Skip to content

huge refactor #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
RGBCube wants to merge 362 commits into
base: master
Choose a base branch
from
Open

huge refactor #4

Changes from 1 commit
Commits
Show all changes
362 commits
Select commit Hold shift + click to select a range
25cf442
nixos-rebuild: drop as we have nh
RGBCube Mar 15, 2026
189296e
ssh: fix option types
RGBCube Mar 15, 2026
1cbfec1
fixes
RGBCube Mar 15, 2026
b3f2bb2
shell-utils: use rclone not rsync
RGBCube Mar 15, 2026
a857bdd
use-xdg-dirs: set android too
RGBCube Mar 15, 2026
b0b14b0
dns: mkForce resolv.conf contents
RGBCube Mar 15, 2026
0971172
tailscale: do not optimize gro stuff if no default gateway for now
RGBCube Mar 15, 2026
7c88e2f
network: fix nftables config
RGBCube Mar 15, 2026
914cd12
radicle: fix config for now
RGBCube Mar 15, 2026
08a42fd
nix: fix disabling nixos rebuild
RGBCube Mar 16, 2026
1c3f2bd
slop: make claude config "copy" and mutable
RGBCube Mar 16, 2026
e5f81a8
bat: use writeScriptBin for pager
RGBCube Mar 16, 2026
7924ef2
slop: enslop claude code
RGBCube Mar 16, 2026
37f1d4d
slop: add more statuslines
RGBCube Mar 16, 2026
1ff5739
slop: even more statuslines
RGBCube Mar 16, 2026
27acd67
slop: fix claude
RGBCube Mar 18, 2026
8d72a9d
slop.claude-code: add --rebuild and pass in arguments
RGBCube Mar 18, 2026
301e7a0
jujutsu: remove jj push aliases, use the thing they were aliasing in …
RGBCube Mar 18, 2026
5b5abbf
jujutsu: remove jj tug, replaced with jj bookmark advance
RGBCube Mar 18, 2026
7d44183
istanbul: fix usage of old property
RGBCube Mar 18, 2026
7ef0361
nix: auto gc on darwin too
RGBCube Mar 18, 2026
520323d
istanbul: fix supported filesystems
RGBCube Mar 18, 2026
42e31bc
istanbul: fix filesystem situation
RGBCube Mar 18, 2026
41d7ed0
istanbul: make autologin user root
RGBCube Mar 19, 2026
0d20144
nushell: add to /etc/shells
RGBCube Mar 19, 2026
bae9464
dns: reconfigure hickory-dns for all platforms
RGBCube Mar 19, 2026
5525f01
istanbul: fix users
RGBCube Mar 19, 2026
4c9a67a
dns: disable resolved for linux
RGBCube Mar 19, 2026
543b8ce
treewide: remove toml workaround
RGBCube Mar 19, 2026
275bc6c
ssh: fix TERM
RGBCube Mar 19, 2026
26e8fe2
nushell: use crash
RGBCube Mar 19, 2026
bed955d
terminfo-autogen: init
RGBCube Mar 20, 2026
f52939e
nushell: separate dump
RGBCube Mar 20, 2026
07ef8c8
terminfo-autogen: regen only every 6h
RGBCube Mar 20, 2026
fa9d22c
terminfo-autogen: rip
RGBCube Mar 22, 2026
166ff50
slop: leech newer
RGBCube Mar 22, 2026
5ec9236
secrets: update path
RGBCube Mar 22, 2026
780a4d1
istanbul: cleanup expressions
RGBCube Mar 22, 2026
ee55bdf
istanbul: lazyatime
RGBCube Mar 22, 2026
3f6c7ae
secrets: set ssh host key to agenix key
RGBCube Mar 23, 2026
ef4bd77
git: use gitMinimal, drop git-absorb
RGBCube Mar 23, 2026
690b00f
wisdom: drop
RGBCube Mar 23, 2026
69780a7
istanbul: fix disko
RGBCube Mar 23, 2026
fbcde84
nix: disable nixos-rebuild as we have nh
RGBCube Mar 23, 2026
062eaaa
nix: disable tools already handled by nh
RGBCube Mar 23, 2026
f5be151
linux-kernel: use default packages
RGBCube Mar 24, 2026
ef27a97
Revert "wisdom: drop"
RGBCube Mar 24, 2026
3b1248a
secrets: rekey
RGBCube Mar 24, 2026
1395f82
nix: reenable switch to config
RGBCube Mar 24, 2026
d75ae43
flake: reorder
RGBCube Mar 24, 2026
62ec481
persist: init
RGBCube Mar 25, 2026
99ddc7c
network: fix, use nm
RGBCube Mar 25, 2026
ef7df4c
treewide: fix initrd kernel module support
RGBCube Mar 25, 2026
06bd4a7
treewide: add iso module, fix persist, fix initrd modules and kernelm…
RGBCube Mar 25, 2026
7480147
treewide: merge flake modules
RGBCube Mar 27, 2026
8fe1ac6
stub-ld: nuke
RGBCube Mar 27, 2026
e604961
treewide: add commonModules and merge files
RGBCube Mar 27, 2026
b623f52
ssh: add initrd ssh
RGBCube Mar 27, 2026
40fa4cc
unfree: use commonModule
RGBCube Mar 27, 2026
8ba80d6
ripgrep: actually use config
RGBCube Mar 31, 2026
4a0a433
tailscale: use singleton
RGBCube Mar 31, 2026
7aa1d17
generators: separate toCliFlagList and toCliArgumentList
RGBCube Mar 31, 2026
47a49ce
keys: move into flake module
RGBCube Mar 31, 2026
b74a0c3
istanbul: fix bcachefs unlock
RGBCube Mar 31, 2026
4f20d62
persist: fix
RGBCube Mar 31, 2026
d466718
hickory-dns: add meta.mainProgram
RGBCube Mar 31, 2026
9a66d76
version-control: add url insteadOf to git for ssh and simplify config
RGBCube Apr 4, 2026
d89c2ae
slop: remove bad mcp
RGBCube Apr 7, 2026
391815b
documentation: disable nixos docs
RGBCube Apr 12, 2026
5935999
nix: disable entire system tools as we have nh
RGBCube Apr 12, 2026
d0ca776
slop: slop up claude code more
RGBCube Apr 13, 2026
fbfa0c5
jujutsu: sign on push
RGBCube Apr 15, 2026
304029b
slop: redeem claude
RGBCube Apr 19, 2026
b4b047c
slop: fetch newest version on --rebuild
RGBCube Apr 19, 2026
e0201c2
ssh: enable systemd initrd network
RGBCube Apr 22, 2026
0258cd1
slop: fix clod
RGBCube Apr 23, 2026
950b0b2
radicle: fix
RGBCube Apr 23, 2026
4f8b8a6
ssh: remove old IPv4-based ssh config
RGBCube Apr 24, 2026
2ef2b05
jujutsu: auto track own bookmarks
RGBCube Apr 24, 2026
2b0d77f
keepassxc: disable update checking
RGBCube Apr 28, 2026
de401cc
slop: fix
RGBCube Apr 28, 2026
e76e24f
keepassxc: declare config
RGBCube Apr 28, 2026
c621ef8
keepassxc: more settings
RGBCube Apr 28, 2026
1e2f08d
keepassxc: sort config options better and pin version
RGBCube Apr 28, 2026
7b6da48
flake-outputs: preserve meta
RGBCube Apr 30, 2026
6c40e64
treewide: move options modules to options/
RGBCube Apr 30, 2026
090f926
treewide: move packages to packages/
RGBCube Apr 30, 2026
51bf7fc
editor: init from helix and nano
RGBCube Apr 30, 2026
3d9f2a3
istanbul: fix bcachefs subvolume mount script
RGBCube May 1, 2026
fb240a9
treewide: cleanup, use catAttrs more
RGBCube May 1, 2026
ea95080
hardware: slurp up sound and bluetooth
RGBCube May 1, 2026
7a4a9fa
treewide: fixes
RGBCube May 1, 2026
e450f12
istanbul: fix offline installer paths, remove redundant ones
RGBCube May 1, 2026
34b11ac
network: format
RGBCube May 1, 2026
1bd8707
hardware: format
RGBCube May 1, 2026
13cd840
linux-boot: enable systemd-boot commandline editor
RGBCube May 1, 2026
3cc42d7
treewide: depend on system flake inputs and ifd drvs
RGBCube May 1, 2026
3aab017
flake: update and fix
RGBCube May 2, 2026
4e8b8bc
treewide: remove redundant options
RGBCube May 2, 2026
0ace474
kernel: fix sysctl for CAP_BPF requirements
RGBCube May 2, 2026
09f12ad
nix: nuke profiles with nullfs
RGBCube May 2, 2026
130f1a7
treewide: use singleton more
