HCoop / jackhill / guix / guix.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0f7cd95) | patch
lint: 'cve' checker reports the replacement's vulnerabilities.
authorLudovic Courtès <ludo@gnu.org>
Mon, 3 Oct 2016 21:30:49 +0000 (23:30 +0200)
committerLudovic Courtès <ludo@gnu.org>
Mon, 3 Oct 2016 21:30:49 +0000 (23:30 +0200)
commit9bee2bd1b02c7ef91cc7232e8647bd07525d3382
treee55a12a00b9cdf6041063598324ead5cb0ac7251tree | snapshot (tar.gz zip)
parent0f7cd95b8138f120bf0bc0593e772ed8c373f994commit | diff
lint: 'cve' checker reports the replacement's vulnerabilities.

Before, 'guix lint -c cve' would report the vulnerabilities of the
original package while pretending they are the vulnerabilities of the
replacement.

* guix/scripts/lint.scm (check-vulnerabilities): Consider the package
replacement before calling 'package-vulnerabilities'.
* tests/lint.scm ("cve: vulnerability fixed in replacement version"):
New test.
guix/scripts/lint.scm diff | blob | blame | history
tests/lint.scm diff | blob | blame | history
jackhill's copy of GNU Guix: https://guix.gnu.org/