All my nix stuff, in a single flake
William
461d3d793d
Flake lock file updates:
• Updated input 'disko':
'github:nix-community/disko/5ad85c82cc52264f4beddc934ba57f3789f28347?narHash=sha256-PAqwnsBSI9SVC2QugvQ3xeYCB0otOwCacB1ueQj2tgw%3D' (2026-03-19)
→ 'github:nix-community/disko/32f4236bfc141ae930b5ba2fb604f561fed5219d?narHash=sha256-gC9Cp5ibBmGD5awCA9z7xy6MW6iJufhazTYJOiGlCUI%3D' (2026-04-19)
• Updated input 'flake-parts':
'github:hercules-ci/flake-parts/f20dc5d9b8027381c474144ecabc9034d6a839a3?narHash=sha256-rHuJtdcOjK7rAHpHphUb1iCvgkU3GpfvicLMwwnfMT0%3D' (2026-03-01)
→ 'github:hercules-ci/flake-parts/3107b77cd68437b9a76194f0f7f9c55f2329ca5b?narHash=sha256-91qqW8lhL7TLwgQWijoGBbiD4t7/q75KTi8NxjVmSmA%3D' (2026-04-01)
• Updated input 'flake-parts/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/c185c7a5e5dd8f9add5b2f8ebeff00888b070742?narHash=sha256-e%2B/T/pmEkLP6BHhYjx6GmwP5ivonQQn0bJdH9YrRB%2BQ%3D' (2026-03-01)
→ 'github:nix-community/nixpkgs.lib/333c4e0545a6da976206c74db8773a1645b5870a?narHash=sha256-%2BU7gF3qxzwD5TZuANzZPeJTZRHS29OFQgkQ2kiTJBIQ%3D' (2026-03-29)
• Updated input 'home-manager':
'github:nix-community/home-manager/7c046c63ac3b467c1d589b99d531da5b6520825a?narHash=sha256-3q1xsREjqdVIIwQQDZQ9y0YdBzP8gAxdwKoKnZSzJtU%3D' (2026-03-26)
→ 'github:nix-community/home-manager/5d5640599a0050b994330328b9fd45709c909720?narHash=sha256-0R3Yow/NzSeVGUke5tL7CCkqmss4Vmi6BbV6idHzq/8%3D' (2026-04-21)
• Updated input 'nix-ai-tools':
'github:numtide/llm-agents.nix/8348bf988abbbafa5f105f819a6153f1dbe22a2e?narHash=sha256-Q2dh3zBu3oixlEWAbtXGL44O6jtEP/Tog0P44qu0RJY%3D' (2026-03-26)
→ 'github:numtide/llm-agents.nix/bb6fb1ef73d5a46877a3fc623fedef5cbf3939e3?narHash=sha256-Uo1SvxXlqcxbpoew8deTAbBWDlA/LnkiXQ1PIb95fUA%3D' (2026-04-22)
• Updated input 'nix-ai-tools/blueprint':
'github:numtide/blueprint/06ee7190dc2620ea98af9eb225aa9627b68b0e33?narHash=sha256-bLqwib%2BrtyBRRVBWhMuBXPCL/OThfokA%2Bj6%2BuH7jDGU%3D' (2026-02-18)
→ 'github:numtide/blueprint/56131e8628f173d24a27f6d27c0215eff57e40dd?narHash=sha256-Dt9t1TGRmJFc0xVYhttNBD6QsAgHOHCArqGa0AyjrJY%3D' (2026-04-15)
• Updated input 'nix-ai-tools/bun2nix':
'github:nix-community/bun2nix/c843f477b15f51151f8c6bcc886954699440a6e1?narHash=sha256-v3QaK9ugy9bN9RXDnjw0i2OifKmz2NnKM82agtqm/UY%3D' (2026-02-12)
