Commit graph

1,007,778 commits

Author SHA1 Message Date
Robert Schütz
5db1641a3d pnpm_10_29_2: mark insecure
(cherry picked from commit 2e0bb4a325)
2026-06-27 03:37:40 +00:00
tomberek
9f4ba7361a
[Backport release-26.05] teleport_17: 17.7.24 -> 17.7.25; teleport_18: 18.8.3 -> 18.9.1 (#535834) 2026-06-27 02:18:49 +00:00
Sefa Eyeoglu
a50d7fb282
[Backport release-26.05] prismlauncher: add wrapGAppsHook3 (#527930) 2026-06-27 01:46:29 +00:00
Sefa Eyeoglu
09b5d448f9
[Backport release-26.05] proton-ge-bin: GE-Proton10-34 -> GE-Proton11-1 (#535768) 2026-06-27 01:43:52 +00:00
Sefa Eyeoglu
971b9aa4c7
[Backport release-26.05] discord: recreate module symlinks on every launch (#535867) 2026-06-27 01:43:15 +00:00
Sefa Eyeoglu
c7f684ad52
[Backport release-26.05] vencord: 1.14.13 -> 1.14.15 (#535769) 2026-06-27 01:43:03 +00:00
Martin Weinelt
1ac9348934
[Backport release-26.05] authelia: mark web build broken on darwin (#535869) 2026-06-27 00:38:10 +00:00
Martin Weinelt
4b6aed1d9a authelia: mark web build broken on darwin
https://hydra.nixos.org/job/nixpkgs/nixpkgs-26.05-darwin/authelia.aarch64-darwin
https://hydra.nixos.org/job/nixpkgs/nixpkgs-26.05-darwin/authelia.x86_64-darwin
(cherry picked from commit 1211aaaa13)
2026-06-27 00:33:01 +00:00
Mathtician
ccfb602b88 discord: recreate module symlinks on every launch
As of commit b49b623a ("discord: use distro layout for stable on Linux", PR #515876),
Discord's launch script runs a `discord-stage-modules` script defined in `linux.nix`,
which creates symlinks from `~/.config/discord/<version>/modules/<module_name>`
to the corresponding Nix store paths so Discord can find them.
It checks whether this has already been done by looking for `installed.json` in the same dir,
which it also creates, and skips link creation if so.
However, since the dir is indexed by Discord version number,
the links are not refreshed when opening a new build of Discord with the same version number as an older build.
If the old build is then GC'd, the links break and Discord fails to start
with an error such as `Cannot find module 'discord_desktop_core'`.
Deleting the module folder entirely allows for it to be recreated and for Discord to start without issue.
This problem and solution are attested on the wiki, albeit with less explanation:
https://wiki.nixos.org/wiki/Discord#Crash_on_start-up.
The package fix is to delete and recreate the `modules` folder on each launch,
as it is small and does not contain any data meant to persist between launches:
it has only the module links, `installed.json`, and a `pending/` download directory
recreated by Discord's updater on startup.
The fix ensures that the links always point to the Nix store of the build of Discord being run,
so they will not be broken by GC.

Assisted-by: Claude Fable 5 in Claude Code
(cherry picked from commit 8f5437cf20)
2026-06-27 00:29:12 +00:00
Matt Sturgeon
3a45106ee8
[Backport release-26.05] Allow meta.problems while preventing internal use of certain kinds (#535859) 2026-06-26 23:48:40 +00:00
Silvan Mosberger
8a8a20ef2e release-checks: Prevent meta.problem warnings
CI already catches problematic uses, we don't need to bother about them
here

(cherry picked from commit 8fa1b2e979)
2026-06-26 23:43:08 +00:00
Silvan Mosberger
168b18f6e3 ci/eval: Allow preventing internal Nixpkgs use of certain problem kinds
(cherry picked from commit a90d993610)
2026-06-26 23:43:08 +00:00
Silvan Mosberger
caeedbd700 ci/eval: Refactor attrpaths.nix to a more generic pre-eval.nix
(cherry picked from commit 19a31658dc)
2026-06-26 23:43:07 +00:00
Silvan Mosberger
3c4f976c69 config: Introduce attrPathsDisallowedForInternalUse
This is very similar to how the aliases.nix overlay can be removed to
prevent usage of them in Nixpkgs itself, but this config attribute
allows preventing use of other existing attributes in Nixpkgs.

Needed for a follow-up commit.

(cherry picked from commit 7cc4d7dea8)
2026-06-26 23:43:07 +00:00
Silvan Mosberger
45a743c9f3 meta.problems: Fill out output meta with final list of problems
This ensures that external tooling can also process the problems, and
helps users with debugging.

(cherry picked from commit 8fcbb35929)
2026-06-26 23:43:07 +00:00
Silvan Mosberger
ff79595a29 meta.problems: Internal refactoring
Makes future changes easier

(cherry picked from commit eba1d51352)
2026-06-26 23:43:07 +00:00
Matt Sturgeon
43e856aed1
[Backport release-26.05] stdenv/problems: only run problem if it's not ignored (#535856) 2026-06-26 23:29:07 +00:00
Eman Resu
c63637a660 stdenv/problems: don't create pname variable
A package failing an automatic problem (of which there's currently only
one) is rare. A package having meta.problems specified is even rarer.
Inlining the getName call to its two usages saves a thunk in the vast,
vast majority of cases, and I consider it to be worth it.

(cherry picked from commit 85e32af8ef)
2026-06-26 23:21:14 +00:00
Eman Resu
5b0477b28d stdenv/problems: make handlerForProblem more performant with partial application
(cherry picked from commit 0b304744b8)
2026-06-26 23:21:14 +00:00
Eman Resu
dc025af019 stdenv/problems: reverse parameter order for handlerForProblem
kind and name are more likely to stay the same. Doing this allows us to
cache the kind and name when calling the handler for a problem.

(cherry picked from commit 41bafcbc34)
2026-06-26 23:21:13 +00:00
Eman Resu
3358486adb stdenv/problems: avoid a lookup for meta.broken
The stats may be lying to me when they say that this saves 1.86% of
attrset lookups, and `?` may just not be accurately tracked. But at
worst, performance will stay the same, since the check will fail for all
non-broken packages. And who knows, maybe it does help, by nature of not
checking the value!

(cherry picked from commit 753e43c931)
2026-06-26 23:21:13 +00:00
Eman Resu
bd8250ab96 stdenv/problems: use early knowledge of allowBroken and allowBrokenPredicate
(cherry picked from commit 5616e3d925)
2026-06-26 23:21:13 +00:00
Eman Resu
2fef77700c stdenv/problems: avoid creating manual problems attrset
(cherry picked from commit b88fba2fba)
2026-06-26 23:21:13 +00:00
Eman Resu
2199f6dce9 stdenv/problems: only run problem if it's not ignored
(cherry picked from commit 5c89ab858d)
2026-06-26 23:21:13 +00:00
JuliusFreudenberger
fe447ad91f teleport_18: 18.8.3 -> 18.9.1
Changelogs:
- https://github.com/gravitational/teleport/releases/tag/v18.9.0
- https://github.com/gravitational/teleport/releases/tag/v18.9.1
Diff: https://github.com/gravitational/teleport/compare/v18.8.3...v18.9.1

(cherry picked from commit 4deabafaf9)
2026-06-26 22:14:10 +00:00
JuliusFreudenberger
4aa1553fe5 teleport_17: 17.7.24 -> 17.7.25
Changelog: https://github.com/gravitational/teleport/releases/tag/v17.7.25
Diff: https://github.com/gravitational/teleport/compare/v17.7.24...v17.7.25
(cherry picked from commit 447718ce2f)
2026-06-26 22:14:09 +00:00
Gergő Gutyina
ded728e2af
[Backport release-26.05] teleport_17: 17.7.23 -> 17.7.24; teleport_18: 18.7.6 -> 18.8.3 (#530208) 2026-06-26 22:01:54 +00:00
Emily
e80a9bedb4
[Backport release-26.05] {,ungoogled-}chromium,chromedriver: 149.0.7827.196 -> 149.0.7827.200 (#535824) 2026-06-26 21:46:44 +00:00
Adam C. Stephens
8e5a5a8bdc
[Backport release-26.05] zfs_2_4: apply patch for #18366 (dedup=on data corruption) (#535742) 2026-06-26 21:44:55 +00:00
networkException
eb197cfed7 ungoogled-chromium: 149.0.7827.196-1 -> 149.0.7827.200-1
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_01245939337.html

This update includes 3 security fixes.

CVEs:
CVE-2026-13281 CVE-2026-13282 CVE-2026-13283

(cherry picked from commit 53a21295bc)
2026-06-26 21:30:14 +00:00
networkException
ce83b7ee8a chromium,chromedriver: 149.0.7827.196 -> 149.0.7827.200
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_01245939337.html

This update includes 3 security fixes.

