From cec6bc93977a970caf009cc874da739dd085c25b Mon Sep 17 00:00:00 2001
From: Pierre Bourdon <delroth@gmail.com>
Date: Mon, 18 Sep 2023 21:56:15 +0200
Subject: [PATCH] hydron: mark as vulnerable to CVE-2023-4863

(cherry picked from commit fd45d4a3cbe3184240a20fa0c48d6ffa287d424d)
---
 pkgs/servers/hydron/default.nix | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pkgs/servers/hydron/default.nix b/pkgs/servers/hydron/default.nix
index d0614dec6c10a..9a3381843b556 100644
--- a/pkgs/servers/hydron/default.nix
+++ b/pkgs/servers/hydron/default.nix
@@ -31,6 +31,7 @@ buildGoModule rec {
     homepage = "https://github.com/bakape/hydron";
     description = "High performance media tagger and organizer";
     license = with licenses; [ lgpl3Plus ];
+    knownVulnerabilities = [ "CVE-2023-4863" ];  # Via https://github.com/chai2010/webp dep
     maintainers = with maintainers; [ Madouura ];
   };
 }