→ 'github:Mic92/bun2nix/648d293c51e981aec9cb07ba4268bc19e7a8c575?narHash=sha256-%2B/VOe8XGq5klpU%2BI19D%2B3TcaR7o%2BCwbq67KNF7mcFak%3D' (2026-04-14)
• Updated input 'nix-ai-tools/flake-parts':
'github:hercules-ci/flake-parts/f20dc5d9b8027381c474144ecabc9034d6a839a3?narHash=sha256-rHuJtdcOjK7rAHpHphUb1iCvgkU3GpfvicLMwwnfMT0%3D' (2026-03-01)
→ 'github:hercules-ci/flake-parts/3107b77cd68437b9a76194f0f7f9c55f2329ca5b?narHash=sha256-91qqW8lhL7TLwgQWijoGBbiD4t7/q75KTi8NxjVmSmA%3D' (2026-04-01)
• Updated input 'nix-ai-tools/nixpkgs':
'github:NixOS/nixpkgs/fdc7b8f7b30fdbedec91b71ed82f36e1637483ed?narHash=sha256-a%2B%2BtZ1RQsDb1I0NHrFwdGuRlR5TORvCEUksM459wKUA%3D' (2026-03-23)
→ 'github:NixOS/nixpkgs/b86751bc4085f48661017fa226dee99fab6c651b?narHash=sha256-a8BYi3mzoJ/AcJP8UldOx8emoPRLeWqALZWu4ZvjPXw%3D' (2026-04-16)
• Updated input 'nix-ai-tools/treefmt-nix':
'github:numtide/treefmt-nix/71b125cd05fbfd78cab3e070b73544abe24c5016?narHash=sha256-6E/yhXP7Oy/NbXtf1ktzmU8SdVqJQ09HC/48ebEGBpk%3D' (2026-03-12)
→ 'github:numtide/treefmt-nix/790751ff7fd3801feeaf96d7dc416a8d581265ba?narHash=sha256-pc20NRoMdiar8oPQceQT47UUZMBTiMdUuWrYu2obUP0%3D' (2026-04-08)
• Updated input 'nix-flatpak':
'github:gmodena/nix-flatpak/123fe29340a5b8671367055b75a6e7c320d6f89a?narHash=sha256-Sbh037scxKFm7xL0ahgSCw%2BX2/5ZKeOwI2clqrYr9j4%3D' (2026-01-17)
→ 'github:gmodena/nix-flatpak/479e19f1decb390aa5b75cae13ddf87d763c74cc?narHash=sha256-edvwHiFhgOiwywt6/Iwe%2BsSn6ybhU3WZGnIoiGcKjfQ%3D' (2026-04-19)
• Updated input 'nix-index-database':
'github:nix-community/nix-index-database/55b588747fa3d7fc351a11831c4b874dab992862?narHash=sha256-gdYe9wTPl4ignDyXUl1LlICWj41%2BS0GB5lG1fKP17%2BA%3D' (2026-03-22)
→ 'github:nix-community/nix-index-database/c43246d4e9e506178b69baed075d797ec2d873e2?narHash=sha256-oHVcvP2Ahhj1KUsEzp%2B2BQF55/r5VSa3QxdPdwE1p00%3D' (2026-04-22)
• Updated input 'nixos-cli':
'github:nix-community/nixos-cli/23e7540706eb5271f4ab37b9e52532637d57c63b?narHash=sha256-KtGThScvwNbCm%2B6XwUKRfpTjJVKV9SHswm29px3m4pw%3D' (2026-03-25)
→ 'github:nix-community/nixos-cli/3d02dc9988106743164ffb9e6b8838140f8c66c4?narHash=sha256-qW2K6cxmiiRkaf86T2YHr/q2vm9Ozy42bodUNTfbrJY%3D' (2026-04-17)
• Updated input 'nixos-cli/flake-parts':
'github:hercules-ci/flake-parts/f20dc5d9b8027381c474144ecabc9034d6a839a3?narHash=sha256-rHuJtdcOjK7rAHpHphUb1iCvgkU3GpfvicLMwwnfMT0%3D' (2026-03-01)
→ 'github:hercules-ci/flake-parts/3107b77cd68437b9a76194f0f7f9c55f2329ca5b?narHash=sha256-91qqW8lhL7TLwgQWijoGBbiD4t7/q75KTi8NxjVmSmA%3D' (2026-04-01)
• Updated input 'nixos-cli/flake-parts/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/c185c7a5e5dd8f9add5b2f8ebeff00888b070742?narHash=sha256-e%2B/T/pmEkLP6BHhYjx6GmwP5ivonQQn0bJdH9YrRB%2BQ%3D' (2026-03-01)
→ 'github:nix-community/nixpkgs.lib/333c4e0545a6da976206c74db8773a1645b5870a?narHash=sha256-%2BU7gF3qxzwD5TZuANzZPeJTZRHS29OFQgkQ2kiTJBIQ%3D' (2026-03-29)
• Updated input 'nixos-cli/nixpkgs':
'github:NixOS/nixpkgs/608d0cadfed240589a7eea422407a547ad626a14?narHash=sha256-M0yS4AafhKxPPmOHGqIV0iKxgNO8bHDWdl1kOwGBwRY%3D' (2026-03-08)
→ 'github:NixOS/nixpkgs/9d29d5f667d7467f98efc31881e824fa586c927e?narHash=sha256-omax7atcZbol%2B6HJ2RLpP%2BZCFcPa5bZ65Hn71RufeWQ%3D' (2026-04-10)
• Updated input 'nixos-cli/optnix':
'github:water-sucks/optnix/e3a8a63d8a9dcad01f499b2ece87db3545443f05?narHash=sha256-kZ1eLvCxfN%2B6RYQdcWUdIf%2B2WuiNiAfbJq%2BVetT%2Bkos%3D' (2026-02-02)
→ 'github:water-sucks/optnix/853323ece22fb1ffed19cea4ae22804032034a8e?narHash=sha256-a8FWQZgqaS7o484iH7dFK%2BF9t7oMahKbcH2piIwUwFc%3D' (2026-03-26)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/46db2e09e1d3f113a13c0d7b81e2f221c63b8ce9?narHash=sha256-4hAV26quOxdC6iyG7kYaZcM3VOskcPUrdCQd/nx8obc%3D' (2026-03-24)
→ 'github:nixos/nixpkgs/b12141ef619e0a9c1c84dc8c684040326f27cdcc?narHash=sha256-ZSK0NL4a1BwVbbTBoSnWgbJy9HeZFXLYQizjb2DPF24%3D' (2026-04-18)
• Updated input 'nixpkgs-stable':
'github:nixos/nixpkgs/1073dad219cb244572b74da2b20c7fe39cb3fa9e?narHash=sha256-tFwzTI0DdDzovdE9%2BRas6CUss0yn8P9XV4Ja6RjA%2BnU%3D' (2026-03-24)
→ 'github:nixos/nixpkgs/e07580dae39738e46609eaab8b154de2488133ce?narHash=sha256-p68udKWWh7%2BV4ZPpcMDq0gTHWNZJnr4JPI%2BkHPPE40o%3D' (2026-04-19)
• Updated input 'noctalia':
'github:noctalia-dev/noctalia-shell/f19a19cfc6dcf2cd73b1d9d11460cbe363b0c967?narHash=sha256-1aPBtIO74L/S4ymQ//qgWJfjknjpAlKEPULOL833wOc%3D' (2026-03-27)
→ 'github:noctalia-dev/noctalia-shell/d7b68652e79bce5813dc4fea7e51636a5da3e1b7?narHash=sha256-riCnQWAxvltNd6KrkzQLdG2EMxODNxjQOB2Z67DA4KU%3D' (2026-04-21)
• Updated input 'noctalia/noctalia-qs':
'github:noctalia-dev/noctalia-qs/070340934ca374bc770fd500a0fd7b3210f06b1c?narHash=sha256-N131zILQ06ZNEvtgtjjFZ0N5qEI70rKKhCZsBcZoDH8%3D' (2026-03-26)
→ 'github:noctalia-dev/noctalia-qs/75d180c28a9ab4470e980f3d6f706ad6c5213add?narHash=sha256-j35EWhKoGhKrfcXcAOpoRVgXEPQt41Eukji/h59cnjk%3D' (2026-04-19)
• Updated input 'noctalia/noctalia-qs/treefmt-nix':
'github:numtide/treefmt-nix/3710e0e1218041bbad640352a0440114b1e10428?narHash=sha256-IjU1FxYqm%2BVDe5qIOxoW%2BpISBlGvVApRjiw/Y/ttJzY%3D' (2026-03-04)
→ 'github:numtide/treefmt-nix/790751ff7fd3801feeaf96d7dc416a8d581265ba?narHash=sha256-pc20NRoMdiar8oPQceQT47UUZMBTiMdUuWrYu2obUP0%3D' (2026-04-08)
• Updated input 'stylix':
'github:danth/stylix/e31c79f571c5595a155f84b9d77ce53a84745494?narHash=sha256-Poz9WTjiRlqZIf197CrMMJfTifZhrZpbHFv0eU1Nhtg%3D' (2026-03-21)
→ 'github:danth/stylix/e3861617645a43c9bbefde1aa6ac54dd0a44bfa9?narHash=sha256-Tl1aZVP5EIlT%2Bk0%2BiAKH018GLHJpLz3hhJ0LNQOWxCc%3D' (2026-04-14)
• Updated input 'stylix/firefox-gnome-theme':
'github:rafaelmardojai/firefox-gnome-theme/f7ffd917ac0d253dbd6a3bf3da06888f57c69f92?narHash=sha256-1XPewtGMi%2B9wN9Ispoluxunw/RwozuTRVuuQOmxzt%2BA%3D' (2025-12-04)
→ 'github:rafaelmardojai/firefox-gnome-theme/179704030c5286c729b5b0522037d1d51341022c?narHash=sha256-2veEED0Fg7Fsh81tvVDNYR6SzjqQxa7hbi18Jv4LWpM%3D' (2026-04-03)
• Updated input 'stylix/flake-parts':
'github:hercules-ci/flake-parts/250481aafeb741edfe23d29195671c19b36b6dca?narHash=sha256-feveD98mQpptwrAEggBQKJTYbvwwglSbOv53uCfH9PY%3D' (2026-01-05)
→ 'github:hercules-ci/flake-parts/3107b77cd68437b9a76194f0f7f9c55f2329ca5b?narHash=sha256-91qqW8lhL7TLwgQWijoGBbiD4t7/q75KTi8NxjVmSmA%3D' (2026-04-01)
• Updated input 'stylix/gnome-shell':
'gitlab:GNOME/gnome-shell/ef02db02bf0ff342734d525b5767814770d85b49?host=gitlab.gnome.org&narHash=sha256-eFujfIUQDgWnSJBablOuG%2B32hCai192yRdrNHTv0a%2Bs%3D' (2026-01-06)
→ 'github:GNOME/gnome-shell/ef02db02bf0ff342734d525b5767814770d85b49?narHash=sha256-eFujfIUQDgWnSJBablOuG%2B32hCai192yRdrNHTv0a%2Bs%3D' (2026-01-06)
• Updated input 'stylix/nixpkgs':
'github:NixOS/nixpkgs/5912c1772a44e31bf1c63c0390b90501e5026886?narHash=sha256-Mj3d3PfwltLmukFal5i3fFt27L6NiKXdBezC1EBuZs4%3D' (2026-01-07)
→ 'github:NixOS/nixpkgs/6201e203d09599479a3b3450ed24fa81537ebc4e?narHash=sha256-ZojAnPuCdy657PbTq5V0Y%2BAHKhZAIwSIT2cb8UgAz/U%3D' (2026-04-01)
• Updated input 'stylix/nur':