CVEs:
CVE-2026-13281 CVE-2026-13282 CVE-2026-13283

(cherry picked from commit b94af336c0)
2026-06-26 21:30:14 +00:00
Gergő Gutyina
c172214da4
[Backport release-26.05] pnpm_11: 11.8.0 -> 11.9.0 (#535767) 2026-06-26 21:17:57 +00:00
Gaétan Lepage
bc26245eca
[Backport release-26.05] nixosTests/cosmic: move core logic into a dedicated script (#535620) 2026-06-26 21:09:51 +00:00
Gergő Gutyina
08c5080586
[Backport release-26.05] pnpm_10: 10.33.4 -> 10.34.0 (#527932) 2026-06-26 21:07:14 +00:00
Florian Klink
a0c9df7118
[Backport release-26.05] python3Packages.itables: 2.8.0 -> 2.8.1 (#535796) 2026-06-26 20:29:46 +00:00
nixpkgs-ci[bot]
5ce25a8ab9
[Backport release-26.05] redmine: 6.1.2 -> 6.1.3 (#535780) 2026-06-26 20:24:22 +00:00
R. Ryantm
4f622148f9 python3Packages.itables: 2.8.0 -> 2.8.1
(cherry picked from commit bccf39549c)
2026-06-26 20:21:48 +00:00
Felix Singer
e803789c69 redmine: 6.1.2 -> 6.1.3
Signed-off-by: Felix Singer <felixsinger@posteo.net>
(cherry picked from commit aed3cb210c)
2026-06-26 19:21:34 +00:00
Nick Cao
52d53cc5da
[Backport release-26.05] linuxPackages.nvidiaPackages.legacy_470: support up to linux 7.1 (#535044) 2026-06-26 19:13:16 +00:00
Ryan Omasta
e3451ba38c vencord: 1.14.13 -> 1.14.15
Diff: https://github.com/Vendicated/Vencord/compare/v1.14.13...v1.14.15
(cherry picked from commit 1ffc0e639c)
2026-06-26 18:48:32 +00:00
R. Ryantm
cf002d5b5c proton-ge-bin: GE-Proton10-34 -> GE-Proton11-1
(cherry picked from commit 7292b09f57)
2026-06-26 18:48:25 +00:00
Gutyina Gergő
b517e5b3bf pnpm_11: 11.8.0 -> 11.9.0
(cherry picked from commit 7a6046cd22)
2026-06-26 18:48:06 +00:00
Nick Cao
faa1c99088
[Backport release-26.05] sing-box: 1.13.13 -> 1.13.14 (#535391) 2026-06-26 18:26:57 +00:00
Kerstin Humm
c9dd5cbb18
[Backport release-26.05] mastodon: 4.6.1 -> 4.6.2 (#535691) 2026-06-26 18:22:53 +00:00
Florian Klink
69491ee2b1
[Backport release-26.05] asahi-audio: 3.4 -> 4.0 (#535748) 2026-06-26 17:36:25 +00:00
nixpkgs-ci[bot]
0f47d4bfbf
[Backport release-26.05] buf: 1.70.0 -> 1.71.0 (#535660) 2026-06-26 17:32:42 +00:00
Yureka
b6ac784981 asahi-audio: 3.4 -> 4.0
Changelog: https://github.com/AsahiLinux/asahi-audio/releases/tag/v4.0
Diff: https://github.com/AsahiLinux/asahi-audio/compare/v3.4...v4.0
(cherry picked from commit ce8593507d)
2026-06-26 17:30:59 +00:00
Florian Klink
b2baef005b
[Backport release-26.05] speakersafetyd: 2.0.0 -> 2.0.1 (#535668) 2026-06-26 17:29:11 +00:00
Niklas Korz
e21d170e51
[Backport release-26.05] sonarr: add nyanloutre to maintainers (#535688) 2026-06-26 17:28:40 +00:00
Morgan Jones
fd7cd5390f zfs_2_4: apply patch for #18366 (dedup=on data corruption)
This was reproducible with substitution of large NARs with a lot of
files and a dedup=on Nix store. While Nix would correctly produce a
signature verification error if the hash was known, builds could
silently be corrupt.

TrueNAS backported this, so let's as well so this doesn't bite anyone
else.

See: https://github.com/truenas/zfs/pull/390
See: https://github.com/openzfs/zfs/issues/18366
See: https://github.com/openzfs/zfs/pull/18544
Signed-off-by: Morgan Jones <me@numin.it>
(cherry picked from commit 371a819607)
2026-06-26 17:05:38 +00:00