lint: 'cve' checker reports the replacement's vulnerabilities. - ~cnx/guix

diff options

author	Ludovic Courtès <ludo@gnu.org>	2016-10-03 23:30:49 +0200
committer	Ludovic Courtès <ludo@gnu.org>	2016-10-03 23:30:49 +0200
commit	9bee2bd1b02c7ef91cc7232e8647bd07525d3382 (patch)
tree	e55a12a00b9cdf6041063598324ead5cb0ac7251 /.dir-locals.el
parent	0f7cd95b8138f120bf0bc0593e772ed8c373f994 (diff)
download	guix-9bee2bd1b02c7ef91cc7232e8647bd07525d3382.tar.gz

lint: 'cve' checker reports the replacement's vulnerabilities.

Before, 'guix lint -c cve' would report the vulnerabilities of the
original package while pretending they are the vulnerabilities of the
replacement.

* guix/scripts/lint.scm (check-vulnerabilities): Consider the package
replacement before calling 'package-vulnerabilities'.
* tests/lint.scm ("cve: vulnerability fixed in replacement version"):
New test.

Diffstat (limited to '.dir-locals.el')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: