chore(flake): Automatic flake update

EdenEast commented 2 years ago

Flake lock file changes:

Updated np: darwin ➡️ `` 'github:lnl7/nix-darwin/80871c71edb3da76d40bdff9cae007a2a035c074' (2022-08-16) → 'github:lnl7/nix-darwin/80cec5115aae74accc4ccfb9f84306d7863f0632' (2022-08-30)
Updated np: fenix ➡️ `` 'github:nix-community/fenix/dca822b67ddf0af52f9b63feaeefc1668c8635c0' (2022-08-19) → 'github:nix-community/fenix/e228867146581fa5e4be25dafc0dd68fdd22f0ad' (2022-09-03)
Updated np: fenix/rust-analyzer-src ➡️ `` 'github:rust-lang/rust-analyzer/917bd68b37de4e60e7203061a0a9c23b74d2b5c2' (2022-08-18) → 'github:rust-lang/rust-analyzer/93c52e41ec0d297c7512adf5936d8c464c820618' (2022-09-01)
Updated np: home-manager ➡️ `` 'github:nix-community/home-manager/688e5c85b7537f308b82167c8eb4ecfb70a49861' (2022-08-15) → 'github:nix-community/home-manager/5bd66dc6cd967033489c69d486402b75d338eeb6' (2022-08-30)
Updated np: neovim-flake ➡️ `` 'github:neovim/neovim/6b9852cc4188d9ca7bce8e7592dcfca38539c743?dir=contrib' (2022-08-21) → 'github:neovim/neovim/ea10e0c104897528a20bb1d9618e2b941eed1b3a?dir=contrib' (2022-09-04)
Updated np: nixpkgs ➡️ `` 'github:nixos/nixpkgs/495b19d5b3e62b4ec7e846bdfb6ef3d9c3b83492' (2022-08-19) → 'github:nixos/nixpkgs/2da64a81275b68fdad38af669afeda43d401e94b' (2022-09-01)
Updated np: nur ➡️ `` 'github:nix-community/nur/b0ebe831dd4add1ce7444f7ad94c55fdf8a215d9' (2022-08-21) → 'github:nix-community/nur/20470b157e40ff04fa22581bb90d45bc98f37f33' (2022-09-04)
Updated np: nushell-src ➡️ `` 'github:nushell/nushell/37bc90c62a75c906edfe5f7373a68850b9c9124c' (2022-08-21) → 'github:nushell/nushell/e81689f2c0ca8e1d2e3b208cfcb4418692acea80' (2022-09-03)

github-actions[bot] commented 2 years ago

Report for `sloth`

Version changes:

Version 1 -> 2:
  alacritty: +43.2 KiB
  aws-c-auth: 0.6.13 → 0.6.14
  aws-c-cal: 0.5.17 → 0.5.18
  aws-c-common: 0.7.0 → 0.7.4
  aws-c-compression: 0.2.14 → 0.2.15
  aws-c-event-stream: 0.2.7 → 0.2.12, +10.0 KiB
  aws-c-http: 0.6.15 → 0.6.19, +21.3 KiB
  aws-c-io: 0.11.0 → 0.11.2
  aws-c-mqtt: 0.7.10 → 0.7.11
  aws-c-s3: 0.1.39 → 0.1.43, +20.0 KiB
  aws-c-sdkutils: 0.1.2 → 0.1.3
  aws-checksums: 0.1.12 → 0.1.13
  aws-crt-cpp: 0.17.28 → 0.17.32
  aws-sdk-cpp: 1.9.238 → 1.9.294, +122.9 KiB
  bash-language-server: 3.0.5 → 3.1.0
  bind: 9.18.5 → 9.18.6, +8.4 KiB
  bottom: -8.1 KiB
  brotli: -895.7 KiB
  btrfs-progs: 5.18.1 → 5.19, +9.0 KiB
  cifs-utils: 6.15 → 7.0
  clang: 13.0.1 → 14.0.6, +26164.8 KiB
  cryptsetup: 2.4.3 → 2.5.0, +48.2 KiB
  cups-filters: 1.28.12 → 1.28.15
  darkreader: 4.9.56 → 4.9.57
  delta: 0.13.0 → 0.14.0, -20.1 KiB
  eslint_d: -37.7 KiB
  exa: -33.0 KiB
  extra: ε → ∅, -22228.7 KiB
  fc: +66.0 KiB
  firefox: 103.0.2 → 104.0.1, +10.5 KiB
  firefox-unwrapped: 103.0.2 → 104.0.1, +1168.2 KiB
  fzf: 0.32.1 → 0.33.0
  game-music-emu: ∅ → 0.6.3, +4435.9 KiB
  gcc: -3598.7 KiB
  gfortran: -1374.1 KiB
  gh: 2.14.4 → 2.14.7, +34.9 KiB
  git: 2.37.1 → 2.37.2, -26.9 KiB
  glib: -22.8 KiB
  glibc: -2403.6 KiB
  gnumake: -11.8 KiB
  gnutls: 3.7.6 → 3.7.7
  gperftools: 2.9.1 → 2.10
  gsm: 1.0.19 → 1.0.20
  gst-plugins-bad: 1.20.1 → 1.20.3
  gst-plugins-base: 1.20.1 → 1.20.3
  gst-plugins-good: 1.20.1 → 1.20.3
  gstreamer: 1.20.1 → 1.20.3
  harfbuzz: 5.0.1 → 5.1.0, +23.3 KiB
  home-manager: -9.7 KiB
  ilmbase: 2.5.7 → 2.5.8
  initrd: ε → ∅
  initrd-kmod-blacklist: ε → ∅
  initrd-linux: 5.15.61 → 5.15.63, +740.4 KiB
  iproute2: 5.18.0 → 5.19.0, +23.2 KiB
  iso-codes: 4.9.0 → 4.11.0, -13.9 KiB
  keymap: ε → ∅
  lesspipe: 2.05 → 2.06
  libapparmor: 3.0.4 → 3.0.7
  libevdev: 1.12.1 → 1.13.0
  libgme: 0.6.3 → ∅, -409.6 KiB
  libgpg-error: 1.42 → 1.45, +51.9 KiB
  libhwy: 0.15.0 → ∅, -1282.2 KiB
  libidn: 1.38 → 1.41, +22.6 KiB
  libjpeg-turbo: 2.1.3 → 2.1.4
  libjxl: -112.7 KiB
  libnftnl: 1.2.2 → 1.2.3
  libpulseaudio: 15.0 → 16.1, +5531.2 KiB
  librsvg: -84.7 KiB
  libtirpc: 1.2.7-rc4 → 1.3.3
  liburing: -87.2 KiB
  libvpx: 1.11.0 → 1.12.0, -85.6 KiB
  libwebp: 1.2.3 → 1.2.4
  linux: 5.15.61, 5.15.61-modules → 5.15.63, 5.15.63-modules, -38.4 KiB
  linux-headers: -6074.4 KiB
  lldb: 13.0.1 → 14.0.6, -56343.3 KiB
  llvm: 13.0.1 → 14.0.6, +28217.0 KiB
  lua: -67.7 KiB
  mdadm.conf: ε → ∅
  mesa: 22.1.4 → 22.1.6, -11.5 KiB
  neovim-unwrapped: +108.5 KiB
  nerdfonts: 2.1.0 → 2.2.1, +45643.9 KiB
  nfs-utils: 2.5.1 → 2.6.2, +125.8 KiB
  nftables: 1.0.4 → 1.0.5
  nix: 2.10.3 → 2.11.0, -520.3 KiB
  nixos: +42.0 KiB
  nixos-manual: +119.2 KiB
  nixos-system-sloth: 22.11.20220819.495b19d → 22.11.20220901.2da64a8
  nixpkgs-fmt: -12.8 KiB
  nodejs: 16.17.0 → 18.8.0, +3523.8 KiB
  nushell: +128.2 KiB
  openexr: 2.5.7 → 2.5.8
  openfortivpn: 1.17.2 → 1.17.3
  pciutils: 3.7.0 → 3.8.0, +11.6 KiB
  postgresql: 14.4 → 14.5, -277.1 KiB
  procs: -32.4 KiB
  pulseaudio: 15.0 → 16.1, +129.2 KiB
  pyright: 1.1.265 → 1.1.268, +35.3 KiB
  python3: -335.0 KiB
  qpdf: 10.6.2 → 10.6.3
  rav1e: +264.3 KiB
  ripgrep: -42.6 KiB
  rofi: 1.7.4 → 1.7.5, -45.2 KiB
  rofi-unwrapped: 1.7.4 → 1.7.5
  rtmpdump-unstable: -286.3 KiB
  s2n-tls: 1.3.12 → 1.3.20, -339.1 KiB
  slang: 2.3.2 → 2.3.3, +396.0 KiB
  source: +2151.4 KiB
  speexdsp: 1.2.0 → 1.2.1
  stage: 1-init.sh → ∅, -19.7 KiB
  starship: -24.0 KiB
  stdman: 2021.12.21 → 2022.07.30, +225.1 KiB
  stylua: 0.14.2 → 0.14.3, -24.7 KiB
  systemd: 251.3 → 251.4, +127.9 KiB
  systemd-minimal: 251.3 → 251.4
  tree-sitter: -30.3 KiB
  tree-sitter-cpp-grammar: +212.0 KiB
  tree-sitter-javascript-grammar: +26.0 KiB
  tree-sitter-rust-grammar: +8.1 KiB
  tree-sitter-vim-grammar: +44.3 KiB
  tree-sitter-viml: 2d75bf3 → ∅, -4546.7 KiB
  tree-sitter-viml-d38ee3b: ∅ → ε, +4854.8 KiB
  typescript: 4.7.4 → 4.8.2, +1553.5 KiB
  typescript-language-server: 0.11.2 → 1.1.2, -282.1 KiB
  tzdata: 2022a → 2022b
  udev: -34.5 KiB
  unit-run-initramfs.mount: ∅ → ε
  unit-script-generate-shutdown-ramfs: ε → ∅
  vim: 9.0.0135 → 9.0.0180
  viu: -22.3 KiB
  vulkan-loader: 1.3.211.0 → 1.3.216.0, +12.2 KiB
  wezterm: -619.6 KiB
  xsv: -20.6 KiB
  zellij: 0.31.2 → 0.31.3, -84.0 KiB

Security vulnerability report

47 derivations with active advisories
22 derivations left out due to whitelisting

------------------------------------------------------------------------
Nuget-5.6.0.6489

/nix/store/nc45mkbksl4sdg7bb06s5z9pyl9pzgi3-Nuget-5.6.0.6489.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-30184    5.5

------------------------------------------------------------------------
ShellCheck-0.8.0

/nix/store/c9ya7qxkmy7mian9id9ccjm4yl89msk4-ShellCheck-0.8.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
ShellCheck-0.8.0-r1.cabal

/nix/store/irfpvhh5byrml7iff9qdbm2k7dhw6lah-ShellCheck-0.8.0-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
async-2.2.4

/nix/store/x132mw211x5hy1hxcqi2hvmyk1fsgv1g-async-2.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8

------------------------------------------------------------------------
async-2.2.4-r2.cabal

/nix/store/82l989ba5hnmc4bgi3wz05rgm4j79fpz-async-2.2.4-r2.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8

------------------------------------------------------------------------
binutils-2.38

/nix/store/00gclwh6mn9f113ll9k6z1wksmsbml63-binutils-2.38.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-38533    5.5

------------------------------------------------------------------------
binutils-2.38

/nix/store/9h198nzlqqxi1mgxq29x7mm69a87bdv1-binutils-2.38.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-38533    5.5

------------------------------------------------------------------------
cereal-0.5.8.3

/nix/store/g0i49y3npm5njjqhrazd7k6ycvqan1ph-cereal-0.5.8.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8
https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3

------------------------------------------------------------------------
charset-0.3.9

/nix/store/y7dxa5rq31l68gn3zw7dgqbqyaxkp1hw-charset-0.3.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.2

/nix/store/ac5bhymip7x649g7596lb1a1n1qpfdnh-commonmark-0.2.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
cups-2.4.2

/nix/store/905sr4yxcbl1j9ann759xy9x23clxgry-cups-2.4.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-26691    6.7

------------------------------------------------------------------------
ffmpeg-4.4.2

/nix/store/slbbl0rvf8lqamfajrx236532n611sxl-ffmpeg-4.4.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38291    7.5

------------------------------------------------------------------------
fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9

/nix/store/ywxx91qy0m78vgnhawkwn3c5xk3xwsng-fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5
https://nvd.nist.gov/vuln/detail/CVE-2019-14900    6.5

------------------------------------------------------------------------
fuse-3.11.0

/nix/store/l6i6fvs3971hrbfgmr5y830hwbn7dnbg-fuse-3.11.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5
https://nvd.nist.gov/vuln/detail/CVE-2019-14900    6.5

------------------------------------------------------------------------
git-2.37.2

/nix/store/bmmqj7jfb1v9w8hk5bcjxxc7cs3zjcmm-git-2.37.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-36882    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-30947    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30948    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-36883    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-38663    6.5
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2022-30949    5.3
https://nvd.nist.gov/vuln/detail/CVE-2022-36884    5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/p90q0ghk3ybym36s7g4ll6d4dn28xf3d-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8
https://nvd.nist.gov/vuln/detail/CVE-2022-23806    9.1
https://nvd.nist.gov/vuln/detail/CVE-2022-30580    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-39293    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-44716    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-23772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-23773    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-24675    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-24921    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-28131    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-28327    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-29804    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30630    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30631    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30632    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30633    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30634    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30635    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32189    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-1705     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32148    6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-1962     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-29526    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-44717    4.8
https://nvd.nist.gov/vuln/detail/CVE-2022-30629    3.1

------------------------------------------------------------------------
http-client-0.7.13.1

/nix/store/bli32l2y173x1b7bip20kpnwa0lmd609-http-client-0.7.13.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11021    7.5

------------------------------------------------------------------------
jose-0.9

/nix/store/5gyznvrm9f1m6if588r3snvns61d61x5-jose-0.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
lens-5.0.1

/nix/store/5aamma3sxp6aqcb54y8rzl7dfxh0j2xp-lens-5.0.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6
https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8

------------------------------------------------------------------------
lens-5.0.1-r3.cabal

/nix/store/p44nksrw2v2f1zxgcbg582mp6ac4gx7c-lens-5.0.1-r3.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6
https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8

------------------------------------------------------------------------
libjxl-0.6.1

/nix/store/lraxa7la0ypimfjfv22466178nkddpnj-libjxl-0.6.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-34000    6.5

------------------------------------------------------------------------
libmpeg2-0.5.1

/nix/store/h4bdadx6vxsyzn8mq3r0bhj2150jf1wc-libmpeg2-0.5.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-37416    6.5

------------------------------------------------------------------------
libtiff-4.4.0

/nix/store/pnqswpyvi1afskl03y2l502dakd4wlnn-libtiff-4.4.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2056     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2057     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2058     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2953     5.5

------------------------------------------------------------------------
libtirpc-1.3.3

/nix/store/3rsqarcjv7jyx4ls4yjbfb0nlkrpc11x-libtirpc-1.3.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-46828    7.5

------------------------------------------------------------------------
lua-2.1.0

/nix/store/82qxm1aidjszx4g8mf461b0b7vwn3j6h-lua-2.1.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
lua-5.2.4-env

/nix/store/8d50329k92gc7hd6a0wl6x5v9adlnd4d-lua-5.2.4-env.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
markdown-0.33-1.rockspec

/nix/store/li4zms2fzjmr5js1bixn9r1clb20drml-markdown-0.33-1.rockspec.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000874  6.1

------------------------------------------------------------------------
network-3.1.2.7

/nix/store/f91hwnvscswg8cj3ayip1qinxy341vc4-network-3.1.2.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24388    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24389    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24390    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24391    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24392    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24393    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24394    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-0486     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-0997     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
nss-3.68.4

/nix/store/dmqcvs2a6y1y6q4sbfj62ndi81r2c09n-nss-3.68.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43527    9.8

------------------------------------------------------------------------
openexr-2.5.8

/nix/store/a5q0aaimfq0849ax3yayd4755lv1npyz-openexr-2.5.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3933     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssl-1.1.1q

/nix/store/7lfnfqvfc6rn8ys9qhd7nl2c5kbq9cf4-openssl-1.1.1q.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8

------------------------------------------------------------------------
qemu-7.0.0

/nix/store/sg34ywxfg375f3p8fh0k4bf6ymv07fdr-qemu-7.0.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3929     8.2
https://nvd.nist.gov/vuln/detail/CVE-2021-4158     6.0

------------------------------------------------------------------------
quote-1.0.20

/nix/store/bnpj6w588dd6kdx55hmfrz4ak5kfnqva-quote-1.0.20.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
rsync-3.2.4

/nix/store/6mw8xyc6m5xbvas6mxq1828b2am68n4b-rsync-3.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-29154    7.4

------------------------------------------------------------------------
safe-0.3.19

/nix/store/wqjjxlbmk9635946n4rf6qpfy7va5123-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-28872    8.8
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-44751    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-40834    4.3
https://nvd.nist.gov/vuln/detail/CVE-2021-40835    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28868    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28869    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28870    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28873    4.3
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
samba-4.15.5

/nix/store/7pnfq59jfswwqvsc37gwa4bpj9jqbw53-samba-4.15.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2031     8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-32744    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-32745    8.1
https://nvd.nist.gov/vuln/detail/CVE-2021-3670     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32746    5.4
https://nvd.nist.gov/vuln/detail/CVE-2022-32742    4.3

