From 19561f0e699205d42b6f6ecc05e15efc67b74b22 Mon Sep 17 00:00:00 2001
From: Katherina Walshe-Grey <git@qenya.tel>
Date: Tue, 21 Jan 2025 19:51:25 +0000
Subject: [PATCH] nix: permit "insecure" electron-31

---
 common/nix.nix          | 8 ++++++++
 home/qenya/packages.nix | 3 ++-
 2 files changed, 10 insertions(+), 1 deletion(-)

diff --git a/common/nix.nix b/common/nix.nix
index b904568..3eb2193 100644
--- a/common/nix.nix
+++ b/common/nix.nix
@@ -9,4 +9,12 @@
   };
   nix.nixPath = [ "nixpkgs=flake:nixpkgs" ];
   nixpkgs.config.allowUnfree = true;
+
+  # this is a dependency of feishin (used in qenya's home-manager). it does not actually have a known vulnerability,
+  # it's just unsuspported because Electron's support cycle is a ludicrously short 6 months.
+  # feishin's dev is going to be rewriting it without Electron (as "audioling").
+  # modern software development was a mistake.
+  nixpkgs.config.permittedInsecurePackages = [
+    "electron-31.7.7"
+  ];
 }
diff --git a/home/qenya/packages.nix b/home/qenya/packages.nix
index c7cbec5..503cdab 100644
--- a/home/qenya/packages.nix
+++ b/home/qenya/packages.nix
@@ -10,7 +10,8 @@ in
     hexyl # like `xxd` but cooler
     tree # like `ls -R` but nicer
     units
-    zip unzip
+    zip
+    unzip
 
     # Extremely important
     fortune