From 6aef21ec8f325ba0349d125e7816fa188ab17007 Mon Sep 17 00:00:00 2001
From: Ryan Yin <xiaoyin_c@qq.com>
Date: Wed, 11 Sep 2024 23:40:22 +0800
Subject: [PATCH] fix: revert nix to 2.22 to avoid CVE-2024-45593

---
 modules/base.nix | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/modules/base.nix b/modules/base.nix
index a38ebeff..721c7485 100644
--- a/modules/base.nix
+++ b/modules/base.nix
@@ -19,7 +19,8 @@
 
   # auto upgrade nix to the unstable version
   # https://github.com/NixOS/nixpkgs/blob/nixos-unstable/pkgs/tools/package-management/nix/default.nix#L284
-  nix.package = pkgs.nixVersions.latest;
+  # nix.package = pkgs.nixVersions.latest;
+  nix.package = pkgs.nixVersions.nix_2_22;
 
   environment.systemPackages = with pkgs; [
     git # used by nix flakes