chore(flake): Automatic flake update

EdenEast commented 2 years ago

Flake input changes:

Updated fenix: 27d0917f ➡️ 24400606
Updated fenix/rust-analyzer-src: e217632b ➡️ 2d0db312
Updated home-manager: 9de77227 ➡️ f23073f1
Updated neovim-nightly: 8266624f ➡️ 3099b910
Updated neovim-nightly/neovim-flake: fff88279 ➡️ d3585e0e
Updated nixpkgs: 8a308775 ➡️ 29d1f6e1
Updated nur: f35a5392 ➡️ 0e664816

github-actions[bot] commented 2 years ago

Report for `eden`

Version changes:

Version 1 -> 2:
  direnv: 2.28.0 → 2.29.0
  rust-analyzer-nightly: ∅ → 2d0db31, +34197.7 KiB
  rust-analyzer-nightly-e217632: ε → ∅, -34104.6 KiB
  source: +21.6 KiB
  sumneko-lua-language-server: 2.4.7 → 2.5.1, +355.2 KiB

Security vulnerability report

31 derivations with active advisories
9 derivations left out due to whitelisting

------------------------------------------------------------------------
ShellCheck-0.7.2

/nix/store/7b1jvv7fv8xa6l5978ww3y0rf9rcblh2-ShellCheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
anymap-0.12.1

/nix/store/n1hkcnk52674crmksdj4v9ivss5qlf2h-anymap-0.12.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38187    9.8

------------------------------------------------------------------------
cereal-0.5.8.2

/nix/store/fmhwsmq6ghk4mgns1gqa3lhajl6sdhbh-cereal-0.5.8.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8
https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3

------------------------------------------------------------------------
charset-0.3.9

/nix/store/yp99xd6a5l2kvhpzmkz7mvl8y3pjgddm-charset-0.3.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.1.1

/nix/store/gg836h7yd5wasi6kk92wz57f3h23x6qb-commonmark-0.2.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
dot-0.1.4

/nix/store/hyv7mli1mwqhydds8c3sacm3w90za89w-dot-0.1.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3

------------------------------------------------------------------------
git-2.33.1

/nix/store/mdcsmbzn0m645bs3n2dnj4vz1s6jq5jz-git-2.33.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
glibc-2.33-56

/nix/store/vp1svn2vvgxr8ldxs8yad8nlfjcblkf8-glibc-2.33-56.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
gmp-6.2.1

/nix/store/xk1m6jrzhwwd0n5g6ad381h8p0igz16l-gmp-6.2.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43618    7.5

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/5bl3rcp3kg5x77szjjimqlmyzwzjb770-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-34558    6.5

------------------------------------------------------------------------
go-1.16.9

/nix/store/jl84zgwccx933dlgbxswp3m7z2k0gxm6-go-1.16.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5

------------------------------------------------------------------------
home-0.5.3

/nix/store/rwir962j3vc2wg7613gnall8pkidam0r-home-0.5.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7

------------------------------------------------------------------------
hub-2.14.2

/nix/store/wlnl2ilfcvrpf7hmid317lpcif8920ww-hub-2.14.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36209    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-43183    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-43180    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43182    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37540    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37541    6.1
https://nvd.nist.gov/vuln/detail/CVE-2021-43181    6.1

------------------------------------------------------------------------
instant-0.1.12

/nix/store/49vq5kvcakf5cvh1k2i3x1jcd76kc9lb-instant-0.1.12.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9

------------------------------------------------------------------------
jose-0.8.4

/nix/store/6a7an4mk58ba9y1swd9sxj3l4ibh6vpl-jose-0.8.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
libarchive-3.5.2

/nix/store/gg9fz8yq437wj6gdn9wparjw7cg4mcwq-libarchive-3.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
lua-5.3.6

/nix/store/h2qbpqcckbf4bcb2qwb36dz8jdb9pazy-lua-5.3.6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
ncurses-6.2

/nix/store/rwxkx6wc3ak0ilyfqicvc7y0pqai4wbq-ncurses-6.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39537    8.8

------------------------------------------------------------------------
network-3.1.1.1

/nix/store/3378z555gnz98pvaz201z82hlrh45hf4-network-3.1.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
openexr-2.5.7

/nix/store/b5wi73pyb6zjkam4szwrai4vzfikdikz-openexr-2.5.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssl-1.1.1l

/nix/store/h6z7flqs63nrscld02advh50m1h6hivf-openssl-1.1.1l.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2016-7798     7.5

------------------------------------------------------------------------
quote-1.0.10

/nix/store/ls6mmxaj4gqlgdwqsi9f9aif3ppf69nf-quote-1.0.10.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
ruby-2.7.4

/nix/store/zqmrl6ypwypky0k7d97pz73jw9ap7q09-ruby-2.7.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28966    7.5

------------------------------------------------------------------------
safe-0.3.19

/nix/store/fsdnx3qr9ipn8z0gvinmfapb73f2najj-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
shellcheck-0.7.2

/nix/store/m9rlxbnhhlpiy0l7r8bzrnxd7srnbwq6-shellcheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
sqlite-3.36.0

/nix/store/7rkqnihnicb37vr06a7ygqdv041ggzkl-sqlite-3.36.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36690    7.5

------------------------------------------------------------------------
tcl-8.6.11

/nix/store/wafmzm0agp1wxl3flnsgjzx09gy2gnzb-tcl-8.6.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35331    7.8

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/0mayhmmdiiwhixda63sgljvaapibbl7m-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vault-0.3.1.5-r1.cabal

/nix/store/swrw736ify2df3sdm7gd8pahxsa1913z-vault-0.3.1.5-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-8.2.3451

/nix/store/p3s8l35fmx0qrc6xd67i6myi30vsd7ii-vim-8.2.3451.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3968     8.0
https://nvd.nist.gov/vuln/detail/CVE-2021-3872     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3903     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3927     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3928     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3973     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3974     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3875     5.5

------------------------------------------------------------------------
xshell-0.1.17

/nix/store/a8cv14yx4dwpr7zjdjkk3a7dpqmbmi86-xshell-0.1.17.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-42095    7.5

use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 2 years ago

Report for `theman`

Version changes:

Version 1 -> 2:'
'  darwin-system: 22.05.20211129.8a30877+darwin4.44da835 → 22.05.20211130.29d1f6e+darwin4.44da835'
'  direnv: 2.28.0 → 2.29.0'
'  source: [31;1m+21.6 KiB[0m

