diff options
| author | Raito Bezarius <masterancpp@gmail.com> | 2023-05-20 16:21:30 +0200 |
|---|---|---|
| committer | Raito Bezarius <masterancpp@gmail.com> | 2023-05-20 16:21:30 +0200 |
| commit | b6dac4f61b514b37b7a555bb46abf940ce7678f5 (patch) | |
| tree | 363cc76e6cd215d90bdc6423af17de5b19409c92 | |
| parent | xen: never build on Hydra (diff) | |
| download | nixpkgs-origin/cache-all-insecure-packages-except-the-worse-ones.tar.gz | |
pkgs/top-level/release: enable cache for all (reasonably) insecure packagesorigin/cache-all-insecure-packages-except-the-worse-ones
This is an alternative approach to the insecure package issue, we enable by default caching for all of them.
According to vcunat, the rebuild count is the following:
```
493 x86_64-darwin
662 x86_64-linux
```
We manually put `hydraPlatforms = [ ];` on highly dangerous and expensive to build packages
which are what we consider unreasonably insecure packages.
| -rw-r--r-- | pkgs/top-level/release.nix | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/pkgs/top-level/release.nix b/pkgs/top-level/release.nix index 8888371aa062..e534be786c8e 100644 --- a/pkgs/top-level/release.nix +++ b/pkgs/top-level/release.nix @@ -16,7 +16,7 @@ # Strip most of attributes when evaluating to spare memory usage , scrubJobs ? true # Attributes passed to nixpkgs. Don't build packages marked as unfree. -, nixpkgsArgs ? { config = { allowUnfree = false; inHydra = true; }; } +, nixpkgsArgs ? { config = { allowUnfree = false; allowInsecurePredicate = x: true; inHydra = true; }; } }: with import ./release-lib.nix { inherit supportedSystems scrubJobs nixpkgsArgs; }; |