RGBCube May 2, 2026
0141df4
treewide: use singleton even more
RGBCube May 2, 2026
ec8f87f
nushell: use concatMapAttrs
RGBCube May 2, 2026
0462462
persist: set mount level options properly
RGBCube May 2, 2026
86949f5
persist: own the bcachefs_filesystem properly, let nodes declare bcac…
RGBCube May 3, 2026
784fcd3
disko: format each disk
RGBCube May 3, 2026
23a6285
persist: own the / tmpfs
RGBCube May 3, 2026
41c39ee
linux-boot-redundancy: init
RGBCube May 3, 2026
7256f1c
kernel: support nullfs
RGBCube May 3, 2026
6189a22
kernel: fix option name
RGBCube May 4, 2026
a189e95
istanbul: set root password
RGBCube May 4, 2026
0276c40
istanbul: import supportedFilesystems from the to-be-installed os
RGBCube May 4, 2026
abb1c16
hickory-dns: fix config
RGBCube May 4, 2026
538c4d1
flake: update
RGBCube May 4, 2026
6f6f5d8
jj: set default command to log
RGBCube May 4, 2026
f83a085
mutable-users: remove todo, it works with kanidm
RGBCube May 4, 2026
6f0175e
helium: fixes
RGBCube May 4, 2026
e4fd617
helium: fix
RGBCube May 5, 2026
cf1e76b
helium: declaratively configure keepassXC browser
RGBCube May 5, 2026
73c93f8
helium: pin web archives and keepassxc-browser
RGBCube May 5, 2026
14e8724
helium: add scriptlets
RGBCube May 5, 2026
3a6e9c4
helium: nuke yt shorts
RGBCube May 6, 2026
402ed90
helium: better filter lists
RGBCube May 6, 2026
9a695fb
slop: fix clod perms
RGBCube May 6, 2026
bbfe4c2
helium: add comment
RGBCube May 6, 2026
65fc49b
nix: fix profiles mount
RGBCube May 6, 2026
360237f
linux-boot-redundancy: cleanup
RGBCube May 7, 2026
98fe79e
helium: fixes
RGBCube May 7, 2026
891ec06
nix: unfuck per user profile gcroot mount so that register nix paths …
RGBCube May 7, 2026
bd8c23f
disko: slop
RGBCube May 8, 2026
1308038
istanbul: fix installer script
RGBCube May 8, 2026
8425434
zen: drop
RGBCube May 8, 2026
ddd55aa
boot: enable emergency shell access
RGBCube May 8, 2026
0c00fd1
ssh: fix initrd ssh
RGBCube May 8, 2026
6982b79
boot: fix emergencyAccess
RGBCube May 9, 2026
5cc4055
persist: changes
RGBCube May 9, 2026
21e17e6
ssh: fix initrd ssh
RGBCube May 9, 2026
b79a171
persist: sequential to avoid EBUSY
RGBCube May 9, 2026
2dfcdd9
slop: fix
RGBCube May 12, 2026
4fb4cdc
slop: fix
RGBCube May 12, 2026
cdc9ebc
network: drop redundant wireless enable false
RGBCube May 20, 2026
694acea
jujutsu: add fork alias
RGBCube May 21, 2026
6ef9ca5
jujutsu: fix jj fork
RGBCube May 21, 2026
918c03e
jujutsu: fix
RGBCube May 21, 2026
c7c8788
jujutsu: better
RGBCube May 21, 2026
5212ce9
jujutsu: track origin's master too
RGBCube May 22, 2026
f4f96db
web-browser: put archive and kill sticky/force copy paste stuff in a …
RGBCube May 23, 2026
b3e5f3d
web-browser: add indication to toggles
RGBCube May 23, 2026
51c69cf
web-browser: put indication for toggles in top left
RGBCube May 23, 2026
287d7ae
slop: never delete
RGBCube May 25, 2026
4ce6031
dns: rename to resolver, make hickory-dns a modular service
RGBCube May 25, 2026
2dc8a65
nix: bad idea mounting over per-user profiles
RGBCube May 25, 2026
3540586
networking: add mac policy
RGBCube May 25, 2026
e219b98
persist: remove main mountpoint, fix post-stage2 units too
RGBCube May 25, 2026
4d598b3
flake: make nh default package
RGBCube May 25, 2026
f53ca9c