Security vulnerability report

19 derivations with active advisories'
'11 derivations left out due to whitelisting'
''
'------------------------------------------------------------------------'
'cereal-0.5.8.2'
''
'/nix/store/kg2vmbkdgjnpqkvgrwawnwk2syp375g0-cereal-0.5.8.2.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3'
''
'------------------------------------------------------------------------'
'charset-0.3.9'
''
'/nix/store/9griivy09y4svz3h1h9p01zflf8fb0ir-charset-0.3.9.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5'
''
'------------------------------------------------------------------------'
'commonmark-0.2.1.1'
''
'/nix/store/k2pbpzvqwcnmnpdxvq5n3cb65lq1yj2m-commonmark-0.2.1.1.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1'
''
'------------------------------------------------------------------------'
'git-2.33.1'
''
'/nix/store/qaky6bzn0bb9a6k0fsr29p1vksx4jnz5-git-2.33.1.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4'
'https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1'
'https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4'
'https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3'
'https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3'
''
'------------------------------------------------------------------------'
'gmp-6.2.1'
''
'/nix/store/liniz1mpwh29li77zq21n9lwx7gdwv59-gmp-6.2.1.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43618    7.5'
''
'------------------------------------------------------------------------'
'go-1.16-darwin-amd64-bootstrap'
''
'/nix/store/1a9gikgb09vzw7i86h58yrczag31zg1p-go-1.16-darwin-amd64-bootstrap.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-34558    6.5'
''
'------------------------------------------------------------------------'
'go-1.16.9'
''
'/nix/store/73jg20rz13d7cb6k153l47as7fn76z7r-go-1.16.9.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5'
''
'------------------------------------------------------------------------'
'hub-2.14.2'
''
'/nix/store/b1xqqc7mh1j1cajab06q6b4dl5p4qskp-hub-2.14.2.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-36209    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43183    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43180    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43182    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-37540    6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-37541    6.1'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43181    6.1'
''
'------------------------------------------------------------------------'
'libarchive-3.5.2'
''
'/nix/store/nymqcglz8lr448kaiws2fpgwvi4zilcs-libarchive-3.5.2.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5'
''
'------------------------------------------------------------------------'
'lua-5.3.6'
''
'/nix/store/v6m4ahynsjs1jpdwxbyb7xakcynwallv-lua-5.3.6.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5'
''
'------------------------------------------------------------------------'
'ncurses-6.2'
''
'/nix/store/8a60xqvj67w39xnw2h45r47c1qjvgy8r-ncurses-6.2.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-39537    8.8'
''
'------------------------------------------------------------------------'
'network-3.1.1.1'
''
'/nix/store/xlrbsyjwn047rhlh4wfbwahr8p994zzr-network-3.1.1.1.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5'
''
'------------------------------------------------------------------------'
'openexr-2.5.7'
''
'/nix/store/z94az929zc5fjcq7kkvl40yb5y15f6x7-openexr-2.5.7.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5'
''
'------------------------------------------------------------------------'
'openssl-1.1.1l'
''
'/nix/store/qlyh3d5gzfanmdq5qsq5qv8lxv6ppw9w-openssl-1.1.1l.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2016-7798     7.5'
''
'------------------------------------------------------------------------'
'ruby-2.7.4'
''
'/nix/store/49r81lndg857b3dp95hara4q214hdibn-ruby-2.7.4.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-28966    7.5'
''
'------------------------------------------------------------------------'
'safe-0.3.19'
''
'/nix/store/5q6ii87qjzzss26cxinp16p59sj2cy9r-safe-0.3.19.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1'
'https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5'
''
'------------------------------------------------------------------------'
'sqlite-3.36.0'
''
'/nix/store/9ck6rjf8jqdkpscrvp3lmdyak3g422hn-sqlite-3.36.0.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-36690    7.5'
''
'------------------------------------------------------------------------'
'subversion-1.14.1'
''
'/nix/store/ss536j9xr70cjmr0kw9lw134xwbh9pzy-subversion-1.14.1.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-21698    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2017-1000085  6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2020-2304     6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2020-2111     5.4'
'https://nvd.nist.gov/vuln/detail/CVE-2018-1000111  5.3'
''
'------------------------------------------------------------------------'
'tcl-8.6.11'
''
'/nix/store/ss4nnrp5lpmda1cr38w3hfbsa834n0fb-tcl-8.6.11.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35331    7.8'
''
'use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 2 years ago

Report for `pride`

Version changes:

Version 1 -> 2:
  direnv: 2.28.0 → 2.29.0
  nixos-system-pride: 22.05.20211129.8a30877 → 22.05.20211130.29d1f6e
  rust-analyzer-nightly: ∅ → 2d0db31, +34197.7 KiB
  rust-analyzer-nightly-e217632: ε → ∅, -34104.6 KiB
  source: +21.6 KiB
  sumneko-lua-language-server: 2.4.7 → 2.5.1, +355.2 KiB

Security vulnerability report

56 derivations with active advisories
18 derivations left out due to whitelisting

------------------------------------------------------------------------
ShellCheck-0.7.2

/nix/store/7b1jvv7fv8xa6l5978ww3y0rf9rcblh2-ShellCheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
anymap-0.12.1

/nix/store/n1hkcnk52674crmksdj4v9ivss5qlf2h-anymap-0.12.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38187    9.8

------------------------------------------------------------------------
avahi-0.8

/nix/store/0yf9bglbzh9yfjb7mcd2srazyrkl51jp-avahi-0.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-26720    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3468     5.5

------------------------------------------------------------------------
bind-9.16.16

