poetry: mark insecureorigin/backport-205341-to-release-22.11

The version of cleo in poetry.lock (1.0.0a5) is vulnerable to CVE-2022-42966. (cherry picked from commit d1bdaa9a99b32fb2e6884be00508ef989eacdf5c)
author: Robert Schütz <nix@dotlambda.de> 2022-06-04 16:44:42 +0000
committer: github-actions[bot] <github-actions[bot]@users.noreply.github.com> 2022-12-09 18:14:20 +0000
commit: 8044b38e4c73daf22f17bedaf4402f72ce9765d4 (patch)
tree: 34aa611c9ca2cb94b80e096cf68f49cdccfb1251
parent: Merge pull request #205332 from NixOS/backport-156169-to-release-22.11 (diff)
download: nixpkgs-origin/backport-205341-to-release-22.11.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix b/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix
index d175bfe01f30..da0e6e1683f3 100644
--- a/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix
+++ b/pkgs/development/tools/poetry2nix/poetry2nix/pkgs/poetry/default.nix
@@ -52,5 +52,8 @@ poetry2nix.mkPoetryApplication {
   meta = with lib; {
     inherit (python.meta) platforms;
     maintainers = with maintainers; [ adisbladis jakewaksbaum ];
+    knownVulnerabilities = [
+      "CVE-2022-42966"  # cleo version in poetry.lock is vulnerable
+    ];
   };
 }
author	Robert Schütz <nix@dotlambda.de>	2022-06-04 16:44:42 +0000
committer	github-actions[bot] <github-actions[bot]@users.noreply.github.com>	2022-12-09 18:14:20 +0000
commit	8044b38e4c73daf22f17bedaf4402f72ce9765d4 (patch)
tree	34aa611c9ca2cb94b80e096cf68f49cdccfb1251
parent	Merge pull request #205332 from NixOS/backport-156169-to-release-22.11 (diff)
download	nixpkgs-origin/backport-205341-to-release-22.11.tar.gz