2016-06-08 22:58 GMT+03:00 Teo Klestrup Röijezon <t...@nullable.se>: > So there will no longer be a way to pin Haskell dependencies? That's a bit > annoying. I can understand the desire to keep security-critical packages > like OpenSSL and user-facing tools like git-annex up to date, but at the > same time there are many non-critical dependencies that I wouldn't want to > go back and patch my one-off deployments for updates of.
There is a way. I experimented with a custom derivation which: 1. Has fixed Hackage snapshot metadata (tarball) 2. Initializes cabal from that tarball, instead of downloading the "recent". 3. Builds in normal `cabal install` way Yes, it rebuilds every dependency every time. _______________________________________________ nix-dev mailing list nix-dev@lists.science.uu.nl http://lists.science.uu.nl/mailman/listinfo/nix-dev