wroclaw-git-backups/nix
1
0
Fork 0
mirror of https://github.com/NixOS/nix synced 2025-06-25 06:31:14 +02:00
Code Activity
nix/doc/manual/rl-next
History
eldritch horrors 88b7db1ba4 libstore: Don't default build-dir to temp-dir, store setting 
If a build directory is accessible to other users it is possible to
smuggle data in and out of build directories. Usually this is only
a build purity problem, but in combination with other issues it can
be used to break out of a build sandbox. to prevent this we default
to using a subdirectory of nixStateDir (which is more restrictive).

(cherry picked from pennae Lix commit 55b416f6897fb0d8a9315a530a9b7f0914458ded)
(store setting done by roberth)
2025-06-22 16:49:44 +02:00
..
build-dir-mandatory.md libstore: Don't default build-dir to temp-dir, store setting 2025-06-22 16:49:44 +02:00
config Compile hand-written release notes with changelog-d 2023-11-24 15:13:21 +01:00
deprecate__json.md Deprecate hacky way of making structured attrs 2025-05-28 12:59:04 -04:00
eval-profiler.md doc: Add eval-profiler documentation and release note 2025-05-21 22:16:31 +00:00
json-logger.md Add json-log-path setting 2025-05-23 10:45:12 +02:00
nix-profile-add.md Add release note 2025-05-20 18:24:13 +02:00
outpath-and-sourceinfo-fixes.md Add release note for non-flake inputs having sourceInfo 2025-05-18 00:45:33 +01:00
revert-77.md Revert "If a substitute closure is incomplete, build dependencies, then retry the substituter" 2025-05-14 20:16:40 -04:00