From dc854446b8db22fd802adead460c8862f4b231d8 Mon Sep 17 00:00:00 2001
From: Daniel Noland <daniel@githedgehog.com>
Date: Mon, 24 Feb 2025 16:31:56 -0700
Subject: [PATCH] fix(build): Revert "sec(libxml2): SECURITY FIX Address
 CVE-2025-24928 / OSV-2025-74"

This experiment has run its course and we got a fair bit out of it IMO.
That said, 3 1/2 hour build times are not my jam so let's revert this.

This reverts commit 5b729375fd2bd3d7703e7e634d59e34f89351e9b.

Signed-off-by: Daniel Noland <daniel@githedgehog.com>
---
 default.nix | 12 ------------
 1 file changed, 12 deletions(-)

diff --git a/default.nix b/default.nix
index a6fbac8..7f84eb9 100644
--- a/default.nix
+++ b/default.nix
@@ -285,18 +285,6 @@ rec {
             "--enable-static-bin"
           ];
         });
-
-        # Remove this libxml2 override when nixpkgs updates to 2.13.6
-        # We don't actually need to override libxml2 other than for OSV-2025-74 (which this override
-        # addresses)
-        # See https://osv.dev/vulnerability/OSV-2025-74
-        libxml2 = super.libxml2.overrideAttrs (orig: rec {
-          version = "2.13.6";
-          src = super.fetchurl {
-            url = "mirror://gnome/sources/libxml2/${self.lib.versions.majorMinor version}/libxml2-${version}.tar.xz";
-            hash = "sha256-9FNIAwdSSWj3oE7GXmTyqDqCWXO80mCi52kb6CrnDJY=";
-          };
-        });
     };
 
   pkgs.dev =