpqnay0943qzd40h11hrm71-lua-5.3.6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
ncurses-6.2

/nix/store/xbf9p5n56z0np97igvvksr9f5s9mzlh6-ncurses-6.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39537    8.8

------------------------------------------------------------------------
network-3.1.1.1

/nix/store/jx1951nh3jy6r2016knm935mf4nr983i-network-3.1.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
openexr-2.5.7

/nix/store/g92h9m98vmd48ql14pby19i0nlsgrjdy-openexr-2.5.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssh-8.7p1

/nix/store/03k5b4dllhmgyha75lbv3gs2rrawag60-openssh-8.7p1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-41617    8.8

------------------------------------------------------------------------
openssl-1.1.1l

/nix/store/7dsqwxhs6c9vl822g1mngvirjil1y64r-openssl-1.1.1l.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2016-7798     7.5

------------------------------------------------------------------------
quote-1.0.9

/nix/store/ys0mk4bwifh8l95h9szmvxj9hi8x8mp2-quote-1.0.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
ruby-2.7.4

/nix/store/8ap30fjc87prla80adlxw06w349109vz-ruby-2.7.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28966    7.5

------------------------------------------------------------------------
safe-0.3.19

/nix/store/8vz06x5b9gv7fvy314dvsdmsqdbx9ssp-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
shellcheck-0.7.2

/nix/store/3hy9x62i8rrmbjib9y09ygdcn1yjifh9-shellcheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
sqlite-3.36.0

/nix/store/fbb4zjmvmxziwg8pzhr06s9k9ld665gs-sqlite-3.36.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36690    7.5

------------------------------------------------------------------------
tcl-8.6.11

/nix/store/wbmab2sz14p4jhznvyr2yp81ml2yks6j-tcl-8.6.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35331    7.8

------------------------------------------------------------------------
util-linux-2.36.2

/nix/store/mdk61qhs793f4ihx9a7qmif0ygpx361l-util-linux-2.36.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-37600    5.5

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/fn0dcj82lsxa4v0nn604ygp1pmldbnl7-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-8.2.3337

/nix/store/10zxj1wp6wd2j23cj990dq7x2d8j4kz7-vim-8.2.3337.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3796     8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3770     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3778     7.8

use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 3 years ago

Report for `sloth`

Version changes:

Version 1 -> 2:
  alacritty: -52.5 KiB
  bash: 4.4-p23 → 5.1-p8, +430.3 KiB
  bash-interactive: 4.4-p23 → 5.1-p8, +1707.5 KiB
  bat: -8.3 KiB
  bluez: 5.60 → 5.61, +36.4 KiB
  bottom: -24.3 KiB
  btrfs-progs: 5.13.1 → 5.14.1, -63.9 KiB
  cryptsetup: 2.3.6 → 2.4.0, -347.0 KiB
  cups-filters: 1.25.12 → 1.28.10, +232.4 KiB
  darkreader: 4.9.34 → 4.9.37.1, +17.6 KiB
  dav1d: 0.9.1 → 0.9.2, +89.2 KiB
  delta: -9.3 KiB
  diffutils: 3.7 → 3.8, +100.0 KiB
  discord: 0.0.15 → 0.0.16, +7794.1 KiB
  dotnet-sdk: 5.0.202 → 5.0.401, +5520.6 KiB
  dua: 2.14.6 → 2.14.7
  ell: 0.42 → 0.43
  ensure-all-wrappers-paths: ∅ → ε
  etc-updatedb.conf: ∅ → ε
  extra: ∅ → ε, +20861.0 KiB
  fd: -13.9 KiB
  feh: 3.7.1 → 3.7.2
  firefox: 92.0 → 92.0.1
  firefox-unwrapped: 92.0 → 92.0.1, +63.8 KiB
  firmware-linux-nonfree: 2021-08-18 → 2021-09-19, +12988.0 KiB
  getent-glibc: 2.33-49 → 2.33-50
  glib: 2.68.3 → 2.68.4, -37.5 KiB
  glibc: 2.33-49 → 2.33-50
  glibc-locales: 2.33-49 → 2.33-50
  hm-setup: ∅ → ε
  htop: 3.0.5 → 3.1.0, +37.4 KiB
  hwdb.bin: +325.0 KiB
  imlib2: 1.7.2 → 1.7.3
  initrd: ∅ → ε
  initrd-kmod-blacklist: ε → ∅
  initrd-linux: 5.10.64 → 5.10.69, +1698.8 KiB
  iproute2: 5.13.0 → 5.14.0, +29.6 KiB
  just: 0.10.1 → 0.10.2, +481.4 KiB
  keymap: ∅ → ε
  kmod: 27 → 29, +22.2 KiB
  lab: 0.22.0 → 0.23.0, -1919.5 KiB
  libGL: 1.3.3 → 1.3.4
  libXft: 2.3.3 → 2.3.4
  libarchive: 3.5.1 → 3.5.2
  libcbor: +149.3 KiB
  libexif: 0.6.22 → 0.6.23, +70.3 KiB
  libfido2: +923.9 KiB
  libgcrypt: 1.9.3 → 1.9.4
  libglvnd: 1.3.3 → 1.3.4
  liblouis: ∅ → 3.19.0, +10528.4 KiB
  libogg: 1.3.4 → 1.3.5
  librsvg: -211.5 KiB
  libssh: 0.8.9 → 0.9.6, -74.5 KiB
  libssh2: 1.9.0 → 1.10.0
  libwacom: 1.11 → 1.12
  libxkbcommon: 1.3.0 → 1.3.1
  linux: 5.10.64, 5.10.64-modules → 5.10.69, 5.10.69-modules, +904.0 KiB
  lua5.2-penlight: 1.11.0-1 → ∅, -1718.3 KiB
  lua5.2-penlight-dev: ∅ → 1, +1720.0 KiB
  luajit: 2.1.0-2021-08-12-luv-1.30.0-0 → 2.1.0-2021-08-12-luv-1.42.0-0, +82.2 KiB
  mesa: 21.2.1 → 21.2.2, +44.0 KiB
  neovim-unwrapped: +107.6 KiB
  nix: 2.4pre20210908_3c56f62 → 2.4pre20210922_bcd73eb, +300.8 KiB
  nixos: +42.8 KiB
  nixos-manual: +127.4 KiB
  nixos-system-sloth: 21.11.20210916.79c444b → 21.11.20211001.82155ff
  nixpkgs-fmt: +8.8 KiB
  nodejs: 14.17.6 → 14.18.0, +134.8 KiB
  noto-fonts-emoji: +488.6 KiB
  openssh: 8.6p1 → 8.7p1, +115.1 KiB
  pipewire: 0.3.35 → 0.3.36
  playerctl: 2.3.1 → 2.4.1, -267.4 KiB
  postgresql: 13.3 → 13.4, -20.7 KiB
  procs: -14.7 KiB
  pyright: 1.1.166 → 1.1.170, +104.1 KiB
  python3: +95.9 KiB
  python3.9-Pillow: 8.3.1 → 8.3.2
  python3.9-cryptography: 3.4.7 → 3.4.8
  qemu: 6.0.0 → 6.1.0, +14236.8 KiB
  readline: 7.0p5 → ∅, -343.3 KiB
  rnix-lsp: 0.1.0 → 0.2.1, +386.4 KiB
  rust-analyzer-nightly: 7729473 → 237ea0d, +223.5 KiB
  s2n-tls: 1.0.16 → 1.0.17, +158.3 KiB
  samba: 4.14.4 → 4.15.0, +1500.0 KiB
  sccache: -19.3 KiB
  source: +1245.9 KiB
  spidermonkey: -12.5 KiB
  sqlite: 3.35.5 → 3.36.0
  stage: ∅ → 1-init.sh, +19.3 KiB
  starship: 0.57.0 → 0.58.0, +50.4 KiB
  stylua: 0.10.1 → 0.11.0, -28.3 KiB
  system: +10.7 KiB
  systemd: 247.6 → 249.4, +3139.1 KiB
  systemd-minimal: 247.6 → 249.4, +801.7 KiB
  thunar: 4.16.9 → 4.16.10
  tokei: -9.2 KiB
  tree-sitter-c-grammar: +43.9 KiB
  tree-sitter-cpp-grammar: +32.0 KiB
  tree-sitter-fennel-grammar: -20.2 KiB
  tree-sitter-typescript-grammar: -535.6 KiB
  typescript: 4.4.2 → 4.4.3
  udev: +38.8 KiB
  unifont: 13.0.06 → 14.0.01
  unit-autovt: ∅ → .service
  wayland-protocols: 1.21 → 1.23, +18.9 KiB
  webkitgtk: 2.32.3 → 2.32.4, +94.7 KiB
  wezterm: +51.9 KiB
  wget: 1.21.1 → 1.21.2, +102.6 KiB
  x264: 20191217-2245 → ∅, -2353.3 KiB
  x264-unstable: ∅ → 2021-06-13, +2353.3 KiB
  xterm: 368 → 369
  zellij: 0.17.0 → 0.18.1, +593.0 KiB