------------------------------------------------------------------------
systemd-2.3.0

/nix/store/89k391k71mipvr0jm7rw2j0z1r3jy2wh-systemd-2.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-1000082  9.8
https://nvd.nist.gov/vuln/detail/CVE-2018-15688    8.8
https://nvd.nist.gov/vuln/detail/CVE-2017-18078    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-6954     7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-15686    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-16864    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-16865    7.8
https://nvd.nist.gov/vuln/detail/CVE-2019-3843     7.8
https://nvd.nist.gov/vuln/detail/CVE-2019-3844     7.8
https://nvd.nist.gov/vuln/detail/CVE-2020-1712     7.8
https://nvd.nist.gov/vuln/detail/CVE-2017-9217     7.5
https://nvd.nist.gov/vuln/detail/CVE-2018-15687    7.0
https://nvd.nist.gov/vuln/detail/CVE-2019-3842     7.0
https://nvd.nist.gov/vuln/detail/CVE-2020-13776    6.7
https://nvd.nist.gov/vuln/detail/CVE-2018-1049     5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-3997     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33910    5.5
https://nvd.nist.gov/vuln/detail/CVE-2018-16888    4.7
https://nvd.nist.gov/vuln/detail/CVE-2019-20386    2.4

------------------------------------------------------------------------
unzip-6.0

/nix/store/qgiggl8c391dfbk34xyhmd6ildmsqzzm-unzip-6.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-4217     7.8

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/p0lsa1gkib2zlbn9yk4z27h6mdhzm2p3-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vault-0.3.1.5-r2.cabal

/nix/store/9hmqdb6g1qldbsqgdqsqxcin6nq39vqy-vault-0.3.1.5-r2.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-9.0.0180

/nix/store/kdwxs93gj0k69d56skw4x9z3nyan4sgw-vim-9.0.0180.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2816     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2817     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2819     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2845     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2849     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2862     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2889     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2946     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2982     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-3016     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-3037     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2874     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2923     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2980     5.5

------------------------------------------------------------------------
warp-3.3.21

/nix/store/zlk8lim2zrafrpzx1x46kgxlw3f3s7v6-warp-3.3.21.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2145     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2225     7.8

------------------------------------------------------------------------
wavpack-5.4.0

/nix/store/54nfrz8x0jj2rdc33xckmq5hyld5lhir-wavpack-5.4.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2476     5.5

------------------------------------------------------------------------
websockets-0.12.7.3

/nix/store/maz6fvzrzn9rigsrqjscm6klysgzv5bp-websockets-0.12.7.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33880    5.9

------------------------------------------------------------------------
websockets-0.12.7.3-r1.cabal

/nix/store/ay18n2kjhazi62khzl704cmjkq6g8yz8-websockets-0.12.7.3-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33880    5.9

------------------------------------------------------------------------
yasm-1.3.0

/nix/store/4avps4n8k77hgx1lpzch51g6azd3nnj2-yasm-1.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33454    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33455    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33456    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33457    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33458    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33459    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33460    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33461    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33462    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33463    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33464    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33465    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33466    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33467    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33468    5.5

------------------------------------------------------------------------
zlib-0.6.3.0

/nix/store/581y208szgg1s42697499wqz7p1rk6qj-zlib-0.6.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-37434    9.8
https://nvd.nist.gov/vuln/detail/CVE-2018-25032    7.5

use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 2 years ago

Report for `eden`

Version changes:

Version 1 -> 2:
  aws-c-auth: 0.6.13 → 0.6.14
  aws-c-cal: 0.5.17 → 0.5.18
  aws-c-common: 0.7.0 → 0.7.4
  aws-c-compression: 0.2.14 → 0.2.15
  aws-c-event-stream: 0.2.7 → 0.2.12, +10.0 KiB
  aws-c-http: 0.6.15 → 0.6.19, +21.3 KiB
  aws-c-io: 0.11.0 → 0.11.2
  aws-c-mqtt: 0.7.10 → 0.7.11
  aws-c-s3: 0.1.39 → 0.1.43, +20.0 KiB
  aws-c-sdkutils: 0.1.2 → 0.1.3
  aws-checksums: 0.1.12 → 0.1.13
  aws-crt-cpp: 0.17.28 → 0.17.32
  aws-sdk-cpp: 1.9.238 → 1.9.294, +122.9 KiB
  bash-language-server: 3.0.5 → 3.1.0
  bottom: -8.1 KiB
  clang: 13.0.1 → 14.0.6, +29927.1 KiB
  clang-tools: 13.0.1 → 14.0.6
  clang-wrapper: 13.0.1 → 14.0.6
  compiler-rt-libc: 13.0.1 → 14.0.6, +222.1 KiB
  cryptsetup: 2.4.3 → 2.5.0, +48.2 KiB
  delta: 0.13.0 → 0.14.0, -20.1 KiB
  eslint_d: -37.7 KiB
  exa: -33.0 KiB
  fzf: 0.32.1 → 0.33.0
  gcc: -3021.6 KiB
  gh: 2.14.4 → 2.14.7, +34.9 KiB
  git: 2.37.1 → 2.37.2, -26.9 KiB
  glib: -11.4 KiB
  glibc: -98.1 KiB
  gnumake: -11.8 KiB
  gnutls: 3.7.6 → 3.7.7
  home-manager: -9.2 KiB
  libapparmor: 3.0.4 → 3.0.7
  libgpg-error: 1.42 → 1.45, +51.9 KiB
  libjpeg-turbo: 2.1.3 → 2.1.4
  libnftnl: 1.2.2 → 1.2.3
  libwebp: 1.2.3 → 1.2.4
  lldb: 13.0.1 → 14.0.6, -56343.3 KiB
  llvm: 13.0.1 → 14.0.6, +28217.0 KiB
  neovim-unwrapped: +108.5 KiB
  ninja: 1.10.2 → 1.11.0, +71.5 KiB
  nix: 2.10.3 → 2.11.0, +71.0 KiB
  nixpkgs-fmt: -12.8 KiB
  nodejs: 16.17.0 → 18.8.0, +3523.8 KiB
  nushell: +128.2 KiB
  pciutils: 3.7.0 → 3.8.0, +11.6 KiB
  procs: -32.4 KiB
  pyright: 1.1.265 → 1.1.268, +35.3 KiB
  python3: -18.8 KiB
  ripgrep: -42.6 KiB
  rust-analyzer-nightly: 917bd68 → 93c52e4, +137.1 KiB
  s2n-tls: 1.3.12 → 1.3.20, -339.1 KiB
  sccache: -194.5 KiB
  source: +2151.4 KiB
  starship: -24.0 KiB
  stdman: 2021.12.21 → 2022.07.30, +225.1 KiB
  stylua: 0.14.2 → 0.14.3, -24.7 KiB
  systemd: 251.3 → 251.4, +120.2 KiB
  systemd-minimal: 251.3 → 251.4
  tree-sitter: -30.3 KiB
  tree-sitter-cpp-grammar: +212.0 KiB
  tree-sitter-javascript-grammar: +26.0 KiB
  tree-sitter-rust-grammar: +8.1 KiB
  tree-sitter-vim-grammar: +44.3 KiB
  tree-sitter-viml: 2d75bf3 → ∅, -4546.7 KiB
  tree-sitter-viml-d38ee3b: ∅ → ε, +4854.8 KiB
  typescript: 4.7.4 → 4.8.2, +1553.5 KiB
  typescript-language-server: 0.11.2 → 1.1.2, -282.1 KiB
  tzdata: 2022a → 2022b
  vim: 9.0.0135 → 9.0.0180
  viu: -22.3 KiB
  xsv: -20.6 KiB
  zellij: 0.31.2 → 0.31.3, -84.0 KiB

Security vulnerability report

46 derivations with active advisories
15 derivations left out due to whitelisting

------------------------------------------------------------------------
Nuget-5.6.0.6489

/nix/store/nc45mkbksl4sdg7bb06s5z9pyl9pzgi3-Nuget-5.6.0.6489.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-30184    5.5

------------------------------------------------------------------------
ShellCheck-0.8.0

/nix/store/c9ya7qxkmy7mian9id9ccjm4yl89msk4-ShellCheck-0.8.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
ShellCheck-0.8.0-r1.cabal

/nix/store/irfpvhh5byrml7iff9qdbm2k7dhw6lah-ShellCheck-0.8.0-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
async-2.2.4

/nix/store/x132mw211x5hy1hxcqi2hvmyk1fsgv1g-async-2.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8

------------------------------------------------------------------------
async-2.2.4-r2.cabal

/nix/store/82l989ba5hnmc4bgi3wz05rgm4j79fpz-async-2.2.4-r2.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8

------------------------------------------------------------------------
binutils-2.38

/nix/store/9h198nzlqqxi1mgxq29x7mm69a87bdv1-binutils-2.38.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-38533    5.5

------------------------------------------------------------------------
binutils-2.38

