Closed timokau closed 6 years ago
:+1: Arch also provides pycryptodome as a drop-in alternative for pycrypto.
Our pycrypto
is actually pycryptodome
https://github.com/NixOS/nixpkgs/blob/master/pkgs/development/python-modules/pycrypto/default.nix
Also, duplicate of https://github.com/NixOS/nixpkgs/issues/21671
Oh its great that that is already taken care of. Sorry I missed that.
Issue description
Apaprently pycrypto is long unmtaintained and has known vulnerabilities (https://github.com/dlitz/pycrypto/issues/176). Gentoo plans to remove that package (https://github.com/cschwan/sage-on-gentoo/issues/510). pycryptodome is a maintained fork that can be used as a (drop in?) replacement.
Should we follow gentoos example? @FRidh @dotlambda
Here are the affected files: