From 261f9f80be301227896e73d09d3e93e7459d31f9 Mon Sep 17 00:00:00 2001
From: Katherina Walshe-Grey <git@qenya.tel>
Date: Tue, 21 Jan 2025 19:51:25 +0000
Subject: [PATCH] qenya: permit "insecure" electron-31

---
 home/qenya/packages.nix | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/home/qenya/packages.nix b/home/qenya/packages.nix
index c7cbec5..8e44f56 100644
--- a/home/qenya/packages.nix
+++ b/home/qenya/packages.nix
@@ -5,12 +5,21 @@ let
   isGraphical = osConfig.services.xserver.enable;
 in
 {
+  # this is a dependency of feishin. it does not actually have a known vulnerability,
+  # it's just unsuspported because Electron's support cycle is a ludicrously short 6 months.
+  # feishin's dev is going to be rewriting it without Electron (as "audioling").
+  # modern software development was a mistake.
+  nixpkgs.config.permittedInsecurePackages = [
+    "electron-31.7.7"
+  ];
+
   home.packages = with pkgs; [
     eza # like `ls` but fancier
     hexyl # like `xxd` but cooler
     tree # like `ls -R` but nicer
     units
-    zip unzip
+    zip
+    unzip
 
     # Extremely important
     fortune