default: specify flake
RGBCube May 25, 2026
2b7fbc2
network: add lib'.magic.ula and use it in resolver
RGBCube May 27, 2026
a3d04e6
network: disable dhcpd for good
RGBCube May 27, 2026
f1df930
agents: new rules
RGBCube May 28, 2026
dc10b8b
istanbul: add comment to make tree-sitter work nicely in nushell
RGBCube May 28, 2026
d0c11fc
dns: authoritative server
RGBCube May 28, 2026
8bab18c
hickory-dns: use getExe'
RGBCube May 28, 2026
5d08746
linux-boot-redundancy: fsync
RGBCube May 28, 2026
00aeb7d
keepassxc: don't minimize
RGBCube May 28, 2026
9aae97a
lib: lift to specialArgs
RGBCube May 28, 2026
6ba6683
agentsmd: fix
RGBCube May 28, 2026
de9f6a6
ssh: use all identityPaths
RGBCube May 28, 2026
5c921f7
vienna: init
RGBCube May 28, 2026
b173fd2
lib: don't use deprecated aliases
RGBCube May 29, 2026
78df5e0
treewide: better module input isolation
RGBCube May 29, 2026
5d8f230
agentsmd: update
RGBCube May 29, 2026
4645927
slop: patches
RGBCube May 29, 2026
048b720
use-xdg-dirs: gradle
RGBCube May 30, 2026
bc01fe8
jujutsu: fix fork alias
RGBCube May 30, 2026
e272829
corne-firmware: use brightness, music, bt etc keys in the mouse layer…
RGBCube May 30, 2026
ff4cd0d
corne-firmare: copy the rest of the keys in the top row from nav to m…
RGBCube May 30, 2026
6b8d35a
nushell: run as login shell
RGBCube May 30, 2026
d17073e
agentsmd: update
RGBCube May 30, 2026
7135b49
corne-firmware: pin zmk to a commit, add settings-reset firmware
RGBCube May 30, 2026
90129b1
dns: fix ULA bind issue on darwin
RGBCube May 31, 2026
fb4482d
darwin-fast-workspace-switch: unslop
RGBCube May 31, 2026
510015b
clean-tmp: drop, as tmp is a tmpfs
RGBCube Jun 1, 2026
77a8325
dns: use mkDerivation rather than runCommandCC
RGBCube Jun 1, 2026
84fa1e6
lib: add asShell and use it
RGBCube Jun 1, 2026
87bea05
treewide: remove actually unused and will stay unused imports
RGBCube Jun 1, 2026
5537e38
darwin-wm: fix wrong args to task.new
RGBCube Jun 1, 2026
bc46e6b
darwin-wm: overhaul
RGBCube Jun 1, 2026
97a00a0
slop: init codex
RGBCube Jun 1, 2026
36a7e78
darwin-wm: rebind basically everything
RGBCube Jun 3, 2026
bff6ae2
agentsmd: update
RGBCube Jun 4, 2026
7896ce9
slop: allow reading nix store and profiles
RGBCube Jun 6, 2026
880f6e6
nushell.extraConfig: source files instead
RGBCube Jun 6, 2026
3e5f060
treewide: use <| more
RGBCube Jun 6, 2026
4ca0668
nushell: drop some aliases, system.build.setEnvironmentNu
RGBCube Jun 6, 2026
d9b92d5
tailscale: drop alias
RGBCube Jun 6, 2026
202651f
packages: drop moreutils, sd, timg
RGBCube Jun 6, 2026
9e026ae
claude: fix
RGBCube Jun 6, 2026
54915d1
nushell: overhaul
RGBCube Jun 6, 2026
3d9ad54
agentsmd: update
RGBCube Jun 6, 2026
f31f800
slop: forbid stuff
RGBCube Jun 6, 2026
722f058
helium: disable battery saver
RGBCube Jun 6, 2026
496c777
unfree: change package name
RGBCube Jun 6, 2026
20ba39a
hickory-dns: set directory better
RGBCube Jun 6, 2026
aa9a9c5
nushell: extraInit too
RGBCube Jun 6, 2026
5e6a11e
installer: make script better
RGBCube Jun 6, 2026
e090b06
opencode: use system theme
RGBCube Jun 8, 2026
cb1760c
helium: remove unused extensions
RGBCube Jun 8, 2026
3bf2cec
slop: instructions
RGBCube Jun 8, 2026
8331385
tailscale: drop
RGBCube Jun 8, 2026
5604b76