Security vulnerability report

44 derivations with active advisories
21 derivations left out due to whitelisting

------------------------------------------------------------------------
ShellCheck-0.7.2

/nix/store/6dpdv2cqsd27md5h5zfgxcdydpqybzgq-ShellCheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
anymap-0.12.1

/nix/store/78ny6m0xd4y5yhb0xcaxw5z6wa1a7wk2-anymap-0.12.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38187    9.8

------------------------------------------------------------------------
avahi-0.8

/nix/store/nw78wa8l91ylrycsl4an4xn8cwcvjpjk-avahi-0.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-26720    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3468     5.5

------------------------------------------------------------------------
binutils-2.35.1

/nix/store/ggr48dn1j52ynhvh2nfn7m6lc6dmlf0s-binutils-2.35.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-20294    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3487     6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-20284    5.5

------------------------------------------------------------------------
charset-0.3.8

/nix/store/bbz2xf2nd9p95pizkl62fbingp4qq89m-charset-0.3.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.1

/nix/store/0yy3ph99h9b7zl9hf4mq1n9sikgms42s-commonmark-0.2.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
curl-7.76.1

/nix/store/kmrngfx7wr1xifvlsmsallf4cdiinapn-curl-7.76.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-22926    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22922    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22923    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-22925    5.3

------------------------------------------------------------------------
djvulibre-3.5.28

/nix/store/zxfsy5gb63vkqzl0dl2fzqv4d98ksz9m-djvulibre-3.5.28.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3500     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32490    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32491    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32492    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32493    7.8

------------------------------------------------------------------------
dot-0.1.4

/nix/store/ir1c5sdbg58a75cyn2r04cja2vf0q0xj-dot-0.1.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3

------------------------------------------------------------------------
faad2-2.10.0

/nix/store/15zscmxzr85401ifbrnw1kr6qhm5zf3l-faad2-2.10.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-32273    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32274    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32277    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32278    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32276    5.5

------------------------------------------------------------------------
ffmpeg-4.4

/nix/store/kk9nl2sav91v7wv4d4b5rx64sgflrk9s-ffmpeg-4.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-30123    8.8

------------------------------------------------------------------------
fuse-3.10.5

/nix/store/1b1g39n70fxq4i435gf36mnalfc2c2pm-fuse-3.10.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5

------------------------------------------------------------------------
git-2.33.0

/nix/store/20kxi2q5c0b0rw4liwdb3w9niqgr0dbg-git-2.33.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
glibc-2.33-50

/nix/store/4aihxwzxf93x2rqyh1knwam2qiz0y8f5-glibc-2.33-50.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/9h20pqid3gzc6n63cqvwm50ymj3r05al-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-34558    6.5

------------------------------------------------------------------------
go-1.16.8

/nix/store/r90gp6razxqyb8hayz1p5kdp1mlaqi58-go-1.16.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5

------------------------------------------------------------------------
home-0.5.3

/nix/store/y1iw4wb4q7han8w5pyzga7xsrg1v0sjd-home-0.5.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7

------------------------------------------------------------------------
hub-2.14.2

/nix/store/j5mzipkych8f3kgxsifw300crijlzxz7-hub-2.14.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36209    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-37540    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37541    6.1