/nix/store/3sv6iymrx1b8j6v2vllw9lzcazzzhilz-bind-9.16.16.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25219    5.3

------------------------------------------------------------------------
binutils-2.35.1

/nix/store/4mvcc5iclfsaak0mxlcy5fqjh1r9glb6-binutils-2.35.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-20294    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3487     6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-20284    5.5

------------------------------------------------------------------------
c-ares-1.17.1

/nix/store/cnqjdkh2nph832lgjr8drsv48dqqpabd-c-ares-1.17.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3672     7.3

------------------------------------------------------------------------
cereal-0.5.8.2

/nix/store/fmhwsmq6ghk4mgns1gqa3lhajl6sdhbh-cereal-0.5.8.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8
https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3

------------------------------------------------------------------------
charset-0.3.9

/nix/store/yp99xd6a5l2kvhpzmkz7mvl8y3pjgddm-charset-0.3.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.1.1

/nix/store/gg836h7yd5wasi6kk92wz57f3h23x6qb-commonmark-0.2.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
cups-2.3.3op2

/nix/store/5m5qbds0v168nwg4jx4m8brj6pb2kqcc-cups-2.3.3op2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25317    3.3

------------------------------------------------------------------------
curl-7.76.1

/nix/store/j0lxa8v3ll2rc538phzk74p80bb4qywq-curl-7.76.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-22926    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22946    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22922    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22947    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-22923    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-22925    5.3

------------------------------------------------------------------------
djvulibre-3.5.28

/nix/store/w2r7vmkizc372inxzpz2lkasgcxwivq7-djvulibre-3.5.28.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3500     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32490    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32491    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32492    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32493    7.8

------------------------------------------------------------------------
dot-0.1.4

/nix/store/hyv7mli1mwqhydds8c3sacm3w90za89w-dot-0.1.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3

------------------------------------------------------------------------
faad2-2.10.0

/nix/store/07gpwizgqhynj3vpcwxhjda14mma2da2-faad2-2.10.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-32273    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32274    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32277    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32278    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32276    5.5

------------------------------------------------------------------------
ffmpeg-4.4.1

/nix/store/y1nm04bqcsi2a2824ldg489nax55nvwv-ffmpeg-4.4.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38291    7.5

------------------------------------------------------------------------
fuse-3.10.5

/nix/store/87j5973pqm5w7wphxhbgd8gfq41y4hai-fuse-3.10.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5

------------------------------------------------------------------------
gcc-7.5.0

/nix/store/v5s0nmrfjy95g3h8mgg2ar7bnmbqsqdg-gcc-7.5.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-12886    8.1

------------------------------------------------------------------------
git-2.33.1

/nix/store/mdcsmbzn0m645bs3n2dnj4vz1s6jq5jz-git-2.33.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
glibc-2.33-47

/nix/store/56salrjfnszpv909b455f3r29shx3rpg-glibc-2.33-47.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
glibc-2.33-56

/nix/store/vp1svn2vvgxr8ldxs8yad8nlfjcblkf8-glibc-2.33-56.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
gmp-6.2.1

/nix/store/xk1m6jrzhwwd0n5g6ad381h8p0igz16l-gmp-6.2.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43618    7.5

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/5bl3rcp3kg5x77szjjimqlmyzwzjb770-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-34558    6.5

------------------------------------------------------------------------
go-1.16.9

/nix/store/jl84zgwccx933dlgbxswp3m7z2k0gxm6-go-1.16.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5

------------------------------------------------------------------------
home-0.5.3

/nix/store/rwir962j3vc2wg7613gnall8pkidam0r-home-0.5.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7

------------------------------------------------------------------------
hub-2.14.2

/nix/store/wlnl2ilfcvrpf7hmid317lpcif8920ww-hub-2.14.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36209    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-43183    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-43180    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43182    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37540    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37541    6.1
https://nvd.nist.gov/vuln/detail/CVE-2021-43181    6.1

------------------------------------------------------------------------
instant-0.1.12

/nix/store/49vq5kvcakf5cvh1k2i3x1jcd76kc9lb-instant-0.1.12.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9

