move podmand security options to podman aspect

aspects/common/security.nix

@@ -1,14 +1,13 @@
 { ... }:
 {
-  flake.modules.nixos.common-security = { ... }: {
+  flake.modules.nixos.common-security =
-    security = {
+    { ... }:
-      unprivilegedUsernsClone = true; # Needed for rootless podman
+    {
-      sudo = {
+      security.sudo = {
         wheelNeedsPassword = false;
         extraConfig = ''
           Defaults lecture = never
         '';
       };
     };
-  };
 }

aspects/podman.nix

@@ -1,15 +1,24 @@
 { ... }:
 {
-  flake.modules.nixos.podman = { config, lib, pkgs, ... }: {
+  flake.modules.nixos.podman =
-    virtualisation.podman = {
+    {
-      enable = true;
+      config,
-      autoPrune.enable = true;
+      lib,
-      extraPackages = [ pkgs.podman-compose ];
+      pkgs,
-    };
+      ...
+    }:
+    {
+      virtualisation.podman = {
+        enable = true;
+        autoPrune.enable = true;
+        extraPackages = [ pkgs.podman-compose ];
+      };
 
-    systemd = {
+      security.unprivilegedUsernsClone = true; # Needed for rootless podman
-      services.podman-auto-update.enable = true;
+
-      timers.podman-auto-update.enable = true;
+      systemd = {
+        services.podman-auto-update.enable = true;
+        timers.podman-auto-update.enable = true;
+      };
     };
-  };
 }