------------------------------------------------------------------------
imagemagick-7.1.0-6

/nix/store/q4i3zpfg723r10xdpz63n7mgifxldn64-imagemagick-7.1.0-6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39212    4.4

------------------------------------------------------------------------
instant-0.1.11

/nix/store/2a8yndv8fp0l10akzyjmjwzvhy6mmhfr-instant-0.1.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9

------------------------------------------------------------------------
jose-0.8.4

/nix/store/9bbiyb9n2x0rnig1ac4fjfsn1qjg1p1k-jose-0.8.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
libarchive-3.5.2

/nix/store/739y91cc5hrhch17zj3br8r6baxkq757-libarchive-3.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
libressl-3.2.5

/nix/store/48cdf9hflwlxia3alrd45mjlxcfbd3rl-libressl-3.2.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-41581    5.5

------------------------------------------------------------------------
lua-5.2.4-env

/nix/store/ix9hg0hv1qkkhxnvnsd4vi6wnmdy5zck-lua-5.2.4-env.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
lua-5.3.6

/nix/store/1447jz1magpqnay0943qzd40h11hrm71-lua-5.3.6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
markdown-0.33-1.rockspec

/nix/store/blm6hv7rwbx1ljcqbssinh5qzxnircln-markdown-0.33-1.rockspec.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000874  6.1

------------------------------------------------------------------------
ncurses-6.2

/nix/store/xbf9p5n56z0np97igvvksr9f5s9mzlh6-ncurses-6.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39537    8.8

------------------------------------------------------------------------
network-3.1.1.1

/nix/store/jx1951nh3jy6r2016knm935mf4nr983i-network-3.1.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
openexr-2.5.7

/nix/store/g92h9m98vmd48ql14pby19i0nlsgrjdy-openexr-2.5.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssh-8.7p1

/nix/store/03k5b4dllhmgyha75lbv3gs2rrawag60-openssh-8.7p1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-41617    8.8

------------------------------------------------------------------------
openssl-1.1.1l

/nix/store/7dsqwxhs6c9vl822g1mngvirjil1y64r-openssl-1.1.1l.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2016-7798     7.5

------------------------------------------------------------------------
openvpn-2.5.2

/nix/store/4bc5ilmwch4lcihq3jjnr0v5f5wczksr-openvpn-2.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7224     9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3606     7.8
https://nvd.nist.gov/vuln/detail/CVE-2020-27569    7.5

------------------------------------------------------------------------
qemu-6.1.0

/nix/store/4q5hwyxhxiq10ivzv10pzcm6bzn5y1ix-qemu-6.1.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3682     8.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3713     7.4
https://nvd.nist.gov/vuln/detail/CVE-2021-3527     5.5

------------------------------------------------------------------------
quote-1.0.9

/nix/store/ys0mk4bwifh8l95h9szmvxj9hi8x8mp2-quote-1.0.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
ruby-2.7.4

/nix/store/8ap30fjc87prla80adlxw06w349109vz-ruby-2.7.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28966    7.5

------------------------------------------------------------------------
safe-0.3.19

/nix/store/8vz06x5b9gv7fvy314dvsdmsqdbx9ssp-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
samba-4.15.0

/nix/store/x0fr7s2wwhbppfp45vpi0h2qzkydsj0s-samba-4.15.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1057     8.8
https://nvd.nist.gov/vuln/detail/CVE-2018-1050     4.3

------------------------------------------------------------------------
shellcheck-0.7.2

/nix/store/3hy9x62i8rrmbjib9y09ygdcn1yjifh9-shellcheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
sqlite-3.36.0

/nix/store/fbb4zjmvmxziwg8pzhr06s9k9ld665gs-sqlite-3.36.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36690    7.5

------------------------------------------------------------------------
subversion-1.14.1

/nix/store/pkl6ns17xap4v4rmb4si9kgb3bdvj849-subversion-1.14.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-1000085  6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2304     6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2111     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000111  5.3

------------------------------------------------------------------------
tcl-8.6.11

/nix/store/wbmab2sz14p4jhznvyr2yp81ml2yks6j-tcl-8.6.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35331    7.8