------------------------------------------------------------------------
jose-0.8.4

/nix/store/6a7an4mk58ba9y1swd9sxj3l4ibh6vpl-jose-0.8.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
libarchive-3.5.1

/nix/store/57jwslnwmgzj8ja03c2k5w3cp986p4zh-libarchive-3.5.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
libarchive-3.5.2

/nix/store/gg9fz8yq437wj6gdn9wparjw7cg4mcwq-libarchive-3.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
libgcrypt-1.9.3

/nix/store/7lz17pw8qr82n9b4d9jrr5d9pykc3f4j-libgcrypt-1.9.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-40528    5.9

------------------------------------------------------------------------
libjxl-0.5

/nix/store/0zpsyx7w46bi630k339gbqmcsd0qbcm0-libjxl-0.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-22564    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22563    4.4

------------------------------------------------------------------------
live555-2019.11.22

/nix/store/98b0jrz9y23z4dawfb88aira69zd0x96-live555-2019.11.22.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38380    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-38381    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-38382    6.5

------------------------------------------------------------------------
lua-5.2.4

/nix/store/03if8j26l5kzvhvvlx162hajsqccqwgr-lua-5.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
lua-5.2.4-env

/nix/store/999ad7n0zamnw5nma2dzj4mm9gk40b6y-lua-5.2.4-env.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
lua-5.3.6

/nix/store/h2qbpqcckbf4bcb2qwb36dz8jdb9pazy-lua-5.3.6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
markdown-0.33-1.rockspec

/nix/store/3i5g75fg7j6ma7j6qpfwdma8i622vwl7-markdown-0.33-1.rockspec.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000874  6.1

------------------------------------------------------------------------
ncurses-6.2

/nix/store/rwxkx6wc3ak0ilyfqicvc7y0pqai4wbq-ncurses-6.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39537    8.8

------------------------------------------------------------------------
network-3.1.1.1

/nix/store/3378z555gnz98pvaz201z82hlrh45hf4-network-3.1.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
openexr-2.5.7

/nix/store/b5wi73pyb6zjkam4szwrai4vzfikdikz-openexr-2.5.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssl-1.1.1k

/nix/store/dgpqs9jin87mlrwmjdmvya33h20ij1vs-openssl-1.1.1k.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3711     9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3712     7.4

------------------------------------------------------------------------
openssl-1.1.1l

/nix/store/h6z7flqs63nrscld02advh50m1h6hivf-openssl-1.1.1l.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2016-7798     7.5

------------------------------------------------------------------------
openvpn-2.5.2

/nix/store/ibgfq82na0gfnprf6miidr398i10mkrk-openvpn-2.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7224     9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3606     7.8
https://nvd.nist.gov/vuln/detail/CVE-2020-27569    7.5

------------------------------------------------------------------------
qemu-6.1.0

/nix/store/3j2l82zyziwk3r3ikv4fhwl90z459y38-qemu-6.1.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3682     8.5

------------------------------------------------------------------------
quote-1.0.10

/nix/store/ls6mmxaj4gqlgdwqsi9f9aif3ppf69nf-quote-1.0.10.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
ruby-2.7.4

/nix/store/zqmrl6ypwypky0k7d97pz73jw9ap7q09-ruby-2.7.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28966    7.5

------------------------------------------------------------------------
safe-0.3.19

/nix/store/fsdnx3qr9ipn8z0gvinmfapb73f2najj-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
samba-4.15.1

/nix/store/lr9ybgxk2azpilpgisx16mfkljji9kdi-samba-4.15.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1057     8.8
https://nvd.nist.gov/vuln/detail/CVE-2018-1050     4.3

------------------------------------------------------------------------
shellcheck-0.7.2

/nix/store/m9rlxbnhhlpiy0l7r8bzrnxd7srnbwq6-shellcheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
sqlite-3.36.0

/nix/store/7rkqnihnicb37vr06a7ygqdv041ggzkl-sqlite-3.36.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36690    7.5

------------------------------------------------------------------------
subversion-1.14.1

/nix/store/xxqp1z830k8afhw65n8sbx78a34k34lm-subversion-1.14.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-21698    7.5
https://nvd.nist.gov/vuln/detail/CVE-2017-1000085  6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2304     6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2111     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000111  5.3

------------------------------------------------------------------------
tcl-8.6.11

/nix/store/wafmzm0agp1wxl3flnsgjzx09gy2gnzb-tcl-8.6.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35331    7.8

------------------------------------------------------------------------
util-linux-2.36.2

/nix/store/d4mphz2680fznzsqa0npidc6hzv1pam4-util-linux-2.36.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-37600    5.5

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/0mayhmmdiiwhixda63sgljvaapibbl7m-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vault-0.3.1.5-r1.cabal

/nix/store/swrw736ify2df3sdm7gd8pahxsa1913z-vault-0.3.1.5-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-8.2.3451

/nix/store/p3s8l35fmx0qrc6xd67i6myi30vsd7ii-vim-8.2.3451.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3968     8.0
https://nvd.nist.gov/vuln/detail/CVE-2021-3872     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3903     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3927     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3928     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3973     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3974     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3875     5.5

------------------------------------------------------------------------
xshell-0.1.17

/nix/store/a8cv14yx4dwpr7zjdjkk3a7dpqmbmi86-xshell-0.1.17.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-42095    7.5

use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 2 years ago

Report for `sloth`

Version changes:

Version 1 -> 2:
  direnv: 2.28.0 → 2.29.0
  nixos-system-sloth: 22.05.20211129.8a30877 → 22.05.20211130.29d1f6e
  rust-analyzer-nightly: ∅ → 2d0db31, +34197.7 KiB
  rust-analyzer-nightly-e217632: ε → ∅, -34104.6 KiB
  source: +21.6 KiB
  sumneko-lua-language-server: 2.4.7 → 2.5.1, +355.2 KiB

Security vulnerability report

53 derivations with active advisories
17 derivations left out due to whitelisting

------------------------------------------------------------------------
ShellCheck-0.7.2

/nix/store/7b1jvv7fv8xa6l5978ww3y0rf9rcblh2-ShellCheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
anymap-0.12.1

/nix/store/n1hkcnk52674crmksdj4v9ivss5qlf2h-anymap-0.12.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38187    9.8

------------------------------------------------------------------------
avahi-0.8

/nix/store/0yf9bglbzh9yfjb7mcd2srazyrkl51jp-avahi-0.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-26720    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3468     5.5

------------------------------------------------------------------------
bind-9.16.16

/nix/store/3sv6iymrx1b8j6v2vllw9lzcazzzhilz-bind-9.16.16.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25219    5.3

------------------------------------------------------------------------
binutils-2.35.1

/nix/store/4mvcc5iclfsaak0mxlcy5fqjh1r9glb6-binutils-2.35.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-20294    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3487     6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-20284    5.5

------------------------------------------------------------------------
c-ares-1.17.1

/nix/store/cnqjdkh2nph832lgjr8drsv48dqqpabd-c-ares-1.17.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3672     7.3

------------------------------------------------------------------------
cereal-0.5.8.2

/nix/store/fmhwsmq6ghk4mgns1gqa3lhajl6sdhbh-cereal-0.5.8.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8
https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3

------------------------------------------------------------------------
charset-0.3.9

/nix/store/yp99xd6a5l2kvhpzmkz7mvl8y3pjgddm-charset-0.3.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.1.1

/nix/store/gg836h7yd5wasi6kk92wz57f3h23x6qb-commonmark-0.2.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
cups-2.3.3op2

/nix/store/5m5qbds0v168nwg4jx4m8brj6pb2kqcc-cups-2.3.3op2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25317    3.3

------------------------------------------------------------------------
curl-7.76.1

/nix/store/j0lxa8v3ll2rc538phzk74p80bb4qywq-curl-7.76.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-22926    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22946    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22922    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22947    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-22923    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-22925    5.3

------------------------------------------------------------------------
djvulibre-3.5.28