/nix/store/00gclwh6mn9f113ll9k6z1wksmsbml63-binutils-2.38.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-38533    5.5

------------------------------------------------------------------------
cereal-0.5.8.3

/nix/store/g0i49y3npm5njjqhrazd7k6ycvqan1ph-cereal-0.5.8.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8
https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3

------------------------------------------------------------------------
charset-0.3.9

/nix/store/y7dxa5rq31l68gn3zw7dgqbqyaxkp1hw-charset-0.3.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.2

/nix/store/ac5bhymip7x649g7596lb1a1n1qpfdnh-commonmark-0.2.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
cups-2.4.2

/nix/store/905sr4yxcbl1j9ann759xy9x23clxgry-cups-2.4.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-26691    6.7

------------------------------------------------------------------------
dot-0.1.4

/nix/store/h2wmzb0y940nclj98lq3xsjdz7ylj96d-dot-0.1.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3

------------------------------------------------------------------------
fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9

/nix/store/ywxx91qy0m78vgnhawkwn3c5xk3xwsng-fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5
https://nvd.nist.gov/vuln/detail/CVE-2019-14900    6.5

------------------------------------------------------------------------
fuse-3.11.0

/nix/store/l6i6fvs3971hrbfgmr5y830hwbn7dnbg-fuse-3.11.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5
https://nvd.nist.gov/vuln/detail/CVE-2019-14900    6.5

------------------------------------------------------------------------
git-2.37.2

/nix/store/bmmqj7jfb1v9w8hk5bcjxxc7cs3zjcmm-git-2.37.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-36882    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-30947    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30948    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-36883    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-38663    6.5
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2022-30949    5.3
https://nvd.nist.gov/vuln/detail/CVE-2022-36884    5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/p90q0ghk3ybym36s7g4ll6d4dn28xf3d-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8
https://nvd.nist.gov/vuln/detail/CVE-2022-23806    9.1
https://nvd.nist.gov/vuln/detail/CVE-2022-30580    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-39293    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-44716    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-23772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-23773    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-24675    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-24921    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-28131    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-28327    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-29804    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30630    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30631    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30632    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30633    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30634    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30635    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32189    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-1705     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32148    6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-1962     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-29526    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-44717    4.8
https://nvd.nist.gov/vuln/detail/CVE-2022-30629    3.1

------------------------------------------------------------------------
home-0.5.3

/nix/store/x4bcj1jv56ph6vvqq232hdlidnjf2k18-home-0.5.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7

------------------------------------------------------------------------
http-client-0.7.13.1

/nix/store/bli32l2y173x1b7bip20kpnwa0lmd609-http-client-0.7.13.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11021    7.5

------------------------------------------------------------------------
instant-0.1.12

/nix/store/384k3i2jha0raqy94gx9hafxy8rdq6c9-instant-0.1.12.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9

------------------------------------------------------------------------
jose-0.9

/nix/store/5gyznvrm9f1m6if588r3snvns61d61x5-jose-0.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
lens-5.0.1

/nix/store/5aamma3sxp6aqcb54y8rzl7dfxh0j2xp-lens-5.0.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6
https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8

------------------------------------------------------------------------
lens-5.0.1-r3.cabal

/nix/store/p44nksrw2v2f1zxgcbg582mp6ac4gx7c-lens-5.0.1-r3.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6
https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8

------------------------------------------------------------------------
libjxl-0.6.1

/nix/store/lraxa7la0ypimfjfv22466178nkddpnj-libjxl-0.6.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-34000    6.5

------------------------------------------------------------------------
libtiff-4.4.0

/nix/store/pnqswpyvi1afskl03y2l502dakd4wlnn-libtiff-4.4.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2056     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2057     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2058     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2953     5.5

------------------------------------------------------------------------
lua-2.1.0

/nix/store/82qxm1aidjszx4g8mf461b0b7vwn3j6h-lua-2.1.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
network-3.1.2.7

/nix/store/f91hwnvscswg8cj3ayip1qinxy341vc4-network-3.1.2.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24388    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24389    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24390    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24391    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24392    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24393    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24394    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-0486     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-0997     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
openexr-2.5.8

/nix/store/a5q0aaimfq0849ax3yayd4755lv1npyz-openexr-2.5.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3933     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssl-0.10.30

/nix/store/jddxgpnsn71ymbphf1j242gv7xwcxc26-openssl-0.10.30.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-4044     7.5

------------------------------------------------------------------------
openssl-1.1.1q

/nix/store/7lfnfqvfc6rn8ys9qhd7nl2c5kbq9cf4-openssl-1.1.1q.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8

------------------------------------------------------------------------
quote-1.0.7

/nix/store/vzsl5zay0hxpf4pwljpln138xwhji778-quote-1.0.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
quote-1.0.21

/nix/store/9sdb5q25g135szjygw23pr0y160zbna4-quote-1.0.21.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
regex-1.4.5

/nix/store/c15qgajkkm901al2vnngf7wxdfwb6ca5-regex-1.4.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-24713    7.5

------------------------------------------------------------------------
repo-0.1.3

/nix/store/gqj221mb1h0fgc8fvjzlsbhj9l3b0i1v-repo-0.1.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-30947    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30948    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30949    5.3

------------------------------------------------------------------------
rsync-3.2.4

/nix/store/6mw8xyc6m5xbvas6mxq1828b2am68n4b-rsync-3.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-29154    7.4

------------------------------------------------------------------------
safe-0.3.19

/nix/store/wqjjxlbmk9635946n4rf6qpfy7va5123-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-28872    8.8
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-44751    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-40834    4.3
https://nvd.nist.gov/vuln/detail/CVE-2021-40835    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28868    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28869    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28870    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28873    4.3
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
systemd-2.3.0

/nix/store/89k391k71mipvr0jm7rw2j0z1r3jy2wh-systemd-2.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-1000082  9.8
https://nvd.nist.gov/vuln/detail/CVE-2018-15688    8.8
https://nvd.nist.gov/vuln/detail/CVE-2017-18078    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-6954     7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-15686    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-16864    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-16865    7.8
https://nvd.nist.gov/vuln/detail/CVE-2019-3843     7.8
https://nvd.nist.gov/vuln/detail/CVE-2019-3844     7.8
https://nvd.nist.gov/vuln/detail/CVE-2020-1712     7.8
https://nvd.nist.gov/vuln/detail/CVE-2017-9217     7.5
https://nvd.nist.gov/vuln/detail/CVE-2018-15687    7.0
https://nvd.nist.gov/vuln/detail/CVE-2019-3842     7.0
https://nvd.nist.gov/vuln/detail/CVE-2020-13776    6.7
https://nvd.nist.gov/vuln/detail/CVE-2018-1049     5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-3997     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33910    5.5
https://nvd.nist.gov/vuln/detail/CVE-2018-16888    4.7
https://nvd.nist.gov/vuln/detail/CVE-2019-20386    2.4

------------------------------------------------------------------------
unzip-6.0

/nix/store/qgiggl8c391dfbk34xyhmd6ildmsqzzm-unzip-6.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-4217     7.8

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/p0lsa1gkib2zlbn9yk4z27h6mdhzm2p3-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vault-0.3.1.5-r2.cabal

/nix/store/9hmqdb6g1qldbsqgdqsqxcin6nq39vqy-vault-0.3.1.5-r2.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-9.0.0180

/nix/store/kdwxs93gj0k69d56skw4x9z3nyan4sgw-vim-9.0.0180.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2816     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2817     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2819     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2845     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2849     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2862     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2889     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2946     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2982     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-3016     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-3037     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2874     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2923     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2980     5.5

------------------------------------------------------------------------
warp-3.3.21

/nix/store/zlk8lim2zrafrpzx1x46kgxlw3f3s7v6-warp-3.3.21.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2145     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2225     7.8

------------------------------------------------------------------------
websockets-0.12.7.3

/nix/store/maz6fvzrzn9rigsrqjscm6klysgzv5bp-websockets-0.12.7.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33880    5.9

------------------------------------------------------------------------
websockets-0.12.7.3-r1.cabal

/nix/store/ay18n2kjhazi62khzl704cmjkq6g8yz8-websockets-0.12.7.3-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33880    5.9

------------------------------------------------------------------------
xshell-0.2.2

/nix/store/sc73j0qb0b99zhk9hcdjb20jky9hsjia-xshell-0.2.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-42095    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-27966    6.5

------------------------------------------------------------------------
yasm-1.3.0

/nix/store/4avps4n8k77hgx1lpzch51g6azd3nnj2-yasm-1.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33454    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33455    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33456    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33457    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33458    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33459    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33460    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33461    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33462    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33463    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33464    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33465    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33466    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33467    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33468    5.5

------------------------------------------------------------------------
zlib-0.6.3.0

/nix/store/581y208szgg1s42697499wqz7p1rk6qj-zlib-0.6.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-37434    9.8
https://nvd.nist.gov/vuln/detail/CVE-2018-25032    7.5

use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 2 years ago

Report for `pride`

Version changes:

Version 1 -> 2:
  alacritty: +43.2 KiB
  aws-c-auth: 0.6.13 → 0.6.14
  aws-c-cal: 0.5.17 → 0.5.18
  aws-c-common: 0.7.0 → 0.7.4
  aws-c-compression: 0.2.14 → 0.2.15
  aws-c-event-stream: 0.2.7 → 0.2.12, +10.0 KiB
  aws-c-http: 0.6.15 → 0.6.19, +21.3 KiB
  aws-c-io: 0.11.0 → 0.11.2
  aws-c-mqtt: 0.7.10 → 0.7.11
  aws-c-s3: 0.1.39 → 0.1.43, +20.0 KiB
  aws-c-sdkutils: 0.1.2 → 0.1.3
  aws-checksums: 0.1.12 → 0.1.13
  aws-crt-cpp: 0.17.28 → 0.17.32
  aws-sdk-cpp: 1.9.238 → 1.9.294, +122.9 KiB
  bash-language-server: 3.0.5 → 3.1.0
  bind: 9.18.5 → 9.18.6, +8.4 KiB
  blueman: -180.3 KiB
  bottom: -8.1 KiB
  brotli: -1760.2 KiB
  btrfs-progs: 5.18.1 → 5.19, +9.0 KiB
  cifs-utils: 6.15 → 7.0
  clang: 13.0.1 → 14.0.6, +29927.1 KiB
  clang-tools: 13.0.1 → 14.0.6
  clang-wrapper: 13.0.1 → 14.0.6
  compiler-rt-libc: 13.0.1 → 14.0.6, +222.1 KiB
  cpupower: 5.19.1 → 5.19.4
  cryptsetup: 2.4.3 → 2.5.0, +103.9 KiB
  cups-filters: 1.28.12 → 1.28.15
  darkreader: 4.9.56 → 4.9.57
  delta: 0.13.0 → 0.14.0, -20.1 KiB
  eslint_d: -37.7 KiB
  exa: -33.0 KiB
  extra: ∅ → ε, +22232.7 KiB
  fc: +66.0 KiB
  ffmpeg-full: +104.6 KiB
  firefox: 103.0.2 → 104.0.1, +10.5 KiB
  firefox-unwrapped: 103.0.2 → 104.0.1, +1168.2 KiB
  fzf: 0.32.1 → 0.33.0
  game-music-emu: +3575.7 KiB
  gcc: -5748.8 KiB
  gfortran: -1374.1 KiB
  gh: 2.14.4 → 2.14.7, +34.9 KiB
  git: 2.37.1 → 2.37.2, -26.9 KiB
  glib: +22.6 KiB
  glibc: -161.1 KiB
  gnumake: -11.8 KiB
  gnutls: 3.7.6 → 3.7.7
  gperftools: 2.9.1 → 2.10
  gsm: 1.0.19 → 1.0.20
  gst-plugins-bad: 1.20.1 → 1.20.3, +17.8 KiB
  gst-plugins-base: 1.20.1 → 1.20.3
  gst-plugins-good: 1.20.1 → 1.20.3
  gst-plugins-ugly: 1.20.1 → 1.20.3
  gstreamer: 1.20.1 → 1.20.3, +12.5 KiB
  harfbuzz: 5.0.1 → 5.1.0, +47.6 KiB
  home-manager: -8.7 KiB
  ilmbase: 2.5.7 → 2.5.8
  initrd-linux: 5.19.1 → 5.19.4, +762.1 KiB
  intel-media-sdk: 22.5.1 → 22.5.2
  iproute2: 5.18.0 → 5.19.0, +23.2 KiB
  iso-codes: 4.9.0 → 4.11.0, -27.9 KiB
  lesspipe: 2.05 → 2.06
  libapparmor: 3.0.4 → 3.0.7
  libbluray: 1.3.1 → 1.3.2
  libevdev: 1.12.1 → 1.13.0
  libgme: 0.6.3 → ∅, -845.7 KiB
  libgpg-error: 1.42 → 1.45, +111.7 KiB
  libhwy: 0.15.0 → ∅, -2560.8 KiB
  libidn: 1.38 → 1.41, +45.1 KiB
  libjpeg-turbo: 2.1.3 → 2.1.4
  libjxl: -225.5 KiB
  libnftnl: 1.2.2 → 1.2.3
  libplacebo: +104.6 KiB
  libpulseaudio: 15.0 → 16.1, +5531.2 KiB
  librsvg: -150.5 KiB
  libtirpc: 1.2.7-rc4 → 1.3.3
  liburing: -87.2 KiB
  libvpx: 1.11.0 → 1.12.0, -171.7 KiB
  libwebp: 1.2.3 → 1.2.4
  linux: 5.19.1, 5.19.1-modules → 5.19.4, 5.19.4-modules, +34.8 KiB
  lldb: 13.0.1 → 14.0.6, -56343.3 KiB
  llvm: 13.0.1 → 14.0.6, +59994.0 KiB
  lua: -67.7 KiB
  mesa: 22.1.4 → 22.1.6, -15.0 KiB
  neovim-unwrapped: +108.5 KiB
  nerdfonts: 2.1.0 → 2.2.1, +45643.9 KiB
  nfs-utils: 2.5.1 → 2.6.2, +125.8 KiB
  nftables: 1.0.4 → 1.0.5
  ninja: 1.10.2 → 1.11.0, +71.5 KiB
  nix: 2.10.3 → 2.11.0, -520.3 KiB
  nixos: +42.0 KiB
  nixos-manual: +119.2 KiB
  nixos-system-pride: 22.11.20220819.495b19d → 22.11.20220901.2da64a8
  nixpkgs-fmt: -12.8 KiB
  nodejs: 16.17.0 → 18.8.0, +3523.8 KiB
  nushell: +128.2 KiB
  nvidia-settings: -22.6 KiB
  nvidia-x11: 515.65.01-5.19.1 → 515.65.01-5.19.4
  openexr: 2.5.7 → 2.5.8
  openfortivpn: 1.17.2 → 1.17.3
  pciutils: 3.7.0 → 3.8.0, +11.6 KiB
  postgresql: 14.4 → 14.5, -277.1 KiB
  procs: -32.4 KiB
  pulseaudio: 15.0 → 16.1, +129.2 KiB
  pyright: 1.1.265 → 1.1.268, +35.3 KiB
  python3: -336.7 KiB
  qpdf: 10.6.2 → 10.6.3
  rav1e: +586.7 KiB
  ripgrep: -42.6 KiB
  rofi: 1.7.4 → 1.7.5, -45.2 KiB
  rofi-unwrapped: 1.7.4 → 1.7.5
  rtmpdump-unstable: -432.8 KiB
  rustup: -19.0 KiB
  s2n-tls: 1.3.12 → 1.3.20, -339.1 KiB
  slang: 2.3.2 → 2.3.3, +396.0 KiB
  source: +2151.4 KiB
  speexdsp: 1.2.0 → 1.2.1
  starship: -24.0 KiB
  stdman: 2021.12.21 → 2022.07.30, +225.1 KiB
  steam: +145.3 KiB
  steam-run: +146.0 KiB
  steam-run-usr: +15.7 KiB
  steam-usr: +15.7 KiB
  stylua: 0.14.2 → 0.14.3, -24.7 KiB
  systemd: 251.3 → 251.4, +245.5 KiB
  systemd-minimal: 251.3 → 251.4
  tree-sitter: -30.3 KiB
  tree-sitter-cpp-grammar: +212.0 KiB
  tree-sitter-javascript-grammar: +26.0 KiB
  tree-sitter-rust-grammar: +8.1 KiB
  tree-sitter-vim-grammar: +44.3 KiB
  tree-sitter-viml: 2d75bf3 → ∅, -4546.7 KiB
  tree-sitter-viml-d38ee3b: ∅ → ε, +4854.8 KiB
  typescript: 4.7.4 → 4.8.2, +1553.5 KiB
  typescript-language-server: 0.11.2 → 1.1.2, -282.1 KiB
  tzdata: 2022a → 2022b, -15.8 KiB
  udev: +37.2 KiB
  unit-run-initramfs.mount: ∅ → ε
  unit-script-generate-shutdown-ramfs: ε → ∅
  vim: 9.0.0135 → 9.0.0180
  viu: -22.3 KiB
  vulkan-loader: 1.3.211.0 → 1.3.216.0, +16.4 KiB
  wezterm: -619.6 KiB
  xsv: -20.6 KiB
  zellij: 0.31.2 → 0.31.3, -84.0 KiB

Security vulnerability report

53 derivations with active advisories
25 derivations left out due to whitelisting

------------------------------------------------------------------------
Nuget-5.6.0.6489

/nix/store/nc45mkbksl4sdg7bb06s5z9pyl9pzgi3-Nuget-5.6.0.6489.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-30184    5.5

