Hi Leo, Leo Famulari <[email protected]> skribis:
> From b62969d52add462fc1b8b4bd1e0a3c4d53a39864 Mon Sep 17 00:00:00 2001 > From: Leo Famulari <[email protected]> > Date: Fri, 19 Feb 2021 18:09:57 -0500 > Subject: [PATCH] gnu: Python: Fix CVE-2021-3177. > > * gnu/packages/patches/python-3.8-CVE-2021-3177.patch: New file. > * gnu/local.mk (dist_patch_DATA): Add it. > * gnu/packages/python.scm (python-3.8): Define with PACKAGE/INHERIT. > [replacement]: New field. > (python-3.8/fixed): New variable. [...] > (define-public python-3.8 > - (package (inherit python-2) > + (package/inherit python-2 > (name "python") > + (replacement python-3.8/fixed) You can keep (inherit …) because the effect of ‘package/inherit’ is just to preserve replacements, which is unnecessary here. Apart from that, the Guix side of things LGTM. Thanks for working on it! Ludo’.