treewide: use r###''### for raw strings
RGBCube Jun 8, 2026
a9b72c3
lib.shell: reformat
RGBCube Jun 8, 2026
1e8641c
nushell.colors: no more ifd
RGBCube Jun 8, 2026
87b2263
hickory-dns: reformat
RGBCube Jun 8, 2026
79f7236
managed-files: init
RGBCube Jun 8, 2026
008016f
helium: use managed-files
RGBCube Jun 8, 2026
242e874
vienna: declare imageSize and imageFormat
RGBCube Jun 8, 2026
e9a962e
nixs: init
RGBCube Jun 9, 2026
0ced81f
treewide: consistency for ...arguments
RGBCube Jun 9, 2026
617f963
nixs: relax, bro
RGBCube Jun 9, 2026
9c6f8ef
options.dns: init
RGBCube Jun 9, 2026
6049114
options.dns: fix DS handling
RGBCube Jun 10, 2026
94d3935
options.dns: fix junk non-apex DS records being included in the zone …
RGBCube Jun 10, 2026
b8d238c
options.dns: more better
RGBCube Jun 10, 2026
39bf87f
options.dns: fat TXT record support
RGBCube Jun 10, 2026
fa70f98
options.dns: format
RGBCube Jun 10, 2026
5f38656
modules.dns: move to new dns system
RGBCube Jun 10, 2026
8cad2ff
hickory-dns: add restart trigger
RGBCube Jun 10, 2026
d9a763d
dns: support TTLs and classes
RGBCube Jun 10, 2026
8c400d1
slop: don't ban nix commands, just make them use nixs
RGBCube Jun 10, 2026
4aceefd
network: i don't use doggo
RGBCube Jun 10, 2026
b671b9d
slop: cargo nextest rather
RGBCube Jun 10, 2026
759558c
editor: no kotlin lsp
RGBCube Jun 11, 2026
3a1dede
agentsmd: update
RGBCube Jun 11, 2026
493737a
lib: refactor and make each part a module-like thing, and move dns ty…
RGBCube Jun 12, 2026
d4885e4
agentsmd: update
RGBCube Jun 12, 2026
2d0bdb6
nushell: move nushell.config.nu into the nix module
RGBCube Jun 12, 2026
50186d6
agentsmd: update
RGBCube Jun 12, 2026
2eed54a
nushell: fix
RGBCube Jun 16, 2026
fc4de7f
slop: fix clod patch
RGBCube Jun 16, 2026
82c496d
web-browser: toggle selections bookmark
RGBCube Jun 18, 2026
7f55b59
web-browser: fix
RGBCube Jun 19, 2026
c86eeea
managed-files: fix mainProgram
RGBCube Jun 19, 2026
cf3390b
managed-files: restart cfprefsd on managed preferences write
RGBCube Jun 19, 2026
f383c7e
web-browser: account for ::before ::after content in toggle selectabi…
RGBCube Jun 19, 2026
b97c2b3
fuck the whatwg url parser
RGBCube Jun 19, 2026
ad12da6
web-browser: coal
RGBCube Jun 19, 2026
5ff9511
web-browser: add filter
RGBCube Jun 19, 2026
6a161e2
ghostty: FUCK
RGBCube Jun 19, 2026
70b65d5
vienna: define imageBuilder well
RGBCube Jun 19, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
secrets: set ssh host key to agenix key
  • Loading branch information
@RGBCube
RGBCube committed Mar 23, 2026
commit 3f6c7aea7bdb69313811322b263d0eb6d165cce3
24 changes: 17 additions & 7 deletions modules/secrets.mod.nix
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,15 +10,25 @@ let
in
{ inputs, ... }:
{
flake.nixosModules.secrets = {
imports = [
inputs.agenix.nixosModules.age
flake.nixosModules.secrets =
{ config, lib, ... }:
let
inherit (lib.lists) head singleton;
in
{
imports = [
inputs.agenix.nixosModules.age

aliasModule
];
aliasModule
];

age.identityPaths = [ "/media/key/.secrets.key" ];
};
age.identityPaths = [ "/media/key/.secrets.key" ];

services.openssh.hostKeys = singleton {
type = "ed25519";
path = head config.age.identityPaths;
};
};

flake.darwinModules.secrets =
{ config, ... }:
Expand Down