------------------------------------------------------------------------
SDL_ttf-2.0.11

/nix/store/xnlzgb2p9g7fjqrm5iildz4fxpfa9n3x-SDL_ttf-2.0.11.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-27470    7.8

------------------------------------------------------------------------
ShellCheck-0.8.0

/nix/store/c9ya7qxkmy7mian9id9ccjm4yl89msk4-ShellCheck-0.8.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
ShellCheck-0.8.0-r1.cabal

/nix/store/irfpvhh5byrml7iff9qdbm2k7dhw6lah-ShellCheck-0.8.0-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-28794    9.8

------------------------------------------------------------------------
async-2.2.4

/nix/store/x132mw211x5hy1hxcqi2hvmyk1fsgv1g-async-2.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8

------------------------------------------------------------------------
async-2.2.4-r2.cabal

/nix/store/82l989ba5hnmc4bgi3wz05rgm4j79fpz-async-2.2.4-r2.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8

------------------------------------------------------------------------
binutils-2.38

/nix/store/9h198nzlqqxi1mgxq29x7mm69a87bdv1-binutils-2.38.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-38533    5.5

------------------------------------------------------------------------
binutils-2.38

/nix/store/00gclwh6mn9f113ll9k6z1wksmsbml63-binutils-2.38.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-38533    5.5

------------------------------------------------------------------------
cereal-0.5.8.3

/nix/store/g0i49y3npm5njjqhrazd7k6ycvqan1ph-cereal-0.5.8.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8
https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3

------------------------------------------------------------------------
charset-0.3.9

/nix/store/y7dxa5rq31l68gn3zw7dgqbqyaxkp1hw-charset-0.3.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5

------------------------------------------------------------------------
commonmark-0.2.2

/nix/store/ac5bhymip7x649g7596lb1a1n1qpfdnh-commonmark-0.2.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1

------------------------------------------------------------------------
cups-2.4.2

/nix/store/905sr4yxcbl1j9ann759xy9x23clxgry-cups-2.4.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-26691    6.7

------------------------------------------------------------------------
ffmpeg-4.4.2

/nix/store/slbbl0rvf8lqamfajrx236532n611sxl-ffmpeg-4.4.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38291    7.5

------------------------------------------------------------------------
fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9

/nix/store/ywxx91qy0m78vgnhawkwn3c5xk3xwsng-fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5
https://nvd.nist.gov/vuln/detail/CVE-2019-14900    6.5

------------------------------------------------------------------------
fuse-3.11.0

/nix/store/l6i6fvs3971hrbfgmr5y830hwbn7dnbg-fuse-3.11.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2019-14860    6.5
https://nvd.nist.gov/vuln/detail/CVE-2019-14900    6.5

------------------------------------------------------------------------
gcc-7.5.0

/nix/store/hdxm5mv3784gnr93is4nk2k1fwd27r6c-gcc-7.5.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-12886    8.1
https://nvd.nist.gov/vuln/detail/CVE-2021-37322    7.8

------------------------------------------------------------------------
git-2.37.2

/nix/store/bmmqj7jfb1v9w8hk5bcjxxc7cs3zjcmm-git-2.37.2.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-36882    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-30947    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30948    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-36883    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-38663    6.5
https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4
https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1
https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4
https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3
https://nvd.nist.gov/vuln/detail/CVE-2022-30949    5.3
https://nvd.nist.gov/vuln/detail/CVE-2022-36884    5.3
https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3

------------------------------------------------------------------------
go-1.16-linux-amd64-bootstrap

/nix/store/p90q0ghk3ybym36s7g4ll6d4dn28xf3d-go-1.16-linux-amd64-bootstrap.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8
https://nvd.nist.gov/vuln/detail/CVE-2022-23806    9.1
https://nvd.nist.gov/vuln/detail/CVE-2022-30580    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-39293    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-44716    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-23772    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-23773    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-24675    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-24921    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-28131    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-28327    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-29804    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30630    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30631    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30632    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30633    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30634    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30635    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32189    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-1705     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32148    6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-1962     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-29526    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-44717    4.8
https://nvd.nist.gov/vuln/detail/CVE-2022-30629    3.1

------------------------------------------------------------------------
http-client-0.7.13.1

/nix/store/bli32l2y173x1b7bip20kpnwa0lmd609-http-client-0.7.13.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-11021    7.5

------------------------------------------------------------------------
jose-0.9

/nix/store/5gyznvrm9f1m6if588r3snvns61d61x5-jose-0.9.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-29444    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29445    5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-29446    5.9

------------------------------------------------------------------------
lens-5.0.1

/nix/store/5aamma3sxp6aqcb54y8rzl7dfxh0j2xp-lens-5.0.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6
https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8

------------------------------------------------------------------------
lens-5.0.1-r3.cabal

/nix/store/p44nksrw2v2f1zxgcbg582mp6ac4gx7c-lens-5.0.1-r3.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6
https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8

------------------------------------------------------------------------
libjxl-0.6.1

/nix/store/lraxa7la0ypimfjfv22466178nkddpnj-libjxl-0.6.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-34000    6.5

------------------------------------------------------------------------
libmpeg2-0.5.1

/nix/store/h4bdadx6vxsyzn8mq3r0bhj2150jf1wc-libmpeg2-0.5.1.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-37416    6.5

------------------------------------------------------------------------
libtiff-4.4.0

/nix/store/pnqswpyvi1afskl03y2l502dakd4wlnn-libtiff-4.4.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2056     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2057     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2058     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2953     5.5

------------------------------------------------------------------------
libtirpc-1.3.3

/nix/store/3rsqarcjv7jyx4ls4yjbfb0nlkrpc11x-libtirpc-1.3.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-46828    7.5

------------------------------------------------------------------------
lua-2.1.0

/nix/store/82qxm1aidjszx4g8mf461b0b7vwn3j6h-lua-2.1.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5

------------------------------------------------------------------------
lua-5.2.4-env

/nix/store/8d50329k92gc7hd6a0wl6x5v9adlnd4d-lua-5.2.4-env.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8
https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-43519    5.5

------------------------------------------------------------------------
markdown-0.33-1.rockspec

/nix/store/li4zms2fzjmr5js1bixn9r1clb20drml-markdown-0.33-1.rockspec.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-1000874  6.1

------------------------------------------------------------------------
network-3.1.2.7

/nix/store/f91hwnvscswg8cj3ayip1qinxy341vc4-network-3.1.2.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24388    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24389    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24390    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24391    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24392    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24393    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-24394    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-0486     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-0997     7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5

------------------------------------------------------------------------
nss-3.68.4

/nix/store/dmqcvs2a6y1y6q4sbfj62ndi81r2c09n-nss-3.68.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-43527    9.8

------------------------------------------------------------------------
openexr-2.5.8

/nix/store/a5q0aaimfq0849ax3yayd4755lv1npyz-openexr-2.5.8.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-23169    8.8
https://nvd.nist.gov/vuln/detail/CVE-2021-3598     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3605     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-3933     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-23215    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26260    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-26945    5.5

------------------------------------------------------------------------
openssl-0.10.30

/nix/store/jddxgpnsn71ymbphf1j242gv7xwcxc26-openssl-0.10.30.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8
https://nvd.nist.gov/vuln/detail/CVE-2021-4044     7.5

------------------------------------------------------------------------
openssl-1.1.1q

/nix/store/7lfnfqvfc6rn8ys9qhd7nl2c5kbq9cf4-openssl-1.1.1q.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8

------------------------------------------------------------------------
qemu-7.0.0

/nix/store/sg34ywxfg375f3p8fh0k4bf6ymv07fdr-qemu-7.0.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-3929     8.2
https://nvd.nist.gov/vuln/detail/CVE-2021-4158     6.0

------------------------------------------------------------------------
quote-1.0.7

/nix/store/vzsl5zay0hxpf4pwljpln138xwhji778-quote-1.0.7.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
quote-1.0.20

/nix/store/bnpj6w588dd6kdx55hmfrz4ak5kfnqva-quote-1.0.20.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3

------------------------------------------------------------------------
regex-1.4.5

/nix/store/c15qgajkkm901al2vnngf7wxdfwb6ca5-regex-1.4.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-24713    7.5

------------------------------------------------------------------------
repo-0.1.3

/nix/store/gqj221mb1h0fgc8fvjzlsbhj9l3b0i1v-repo-0.1.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-30947    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30948    7.5
https://nvd.nist.gov/vuln/detail/CVE-2022-30949    5.3

------------------------------------------------------------------------
rsync-3.2.4

/nix/store/6mw8xyc6m5xbvas6mxq1828b2am68n4b-rsync-3.2.4.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-29154    7.4

------------------------------------------------------------------------
safe-0.3.19

