Error: Package ‘python3.12-ecdsa-0.19.1’ is marked as insecure, refusing to evaluate

no_tutorials · November 7, 2025, 9:39pm

I’m trying to ‘rebuild’ and getting this error. I can’t remove the file (even though apparently it isn’t essential).

Not sure what to do.

error: Package ‘python3.12-ecdsa-0.19.1’ in /nix/store/********************-nixos-25.05/nixos/pkgs/development/python-modules/ecdsa/default.nix:43 is marked as insecure, refusing to evaluate.

(the ***'s represent the store hash).

Any help would be appreciated. Just looking to keep my system up to date so I can run the machine normally.

Thanks!

dotlambda · November 7, 2025, 10:04pm

You’re using some package that depends on ecdsa, probably something cryptocurrency-related.
See Nixpkgs Reference Manual for how to proceed anyway.
But it’s probably a better idea to migrate to a package without the insecure dependency.

waffle8946 · November 7, 2025, 10:35pm

nixos-rebuild build --show-trace |& grep 'while evaluating derivation'

will show you the chain of dependencies, and indicate which package is causing this. Then, remove that package from your config.