------------------------------------------------------------------------
util-linux-2.36.2

/nix/store/mdk61qhs793f4ihx9a7qmif0ygpx361l-util-linux-2.36.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-37600    5.5

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/fn0dcj82lsxa4v0nn604ygp1pmldbnl7-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-8.2.3337

/nix/store/10zxj1wp6wd2j23cj990dq7x2d8j4kz7-vim-8.2.3337.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3796     8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3770     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3778     7.8

use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 3 years ago

Report for `pride`

Version changes:

Version 1 -> 2:
  alacritty: -52.5 KiB
  bash: 4.4-p23 → 5.1-p8, +430.3 KiB
  bash-interactive: 4.4-p23 → 5.1-p8, +1707.5 KiB
  bat: -8.3 KiB
  bluez: 5.60 → 5.61, +72.4 KiB
  bottom: -24.3 KiB
  btrfs-progs: 5.13.1 → 5.14.1, -63.9 KiB
  cpupower: 5.14.1 → 5.14.8
  cryptsetup: 2.3.6 → 2.4.0, -347.0 KiB
  cups-filters: 1.25.12 → 1.28.10, +232.4 KiB
  darkreader: 4.9.34 → 4.9.37.1, +17.6 KiB
  dav1d: 0.9.1 → 0.9.2, +167.6 KiB
  delta: -9.3 KiB
  diffutils: 3.7 → 3.8, +100.0 KiB
  discord: 0.0.15 → 0.0.16, +7794.1 KiB
  dotnet-sdk: 5.0.202 → 5.0.401, +5520.6 KiB
  dua: 2.14.6 → 2.14.7
  ell: 0.42 → 0.43
  ensure-all-wrappers-paths: ∅ → ε
  etc-updatedb.conf: ∅ → ε
  extra: ∅ → ε, +20861.0 KiB
  fd: -13.9 KiB
  feh: 3.7.1 → 3.7.2
  firefox: 92.0 → 92.0.1
  firefox-unwrapped: 92.0 → 92.0.1, +63.8 KiB
  firmware-linux-nonfree: 2021-08-18 → 2021-09-19, +12988.0 KiB
  getent-glibc: 2.33-49 → 2.33-50
  glib: 2.68.3 → 2.68.4, -37.5 KiB
  glibc: 2.33-49 → 2.33-50
  glibc-locales: 2.33-49 → 2.33-50
  glibc-multi: 2.33-49 → 2.33-50
  hm-setup: ∅ → ε
  htop: 3.0.5 → 3.1.0, +37.4 KiB
  hwdb.bin: +325.0 KiB
  imlib2: 1.7.2 → 1.7.3
  initrd: ∅ → ε
  initrd-kmod-blacklist: ∅ → ε
  initrd-linux: 5.14.1 → 5.14.8, +1969.6 KiB
  iproute2: 5.13.0 → 5.14.0, +29.6 KiB
  just: 0.10.1 → 0.10.2, +481.4 KiB
  keymap: ∅ → ε
  kmod: 27 → 29, +22.2 KiB
  lab: 0.22.0 → 0.23.0, -1919.5 KiB
  libGL: 1.3.3 → 1.3.4
  libXft: 2.3.3 → 2.3.4
  libarchive: 3.5.1 → 3.5.2
  libcbor: +149.3 KiB
  libexif: 0.6.22 → 0.6.23, +140.6 KiB
  libfido2: +923.9 KiB
  libgcrypt: 1.9.3 → 1.9.4
  libglvnd: 1.3.3 → 1.3.4
  liblouis: ∅ → 3.19.0, +10528.4 KiB
  libogg: 1.3.4 → 1.3.5
  librsvg: -211.5 KiB
  libssh: 0.8.9 → 0.9.6, -138.9 KiB
  libssh2: 1.9.0 → 1.10.0
  libwacom: 1.11 → 1.12
  libxkbcommon: 1.3.0 → 1.3.1
  linux: 5.14.1, 5.14.1-modules → 5.14.8, 5.14.8-modules, +23490.3 KiB
