The tlsfuzzer/python-ecdsa library this project uses has a reported vulnerability (CVE-2024-23342), which causes this project to no longer build on NixOS (see romanz/trezor-agent#505 for report of this same issue).
I realize the nix package isn't official, but I assume it's only a matter of time before other projects also block the python-ecdsa library as well.
Additionally, the python-ecdsa maintainer has stated that the project shouldn't be used in production in tlsfuzzer/python-ecdsa#330 (comment)
I don't want people to use this library in production environments...
It's a teaching tool, it's a testing tool, it's absolutely not an production grade implementation.
tlsfuzzer/python-ecdsa#330 also links to a bunch more issues in other projects as well.
The tlsfuzzer/python-ecdsa library this project uses has a reported vulnerability (CVE-2024-23342), which causes this project to no longer build on NixOS (see romanz/trezor-agent#505 for report of this same issue).
I realize the nix package isn't official, but I assume it's only a matter of time before other projects also block the python-ecdsa library as well.
Additionally, the python-ecdsa maintainer has stated that the project shouldn't be used in production in tlsfuzzer/python-ecdsa#330 (comment)
tlsfuzzer/python-ecdsa#330 also links to a bunch more issues in other projects as well.