0e444785a1
The `nixos-rebuild` tool calls `get-version-suffix` to figure out the git revision of the nixpkgs directory if there is a .git. https://nvd.nist.gov/vuln/detail/CVE-2022-24765 made git throw an error if the .git search logic is not turned off and a user tries to access a `.git` directory they don’t own (otherwise a different user could trick them into setting arbitrary git config). So from now on we should always explicitely set `--git-dir`, which turns this search logic (and thus the security check) off. |
||
|---|---|---|
| .. | ||
| cd-dvd | ||
| netboot | ||
| scan | ||
| sd-card | ||
| tools | ||
| virtualbox-demo.nix | ||