poetry: mark insecureorigin/backport-205341-to-release-22.05

The version of cleo in poetry.lock (1.0.0a5) is vulnerable to CVE-2022-42966. (cherry picked from commit d1bdaa9a99b32fb2e6884be00508ef989eacdf5c)
author: Robert Schütz <nix@dotlambda.de> 2022-06-04 16:44:42 +0000
committer: github-actions[bot] <github-actions[bot]@users.noreply.github.com> 2022-12-09 18:14:11 +0000
commit: 3ce40861cb4ee79cb2289d2cf75afe12af11b4f4 (patch)
tree: d8d0a68ef3bef79b39f0c0682a9fdcad108d1ca6
parent: Merge pull request #205173 from NixOS/backport-205155-to-release-22.05 (diff)
download: nixpkgs-origin/backport-205341-to-release-22.05.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix b/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix
index 868599bde689..818814e87afe 100644
--- a/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix
+++ b/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix
@@ -50,5 +50,8 @@ poetry2nix.mkPoetryApplication {
   meta = with lib; {
     inherit (python.meta) platforms;
     maintainers = with maintainers; [ adisbladis jakewaksbaum ];
+    knownVulnerabilities = [
+      "CVE-2022-42966"  # cleo version in poetry.lock is vulnerable
+    ];
   };
 }
author	Robert Schütz <nix@dotlambda.de>	2022-06-04 16:44:42 +0000
committer	github-actions[bot] <github-actions[bot]@users.noreply.github.com>	2022-12-09 18:14:11 +0000
commit	3ce40861cb4ee79cb2289d2cf75afe12af11b4f4 (patch)
tree	d8d0a68ef3bef79b39f0c0682a9fdcad108d1ca6
parent	Merge pull request #205173 from NixOS/backport-205155-to-release-22.05 (diff)
download	nixpkgs-origin/backport-205341-to-release-22.05.tar.gz