/nix/store/w2r7vmkizc372inxzpz2lkasgcxwivq7-djvulibre-3.5.28.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3500     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32490    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32491    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32492    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-32493    7.8

------------------------------------------------------------------------
dot-0.1.4

/nix/store/hyv7mli1mwqhydds8c3sacm3w90za89w-dot-0.1.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3

------------------------------------------------------------------------
ffmpeg-4.4.1

/nix/store/y1nm04bqcsi2a2824ldg489nax55nvwv-ffmpeg-4.4.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38291    7.5

------------------------------------------------------------------------
fuse-3.10.5

/nix/store/87j5973pqm5w7wphxhbgd8gfq41y4hai-fuse-3.10.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5

------------------------------------------------------------------------
git-2.33.1

/nix/store/mdcsmbzn0m645bs3n2dnj4vz1s6jq5jz-git-2.33.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
glibc-2.33-47

/nix/store/56salrjfnszpv909b455f3r29shx3rpg-glibc-2.33-47.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
glibc-2.33-56

/nix/store/vp1svn2vvgxr8ldxs8yad8nlfjcblkf8-glibc-2.33-56.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38604    7.5

------------------------------------------------------------------------
gmp-6.2.1

/nix/store/xk1m6jrzhwwd0n5g6ad381h8p0igz16l-gmp-6.2.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43618    7.5

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/5bl3rcp3kg5x77szjjimqlmyzwzjb770-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-34558    6.5

------------------------------------------------------------------------
go-1.16.9

/nix/store/jl84zgwccx933dlgbxswp3m7z2k0gxm6-go-1.16.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29923    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5

------------------------------------------------------------------------
home-0.5.3

/nix/store/rwir962j3vc2wg7613gnall8pkidam0r-home-0.5.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7

------------------------------------------------------------------------
hub-2.14.2

/nix/store/wlnl2ilfcvrpf7hmid317lpcif8920ww-hub-2.14.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36209    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-43183    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-43180    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43182    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37540    6.5
https://nvd.nist.gov/vuln/detail/CVE-2021-37541    6.1
https://nvd.nist.gov/vuln/detail/CVE-2021-43181    6.1

------------------------------------------------------------------------
instant-0.1.12

/nix/store/49vq5kvcakf5cvh1k2i3x1jcd76kc9lb-instant-0.1.12.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9

------------------------------------------------------------------------
jose-0.8.4

/nix/store/6a7an4mk58ba9y1swd9sxj3l4ibh6vpl-jose-0.8.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
libarchive-3.5.1

/nix/store/57jwslnwmgzj8ja03c2k5w3cp986p4zh-libarchive-3.5.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
libarchive-3.5.2

/nix/store/gg9fz8yq437wj6gdn9wparjw7cg4mcwq-libarchive-3.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36976    6.5

------------------------------------------------------------------------
libgcrypt-1.9.3

/nix/store/7lz17pw8qr82n9b4d9jrr5d9pykc3f4j-libgcrypt-1.9.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-40528    5.9

------------------------------------------------------------------------
libjxl-0.5

/nix/store/0zpsyx7w46bi630k339gbqmcsd0qbcm0-libjxl-0.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-22564    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-22563    4.4

------------------------------------------------------------------------
lua-5.2.4

/nix/store/03if8j26l5kzvhvvlx162hajsqccqwgr-lua-5.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
lua-5.2.4-env

/nix/store/999ad7n0zamnw5nma2dzj4mm9gk40b6y-lua-5.2.4-env.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
lua-5.3.6

/nix/store/h2qbpqcckbf4bcb2qwb36dz8jdb9pazy-lua-5.3.6.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
markdown-0.33-1.rockspec

/nix/store/3i5g75fg7j6ma7j6qpfwdma8i622vwl7-markdown-0.33-1.rockspec.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000874  6.1

------------------------------------------------------------------------
ncurses-6.2

/nix/store/rwxkx6wc3ak0ilyfqicvc7y0pqai4wbq-ncurses-6.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-39537    8.8