/nix/store/wqjjxlbmk9635946n4rf6qpfy7va5123-safe-0.3.19.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-28872    8.8
https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8
https://nvd.nist.gov/vuln/detail/CVE-2021-44751    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-40834    4.3
https://nvd.nist.gov/vuln/detail/CVE-2021-40835    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28868    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28869    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28870    4.3
https://nvd.nist.gov/vuln/detail/CVE-2022-28873    4.3
https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1
https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5

------------------------------------------------------------------------
samba-4.15.5

/nix/store/7pnfq59jfswwqvsc37gwa4bpj9jqbw53-samba-4.15.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2031     8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-32744    8.8
https://nvd.nist.gov/vuln/detail/CVE-2022-32745    8.1
https://nvd.nist.gov/vuln/detail/CVE-2021-3670     6.5
https://nvd.nist.gov/vuln/detail/CVE-2022-32746    5.4
https://nvd.nist.gov/vuln/detail/CVE-2022-32742    4.3

------------------------------------------------------------------------
systemd-2.3.0

/nix/store/89k391k71mipvr0jm7rw2j0z1r3jy2wh-systemd-2.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2017-1000082  9.8
https://nvd.nist.gov/vuln/detail/CVE-2018-15688    8.8
https://nvd.nist.gov/vuln/detail/CVE-2017-18078    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-6954     7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-15686    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-16864    7.8
https://nvd.nist.gov/vuln/detail/CVE-2018-16865    7.8
https://nvd.nist.gov/vuln/detail/CVE-2019-3843     7.8
https://nvd.nist.gov/vuln/detail/CVE-2019-3844     7.8
https://nvd.nist.gov/vuln/detail/CVE-2020-1712     7.8
https://nvd.nist.gov/vuln/detail/CVE-2017-9217     7.5
https://nvd.nist.gov/vuln/detail/CVE-2018-15687    7.0
https://nvd.nist.gov/vuln/detail/CVE-2019-3842     7.0
https://nvd.nist.gov/vuln/detail/CVE-2020-13776    6.7
https://nvd.nist.gov/vuln/detail/CVE-2018-1049     5.9
https://nvd.nist.gov/vuln/detail/CVE-2021-3997     5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33910    5.5
https://nvd.nist.gov/vuln/detail/CVE-2018-16888    4.7
https://nvd.nist.gov/vuln/detail/CVE-2019-20386    2.4

------------------------------------------------------------------------
unzip-6.0

/nix/store/qgiggl8c391dfbk34xyhmd6ildmsqzzm-unzip-6.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-4217     7.8

------------------------------------------------------------------------
vault-0.3.1.5

/nix/store/p0lsa1gkib2zlbn9yk4z27h6mdhzm2p3-vault-0.3.1.5.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vault-0.3.1.5-r2.cabal

/nix/store/9hmqdb6g1qldbsqgdqsqxcin6nq39vqy-vault-0.3.1.5-r2.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2018-19786    8.1
https://nvd.nist.gov/vuln/detail/CVE-2020-13223    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-27400    7.5
https://nvd.nist.gov/vuln/detail/CVE-2021-41802    5.4
https://nvd.nist.gov/vuln/detail/CVE-2020-25594    5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-3024     5.3
https://nvd.nist.gov/vuln/detail/CVE-2021-38554    5.3

------------------------------------------------------------------------
vim-9.0.0180

/nix/store/kdwxs93gj0k69d56skw4x9z3nyan4sgw-vim-9.0.0180.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2816     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2817     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2819     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2845     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2849     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2862     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2889     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2946     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2982     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-3016     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-3037     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2874     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2923     5.5
https://nvd.nist.gov/vuln/detail/CVE-2022-2980     5.5

------------------------------------------------------------------------
warp-3.3.21

/nix/store/zlk8lim2zrafrpzx1x46kgxlw3f3s7v6-warp-3.3.21.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2145     7.8
https://nvd.nist.gov/vuln/detail/CVE-2022-2225     7.8

------------------------------------------------------------------------
wavpack-5.4.0

/nix/store/54nfrz8x0jj2rdc33xckmq5hyld5lhir-wavpack-5.4.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-2476     5.5

------------------------------------------------------------------------
websockets-0.12.7.3

/nix/store/maz6fvzrzn9rigsrqjscm6klysgzv5bp-websockets-0.12.7.3.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33880    5.9

------------------------------------------------------------------------
websockets-0.12.7.3-r1.cabal

/nix/store/ay18n2kjhazi62khzl704cmjkq6g8yz8-websockets-0.12.7.3-r1.cabal.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33880    5.9

------------------------------------------------------------------------
yasm-1.3.0

/nix/store/4avps4n8k77hgx1lpzch51g6azd3nnj2-yasm-1.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2021-33454    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33455    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33456    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33457    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33458    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33459    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33460    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33461    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33462    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33463    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33464    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33465    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33466    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33467    5.5
https://nvd.nist.gov/vuln/detail/CVE-2021-33468    5.5

------------------------------------------------------------------------
zlib-0.6.3.0

/nix/store/581y208szgg1s42697499wqz7p1rk6qj-zlib-0.6.3.0.drv
CVE                                                CVSSv3
https://nvd.nist.gov/vuln/detail/CVE-2022-37434    9.8
https://nvd.nist.gov/vuln/detail/CVE-2018-25032    7.5

use --show-whitelisted to see derivations with only whitelisted CVEs

github-actions[bot] commented 2 years ago

Report for `theman`

Version changes:

Version 1 -> 2:'
'  ICU: [31;1m+881.3 KiB[0m'
'  aws-c-auth: 0.6.13 → 0.6.14'
'  aws-c-cal: 0.5.17 → 0.5.18'
'  aws-c-common: 0.7.0 → 0.7.4'
'  aws-c-compression: 0.2.14 → 0.2.15'
'  aws-c-event-stream: 0.2.7 → 0.2.12'
'  aws-c-http: 0.6.15 → 0.6.19, [31;1m+13.5 KiB[0m'
'  aws-c-io: 0.11.0 → 0.11.2'
'  aws-c-mqtt: 0.7.10 → 0.7.11'
'  aws-c-s3: 0.1.39 → 0.1.43, [31;1m+16.6 KiB[0m'
'  aws-c-sdkutils: 0.1.2 → 0.1.3'
'  aws-checksums: 0.1.12 → 0.1.13'
'  aws-crt-cpp: 0.17.28 → 0.17.32'
'  aws-sdk-cpp: 1.9.238 → 1.9.294, [31;1m+113.8 KiB[0m'
'  bash-language-server: 3.0.5 → 3.1.0'
'  darwin: [31;1m+25.7 KiB[0m'
'  darwin-manual: [31;1m+54.7 KiB[0m'
'  darwin-system: 22.11.20220819.495b19d+darwin4.80871c7 → 22.11.20220901.2da64a8+darwin4.80cec51'
'  delta: 0.13.0 → 0.14.0, [31;1m+82.9 KiB[0m'
'  eslint_d: [32;1m-37.7 KiB[0m'
'  exa: [32;1m-11.4 KiB[0m'
'  fonts: [31;1m+14.8 KiB[0m'
'  fzf: 0.32.1 → 0.33.0'
'  gh: 2.14.4 → 2.14.7, [31;1m+45.6 KiB[0m'
'  git: 2.37.1 → 2.37.2, [31;1m+64.2 KiB[0m'
'  gnutls: 3.7.6 → 3.7.7'
'  libgpg-error: 1.42 → 1.45, [31;1m+51.9 KiB[0m'
'  libjpeg-turbo: 2.1.3 → 2.1.4'
'  libwebp: 1.2.3 → 1.2.4'
'  neovim-unwrapped: [31;1m+111.3 KiB[0m'
'  nerdfonts: 2.1.0 → 2.2.1, [31;1m+45643.9 KiB[0m'
'  nix: 2.10.3 → 2.11.0, [32;1m-313.3 KiB[0m'
'  nodejs: 16.17.0 → 18.8.0, [31;1m+2847.3 KiB[0m'
'  nushell: [31;1m+155.0 KiB[0m'
'  pinentry-mac: 0.9.4 → 1.1.1.1, [31;1m+105.0 KiB[0m'
'  pipenv: 2022.8.14 → 2022.8.30, [32;1m-372.9 KiB[0m'
'  pyright: 1.1.265 → 1.1.268, [31;1m+35.3 KiB[0m'
'  rust-analyzer-nightly: 917bd68 → 93c52e4, [31;1m+105.4 KiB[0m'
'  sccache: [32;1m-117.6 KiB[0m'
'  source: [31;1m+2151.4 KiB[0m'
'  stylua: 0.14.2 → 0.14.3'
'  tree-sitter-cpp-grammar: [31;1m+209.4 KiB[0m'
'  tree-sitter-javascript-grammar: [31;1m+19.5 KiB[0m'
'  tree-sitter-vim-grammar: [31;1m+40.7 KiB[0m'
'  tree-sitter-viml: 2d75bf3 → ∅, [32;1m-4546.7 KiB[0m'
'  tree-sitter-viml-d38ee3b: ∅ → ε, [31;1m+4854.8 KiB[0m'
'  typescript: 4.7.4 → 4.8.2, [31;1m+1553.5 KiB[0m'
'  typescript-language-server: 0.11.2 → 1.1.2, [32;1m-282.1 KiB[0m'
'  tzdata: 2022a → 2022b

