mbedtls_2: mark as vulnerable because EOL (#450688)

2025-10-10 21:20:39 +00:00
parent 6f88108b78 915eda78ce
commit a0c659fc3e
1 changed files with 3 additions and 0 deletions
--- a/pkgs/development/libraries/mbedtls/generic.nix
+++ b/pkgs/development/libraries/mbedtls/generic.nix
@@ -72,5 +72,8 @@ stdenv.mkDerivation rec {
    ];
    platforms = platforms.all;
    maintainers = with maintainers; [ raphaelr ];
+    knownVulnerabilities = lib.optionals (lib.versionOlder version "3.0") [
+      "Mbed TLS 2 is not maintained anymore. Please migrate to newer versions"
+    ];
  };
 }