------------------------------------------------------------------------
network-3.1.1.1

/nix/store/3378z555gnz98pvaz201z82hlrh45hf4-network-3.1.1.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
openexr-2.5.7

/nix/store/b5wi73pyb6zjkam4szwrai4vzfikdikz-openexr-2.5.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssl-1.1.1k

/nix/store/dgpqs9jin87mlrwmjdmvya33h20ij1vs-openssl-1.1.1k.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3711     9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3712     7.4

------------------------------------------------------------------------
openssl-1.1.1l

/nix/store/h6z7flqs63nrscld02advh50m1h6hivf-openssl-1.1.1l.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2016-7798     7.5

------------------------------------------------------------------------
openvpn-2.5.2

/nix/store/ibgfq82na0gfnprf6miidr398i10mkrk-openvpn-2.5.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7224     9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3606     7.8
https://nvd.nist.gov/vuln/detail/CVE-2020-27569    7.5

------------------------------------------------------------------------
qemu-6.1.0

/nix/store/3j2l82zyziwk3r3ikv4fhwl90z459y38-qemu-6.1.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3682     8.5

------------------------------------------------------------------------
quote-1.0.10

/nix/store/ls6mmxaj4gqlgdwqsi9f9aif3ppf69nf-quote-1.0.10.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
ruby-2.7.4

/nix/store/zqmrl6ypwypky0k7d97pz73jw9ap7q09-ruby-2.7.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28966    7.5

------------------------------------------------------------------------
safe-0.3.19

/nix/store/fsdnx3qr9ipn8z0gvinmfapb73f2najj-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
samba-4.15.1

/nix/store/lr9ybgxk2azpilpgisx16mfkljji9kdi-samba-4.15.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1057     8.8
https://nvd.nist.gov/vuln/detail/CVE-2018-1050     4.3

------------------------------------------------------------------------
shellcheck-0.7.2

/nix/store/m9rlxbnhhlpiy0l7r8bzrnxd7srnbwq6-shellcheck-0.7.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
sqlite-3.36.0

/nix/store/7rkqnihnicb37vr06a7ygqdv041ggzkl-sqlite-3.36.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-36690    7.5

------------------------------------------------------------------------
subversion-1.14.1

/nix/store/xxqp1z830k8afhw65n8sbx78a34k34lm-subversion-1.14.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-21698    7.5
https://nvd.nist.gov/vuln/detail/CVE-2017-1000085  6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2304     6.5
https://nvd.nist.gov/vuln/detail/CVE-2020-2111     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000111  5.3

------------------------------------------------------------------------
tcl-8.6.11

/nix/store/wafmzm0agp1wxl3flnsgjzx09gy2gnzb-tcl-8.6.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35331    7.8

------------------------------------------------------------------------
util-linux-2.36.2

/nix/store/d4mphz2680fznzsqa0npidc6hzv1pam4-util-linux-2.36.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-37600    5.5

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/0mayhmmdiiwhixda63sgljvaapibbl7m-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vault-0.3.1.5-r1.cabal

/nix/store/swrw736ify2df3sdm7gd8pahxsa1913z-vault-0.3.1.5-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-8.2.3451

/nix/store/p3s8l35fmx0qrc6xd67i6myi30vsd7ii-vim-8.2.3451.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3968     8.0
https://nvd.nist.gov/vuln/detail/CVE-2021-3872     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3903     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3927     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3928     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3973     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3974     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3875     5.5

------------------------------------------------------------------------
xshell-0.1.17

/nix/store/a8cv14yx4dwpr7zjdjkk3a7dpqmbmi86-xshell-0.1.17.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-42095    7.5

use --show-whitelisted to see derivations with only whitelisted CVEs

EdenEast / nyx

chore(flake): Automatic flake update #25

Report for `eden`

Report for `theman`

Report for `pride`

Report for `sloth`

EdenEast / nyx

chore(flake): Automatic flake update #25

Report for eden

Report for theman

Report for pride

Report for sloth

Report for `eden`

Report for `theman`

Report for `pride`

Report for `sloth`