work around CVE-2024-23342 for pkgs hwi, trezor

2025-11-22 12:58:19 +01:00 · 2025-11-22 12:58:19 +01:00 · e6e3a13dbb
commit e6e3a13dbb
parent c4cd252753
4 changed files with 20 additions and 2 deletions
--- a/modules/hardware-wallets.nix
+++ b/modules/hardware-wallets.nix
@ -62,7 +62,7 @@ in {
      });
    })
    (mkIf cfg.trezor {
-      environment.systemPackages = [ pkgs.python3.pkgs.trezor ];
+      environment.systemPackages = [ config.nix-bitcoin.pkgs.pyPkgs.nbPython3PackagesWithUnlockedEcdsa.trezor ];
      # Don't use rules from nixpkgs because we want to use our own group.
      services.udev.packages = lib.singleton (pkgs.writeTextFile {
        name = "trezord-udev-rules";