  lua5.2-penlight: 1.11.0-1 → ∅, -1718.3 KiB
  lua5.2-penlight-dev: ∅ → 1, +1720.0 KiB
  luajit: 2.1.0-2021-08-12-luv-1.30.0-0 → 2.1.0-2021-08-12-luv-1.42.0-0, +82.2 KiB
  mdadm.conf: ∅ → ε
  mesa: 21.2.1 → 21.2.2, +384.0 KiB
  neovim-unwrapped: +107.6 KiB
  nix: 2.4pre20210908_3c56f62 → 2.4pre20210922_bcd73eb, +300.8 KiB
  nixos: +42.8 KiB
  nixos-manual: +127.4 KiB
  nixos-system-pride: 21.11.20210916.79c444b → 21.11.20211001.82155ff
  nixpkgs-fmt: +8.8 KiB
  nodejs: 14.17.6 → 14.18.0, +134.8 KiB
  noto-fonts-emoji: +488.6 KiB
  nvidia-settings: 470.63.01 → 470.74
  nvidia-x11: 470.63.01-5.14.1 → 470.74-5.14.8, +67711.9 KiB
  openssh: 8.6p1 → 8.7p1, +115.1 KiB
  pipewire: 0.3.35 → 0.3.36, +20.7 KiB
  playerctl: 2.3.1 → 2.4.1, -267.4 KiB
  postgresql: 13.3 → 13.4, -20.7 KiB
  procs: -14.7 KiB
  protobuf: 3.17.3 → 3.18.0, +395.3 KiB
  pyright: 1.1.166 → 1.1.170, +104.1 KiB
  python3: +179.6 KiB
  python3.9-Pillow: 8.3.1 → 8.3.2
  python3.9-cryptography: 3.4.7 → 3.4.8
  qemu: 6.0.0 → 6.1.0, +14236.8 KiB
  readline: 7.0p5 → ∅, -343.3 KiB
  rnix-lsp: 0.1.0 → 0.2.1, +386.4 KiB
  rust-analyzer-nightly: 7729473 → 237ea0d, +223.5 KiB
  s2n-tls: 1.0.16 → 1.0.17, +158.3 KiB
  samba: 4.14.4 → 4.15.0, +1500.0 KiB
  sccache: -19.3 KiB
  source: +1245.9 KiB
  spidermonkey: -12.5 KiB
  sqlite: 3.35.5 → 3.36.0, +27.1 KiB
  stage: ∅ → 1-init.sh, +19.3 KiB
  starship: 0.57.0 → 0.58.0, +50.4 KiB
  steam: +894.0 KiB
  steam-run: +894.1 KiB
  steam-run-usr: +16.1 KiB
  steam-usr: +16.1 KiB
  stylua: 0.10.1 → 0.11.0, -28.3 KiB
  system: +10.7 KiB
  systemd: 247.6 → 249.4, +3216.7 KiB
  systemd-minimal: 247.6 → 249.4, +801.7 KiB
  thunar: 4.16.9 → 4.16.10
  tokei: -9.2 KiB
  tree-sitter-c-grammar: +43.9 KiB
  tree-sitter-cpp-grammar: +32.0 KiB
  tree-sitter-fennel-grammar: -20.2 KiB
  tree-sitter-typescript-grammar: -535.6 KiB
  typescript: 4.4.2 → 4.4.3
  udev: +38.8 KiB
  unifont: 13.0.06 → 14.0.01
  unit-autovt: ∅ → .service
  wayland-protocols: 1.21 → 1.23, +37.7 KiB
  webkitgtk: 2.32.3 → 2.32.4, +94.7 KiB
  wezterm: +51.9 KiB
  wget: 1.21.1 → 1.21.2, +102.6 KiB
  x264: 20191217-2245 → ∅, -4838.2 KiB
  x264-unstable: ∅ → 2021-06-13, +4830.4 KiB
  xterm: 368 → 369
  zellij: 0.17.0 → 0.18.1, +593.0 KiB

Security vulnerability report

46 derivations with active advisories
22 derivations left out due to whitelisting

------------------------------------------------------------------------
ShellCheck-0.7.2

/nix/store/6dpdv2cqsd27md5h5zfgxcdydpqybzgq-ShellCheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
anymap-0.12.1