Security vulnerability report

28 derivations with active advisories'
'13 derivations left out due to whitelisting'
''
'------------------------------------------------------------------------'
'async-2.2.4'
''
'/nix/store/h84747xhs8qsl7zv1f8sc1z503n5n7bz-async-2.2.4.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8'
''
'------------------------------------------------------------------------'
'async-2.2.4-r2.cabal'
''
'/nix/store/ypyqsmwvxkq994kwp4y38k3qsnmw88b1-async-2.2.4-r2.cabal.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-43138    7.8'
''
'------------------------------------------------------------------------'
'binutils-2.38'
''
'/nix/store/fnfpby3gijr2m0rpawfrx4qc7qw2p0kb-binutils-2.38.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-38533    5.5'
''
'------------------------------------------------------------------------'
'cereal-0.5.8.3'
''
'/nix/store/qj8p8p05f32nc0cxxa771mpm0i7jkc03-cereal-0.5.8.3.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-11105    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2020-11104    5.3'
''
'------------------------------------------------------------------------'
'charset-0.3.9'
''
'/nix/store/14qsv8xg9yqn8gkgnn9z2vcwx12g8bd9-charset-0.3.9.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2017-16098    7.5'
''
'------------------------------------------------------------------------'
'commonmark-0.2.2'
''
'/nix/store/vrrakv4dvafb5ars3q0dpvil0klmvp6b-commonmark-0.2.2.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2019-10010    6.1'
''
'------------------------------------------------------------------------'
'dot-0.1.4'
''
'/nix/store/h0f8vrmkzs75h320q1vlkxw1fjrpwhdp-dot-0.1.4.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-7639     5.3'
''
'------------------------------------------------------------------------'
'git-2.37.2'
''
'/nix/store/6aypil5iyblyyym8j2hyzfkk9sznhpzj-git-2.37.2.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-36882    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30947    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30948    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-36883    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-38663    6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2018-1000182  6.4'
'https://nvd.nist.gov/vuln/detail/CVE-2021-21684    6.1'
'https://nvd.nist.gov/vuln/detail/CVE-2020-2136     5.4'
'https://nvd.nist.gov/vuln/detail/CVE-2018-1000110  5.3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30949    5.3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-36884    5.3'
'https://nvd.nist.gov/vuln/detail/CVE-2019-1003010  4.3'
''
'------------------------------------------------------------------------'
'go-1.16-darwin-amd64-bootstrap'
''
'/nix/store/bkqkr9wh1nfx9afglpc3jwl10mcs9hip-go-1.16-darwin-amd64-bootstrap.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-38297    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-23806    9.1'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30580    7.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-39293    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-41771    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-41772    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-44716    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-23772    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-23773    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24675    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24921    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-28131    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-28327    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-29804    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30630    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30631    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30632    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30633    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30634    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30635    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-32189    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-1705     6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-32148    6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-1962     5.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-29526    5.3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-44717    4.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30629    3.1'
''
'------------------------------------------------------------------------'
'home-0.5.3'
''
'/nix/store/rzhqz2qgd08yd9byvgiihwzqfvjd1hld-home-0.5.3.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-25264    6.7'
''
'------------------------------------------------------------------------'
'http-client-0.7.13.1'
''
'/nix/store/3izcdqhlan57bblq6pwjng6cp22m7iyz-http-client-0.7.13.1.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-11021    7.5'
''
'------------------------------------------------------------------------'
'instant-0.1.12'
''
'/nix/store/9h490z81q791vk9rcd0cw9vj1p0w0lf0-instant-0.1.12.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2017-13099    5.9'
''
'------------------------------------------------------------------------'
'lens-5.0.1'
''
'/nix/store/phz3qp6ckph0g42ls1w74y1kcl7kdwv8-lens-5.0.1.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6'
'https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8'
''
'------------------------------------------------------------------------'
'lens-5.0.1-r3.cabal'
''
'/nix/store/630c3a6506yxn3ym1lwqszgsgd8zh25w-lens-5.0.1-r3.cabal.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-44458    9.6'
'https://nvd.nist.gov/vuln/detail/CVE-2021-23154    7.8'
''
'------------------------------------------------------------------------'
'libtiff-4.4.0'
''
'/nix/store/vx8q010id8i4lvrn9k87lkilsydwpl4d-libtiff-4.4.0.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-2056     6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-2057     6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-2058     6.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-2953     5.5'
''
'------------------------------------------------------------------------'
'lua-2.1.0'
''
'/nix/store/1j4n4jvn5xaqn03p47fmzq8albzibapk-lua-2.1.0.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-15888    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2020-15945    5.5'
''
'------------------------------------------------------------------------'
'network-3.1.2.7'
''
'/nix/store/v3dq5smhhqygizb12sr95630a83fk33m-network-3.1.2.7.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35048    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35047    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35049    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24388    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24389    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24390    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24391    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24392    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24393    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24394    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-0486     7.8'
'https://nvd.nist.gov/vuln/detail/CVE-2022-0997     7.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-35050    7.5'
''
'------------------------------------------------------------------------'
'openssl-0.10.30'
''
'/nix/store/imzifcz87r7cwc7n0mzsm4093n3566j3-openssl-0.10.30.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-4044     7.5'
''
'------------------------------------------------------------------------'
'openssl-1.1.1q'
''
'/nix/store/pzcjvkppy0p7cb0aab8qhf4iy0m0qii1-openssl-1.1.1q.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2018-16395    9.8'
''
'------------------------------------------------------------------------'
'quote-1.0.7'
''
'/nix/store/lndm1384c2jlr2ac48mki5b67ppfqmwx-quote-1.0.7.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3'
''
'------------------------------------------------------------------------'
'quote-1.0.21'
''
'/nix/store/a5nm1ai18cmj2y9db4dij9gz4vc3ikqw-quote-1.0.21.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2020-16194    5.3'
''
'------------------------------------------------------------------------'
'regex-1.4.5'
''
'/nix/store/khfvygd5sqmcr0pjj57yn5k0xhfqymar-regex-1.4.5.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-24713    7.5'
''
'------------------------------------------------------------------------'
'repo-0.1.3'
''
'/nix/store/zbc5nwl44hlw9azr9vsbiq2afgalxmvx-repo-0.1.3.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30947    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30948    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-30949    5.3'
''
'------------------------------------------------------------------------'
'rsync-3.2.4'
''
'/nix/store/iw63c6hims9yylxm8m0z3kfhy0i25vqq-rsync-3.2.4.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-29154    7.4'
''
'------------------------------------------------------------------------'
'safe-0.3.19'
''
'/nix/store/sw9bxd3wx4njnr0if45z805idia0ykfd-safe-0.3.19.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-28872    8.8'
'https://nvd.nist.gov/vuln/detail/CVE-2019-11644    7.8'
'https://nvd.nist.gov/vuln/detail/CVE-2021-44751    5.3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-40834    4.3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-40835    4.3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-28868    4.3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-28869    4.3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-28870    4.3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-28873    4.3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-33596    4.1'
'https://nvd.nist.gov/vuln/detail/CVE-2021-33594    3.5'
'https://nvd.nist.gov/vuln/detail/CVE-2021-33595    3.5'
''
'------------------------------------------------------------------------'
'unzip-6.0'
''
'/nix/store/vxy2agkvn7bhb1qhp91c1gxbwbsq8wr9-unzip-6.0.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-4217     7.8'
''
'------------------------------------------------------------------------'
'xshell-0.2.2'
''
'/nix/store/lhjl8zzll06vf39n82kwvvbrpqz71ig7-xshell-0.2.2.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2021-42095    7.5'
'https://nvd.nist.gov/vuln/detail/CVE-2022-27966    6.5'
''
'------------------------------------------------------------------------'
'zlib-0.6.3.0'
''
'/nix/store/z2p9d6cvizddmja8fgfzq3sjkgab13sl-zlib-0.6.3.0.drv'
'CVE                                                CVSSv3'
'https://nvd.nist.gov/vuln/detail/CVE-2022-37434    9.8'
'https://nvd.nist.gov/vuln/detail/CVE-2018-25032    7.5'
''
'use --show-whitelisted to see derivations with only whitelisted CVEs

EdenEast / nyx

chore(flake): Automatic flake update #60

Report for `sloth`

Report for `eden`

Report for `pride`

Report for `theman`

EdenEast / nyx

chore(flake): Automatic flake update #60

Report for sloth

Report for eden

Report for pride

Report for theman

Report for `sloth`

Report for `eden`

Report for `pride`

Report for `theman`