mirror of
https://github.com/NixOS/nix
synced 2024-09-19 23:03:53 -04:00
b5947b55e2
As discussed in the maintainer meeting on 2024-01-29.
Mainly this is to avoid a situation where the name is parsed and
treated as a file name, mostly to protect users.
.-* and ..-* are also considered invalid because they might strip
on that separator to remove versions. Doesn't really work, but that's
what we decided, and I won't argue with it, because .-* probably
doesn't seem to have a real world application anyway.
We do still permit a 1-character name that's just "-", which still
poses a similar risk in such a situation. We can't start disallowing
trailing -, because a non-zero number of users will need it and we've
seen how annoying and painful such a change is.
What matters most is preventing a situation where . or .. can be
injected, and to just get this done.
(cherry picked from commit
|
||
|---|---|---|
| .. | ||
| rl-next | ||
| src | ||
| theme | ||
| _redirects | ||
| anchors.jq | ||
| book.toml | ||
| custom.css | ||
| generate-builtin-constants.nix | ||
| generate-builtins.nix | ||
| generate-manpage.nix | ||
| generate-settings.nix | ||
| generate-store-info.nix | ||
| generate-store-types.nix | ||
| generate-xp-features-shortlist.nix | ||
| generate-xp-features.nix | ||
| local.mk | ||
| quote-literals.xsl | ||
| redirects.js | ||
| utils.nix | ||