/nix/store/78ny6m0xd4y5yhb0xcaxw5z6wa1a7wk2-anymap-0.12.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38187    9.8

------------------------------------------------------------------------
avahi-0.8

/nix/store/1mp7kwqly8zp8wnrkj33705j5ppb73zx-avahi-0.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-26720    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3468     5.5

------------------------------------------------------------------------
binutils-2.35.1

/nix/store/ggr48dn1j52ynhvh2nfn7m6lc6dmlf0s-binutils-2.35.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-20294    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3487     6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-20284    5.5

------------------------------------------------------------------------
charset-0.3.8

/nix/store/bbz2xf2nd9p95pizkl62fbingp4qq89m-charset-0.3.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.1

/nix/store/0yy3ph99h9b7zl9hf4mq1n9sikgms42s-commonmark-0.2.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
curl-7.76.1

/nix/store/kmrngfx7wr1xifvlsmsallf4cdiinapn-curl-7.76.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-22926    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22922    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22923    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-22925    5.3

------------------------------------------------------------------------
djvulibre-3.5.28

/nix/store/zxfsy5gb63vkqzl0dl2fzqv4d98ksz9m-djvulibre-3.5.28.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3500     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32490    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32491    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32492    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32493    7.8

------------------------------------------------------------------------
dot-0.1.4

/nix/store/ir1c5sdbg58a75cyn2r04cja2vf0q0xj-dot-0.1.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3

------------------------------------------------------------------------
faad2-2.10.0

/nix/store/15zscmxzr85401ifbrnw1kr6qhm5zf3l-faad2-2.10.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-32273    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32274    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32277    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32278    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32276    5.5

------------------------------------------------------------------------
ffmpeg-4.4

/nix/store/1b3rgq5hnx1jj445y2pmziwprwx7kqnj-ffmpeg-4.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-30123    8.8

------------------------------------------------------------------------
fuse-3.10.5

/nix/store/1b1g39n70fxq4i435gf36mnalfc2c2pm-fuse-3.10.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5

------------------------------------------------------------------------
gcc-7.5.0

/nix/store/nw568bl024vmbq87xq6v4bcy0616q95j-gcc-7.5.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-12886    8.1

------------------------------------------------------------------------
git-2.33.0

/nix/store/20kxi2q5c0b0rw4liwdb3w9niqgr0dbg-git-2.33.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
glibc-2.33-50

/nix/store/4aihxwzxf93x2rqyh1knwam2qiz0y8f5-glibc-2.33-50.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/9h20pqid3gzc6n63cqvwm50ymj3r05al-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-34558    6.5

------------------------------------------------------------------------
go-1.16.8

/nix/store/r90gp6razxqyb8hayz1p5kdp1mlaqi58-go-1.16.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5

------------------------------------------------------------------------
home-0.5.3

/nix/store/y1iw4wb4q7han8w5pyzga7xsrg1v0sjd-home-0.5.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7

------------------------------------------------------------------------
hub-2.14.2

/nix/store/j5mzipkych8f3kgxsifw300crijlzxz7-hub-2.14.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36209    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-37540    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37541    6.1

------------------------------------------------------------------------
imagemagick-7.1.0-6

/nix/store/q4i3zpfg723r10xdpz63n7mgifxldn64-imagemagick-7.1.0-6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39212    4.4

------------------------------------------------------------------------
instant-0.1.11

/nix/store/2a8yndv8fp0l10akzyjmjwzvhy6mmhfr-instant-0.1.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9

------------------------------------------------------------------------
jose-0.8.4

/nix/store/9bbiyb9n2x0rnig1ac4fjfsn1qjg1p1k-jose-0.8.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
libarchive-3.5.2

/nix/store/d8iwb1b1i023ck6ynir9a8f230g69dym-libarchive-3.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
libressl-3.2.5

/nix/store/48cdf9hflwlxia3alrd45mjlxcfbd3rl-libressl-3.2.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-41581    5.5

------------------------------------------------------------------------
live555-2019.11.22

/nix/store/03gna75ciw8njvwfwz3gjgc4lilddkqb-live555-2019.11.22.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38380    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-38381    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-38382    6.5

------------------------------------------------------------------------
lua-5.2.4-env

/nix/store/ix9hg0hv1qkkhxnvnsd4vi6wnmdy5zck-lua-5.2.4-env.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
lua-5.3.6

/nix/store/1447jz1magpqnay0943qzd40h11hrm71-lua-5.3.6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
markdown-0.33-1.rockspec

/nix/store/blm6hv7rwbx1ljcqbssinh5qzxnircln-markdown-0.33-1.rockspec.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000874  6.1

------------------------------------------------------------------------
ncurses-6.2

/nix/store/4sszxslv00d5kkjwh7fmyp3mx8q0m76j-ncurses-6.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39537    8.8

------------------------------------------------------------------------
network-3.1.1.1

/nix/store/jx1951nh3jy6r2016knm935mf4nr983i-network-3.1.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
openexr-2.5.7

/nix/store/r7x6gkbsmk8b9f33v252qmcjn5a79dmd-openexr-2.5.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssh-8.7p1

/nix/store/03k5b4dllhmgyha75lbv3gs2rrawag60-openssh-8.7p1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-41617    8.8

------------------------------------------------------------------------
openssl-1.1.1l

/nix/store/7dsqwxhs6c9vl822g1mngvirjil1y64r-openssl-1.1.1l.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2016-7798     7.5

------------------------------------------------------------------------
openvpn-2.5.2

/nix/store/4bc5ilmwch4lcihq3jjnr0v5f5wczksr-openvpn-2.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7224     9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3606     7.8
https://nvd.nist.gov/vuln/detail/CVE-2020-27569    7.5

------------------------------------------------------------------------
qemu-6.1.0

/nix/store/4q5hwyxhxiq10ivzv10pzcm6bzn5y1ix-qemu-6.1.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3682     8.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3713     7.4
https://nvd.nist.gov/vuln/detail/CVE-2021-3527     5.5

------------------------------------------------------------------------
quote-1.0.9

/nix/store/ys0mk4bwifh8l95h9szmvxj9hi8x8mp2-quote-1.0.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
ruby-2.7.4

/nix/store/8ap30fjc87prla80adlxw06w349109vz-ruby-2.7.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28966    7.5

------------------------------------------------------------------------
safe-0.3.19

/nix/store/8vz06x5b9gv7fvy314dvsdmsqdbx9ssp-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
samba-4.15.0

/nix/store/x0fr7s2wwhbppfp45vpi0h2qzkydsj0s-samba-4.15.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1057     8.8
https://nvd.nist.gov/vuln/detail/CVE-2018-1050     4.3

------------------------------------------------------------------------
shellcheck-0.7.2

/nix/store/3hy9x62i8rrmbjib9y09ygdcn1yjifh9-shellcheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
sqlite-3.36.0

/nix/store/90syn10ikr5ydap14bi8a2927r0jlgf3-sqlite-3.36.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36690    7.5

------------------------------------------------------------------------
subversion-1.14.1

/nix/store/pkl6ns17xap4v4rmb4si9kgb3bdvj849-subversion-1.14.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-1000085  6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2304     6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2111     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000111  5.3

------------------------------------------------------------------------
tcl-8.6.11

/nix/store/wbmab2sz14p4jhznvyr2yp81ml2yks6j-tcl-8.6.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35331    7.8

------------------------------------------------------------------------
util-linux-2.36.2

/nix/store/729w4ji9pcglj2ac75hxsar9z84aa9ap-util-linux-2.36.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-37600    5.5

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/fn0dcj82lsxa4v0nn604ygp1pmldbnl7-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-8.2.3337

/nix/store/10zxj1wp6wd2j23cj990dq7x2d8j4kz7-vim-8.2.3337.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3796     8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3770     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3778     7.8

use --show-whitelisted to see derivations with only whitelisted CVEs

EdenEast / nyx

chore(flake): Automatic flake update #19

Report for `eden`

Report for `sloth`

Report for `pride`

EdenEast / nyx

chore(flake): Automatic flake update #19

Report for eden

Report for sloth

Report for pride

Report for `eden`

Report for `sloth`

Report for `pride`