'github:nix-community/NUR/dead29c804adc928d3a69dfe7f9f12d0eec1f1a4?narHash=sha256-ZKqhk772%2Bv/bujjhla9VABwcvz%2BhB2IaRyeLT6CFnT0%3D' (2026-01-07)
→ 'github:nix-community/NUR/601971b9c89e0304561977f2c28fa25e73aa7132?narHash=sha256-ebbeHmg%2BV7w8050bwQOuhmQHoLOEOfqKzM1KgCTexK4%3D' (2026-04-03)
• Removed input 'stylix/tinted-foot'
• Updated input 'stylix/tinted-schemes':
'github:tinted-theming/schemes/2800e2b8ac90f678d7e4acebe4fa253f602e05b2?narHash=sha256-%2BW1EB79Jl0/gm4JqmO0Nuc5C7hRdp4vfsV/VdzI%2Bdes%3D' (2026-01-06)
→ 'github:tinted-theming/schemes/13b5b0c299982bb361039601e2d72587d6846294?narHash=sha256-4eu3LqB9tPqe0Vaqxd4wkZiBbthLbpb7llcoE/p5HT0%3D' (2026-03-04)
• Updated input 'stylix/tinted-tmux':
'github:tinted-theming/tinted-tmux/3c32729ccae99be44fe8a125d20be06f8d7d8184?narHash=sha256-e6nnFnWXKBCJjCv4QG4bbcouJ6y3yeT70V9MofL32lU%3D' (2026-01-04)
→ 'github:tinted-theming/tinted-tmux/c3529673a5ab6e1b6830f618c45d9ce1bcdd829d?narHash=sha256-x%2B6%2B4UvaG%2BRBRQ6UaX%2Bo6DjEg28u4eqhVRM9kpgJGjQ%3D' (2026-03-08)
• Updated input 'stylix/tinted-zed':
'github:tinted-theming/base16-zed/11abb0b282ad3786a2aae088d3a01c60916f2e40?narHash=sha256-wVOj0qyil8m%2BouSsVZcNjl5ZR%2B1GdOOAooAatQXHbuU%3D' (2026-01-04)
→ 'github:tinted-theming/base16-zed/b4d3a1b3bcbd090937ef609a0a3b37237af974df?narHash=sha256-jx/5%2BpgYR0noHa3hk2esin18VMbnPSvWPL5bBjfTIAU%3D' (2026-03-07)
• Updated input 'vicinae':
'github:vicinaehq/vicinae/5f7d3d62bb2c38181e0289fa0e3b43dfec206bfd?narHash=sha256-QsfXRSRyptJ91/rXobWpmZRC/TBT69Stmok1sXqDpa0%3D' (2026-03-25)
→ 'github:vicinaehq/vicinae/c0e4aa7dd2c21459cc9015b71841d0847f9749ef?narHash=sha256-A9vBN0QrlmQHbveDox7E3n%2BZ1lzY8ch3sUcWR%2BAiqu8%3D' (2026-04-20)
• Updated input 'zen-browser':
'github:0xc000022070/zen-browser-flake/2e49c5278af6ef5f1e17e0fd27c2e22b1a7edc38?narHash=sha256-WyPQoYBde7TSCR45ZgofzBqvVo/MpH3Vkh8YMj9OZC0%3D' (2026-03-25)
→ 'github:0xc000022070/zen-browser-flake/90706e6ab801e4fb7bc53343db67583631936192?narHash=sha256-DaYSEBVzTvUhTuoVe70NHphoq5JKUHqUhlNlN5XnTuU%3D' (2026-04-22)
• Updated input 'zen-browser/home-manager':
'github:nix-community/home-manager/ef12a9a2b0f77c8fa3dda1e7e494fca668909056?narHash=sha256-MPjR48roW7CUMU6lu0%2BqQGqj92Kuh3paIulMWFZy%2BNQ%3D' (2026-03-13)
→ 'github:nix-community/home-manager/3c7524c68348ef79ce48308e0978611a050089b2?narHash=sha256-No6QGBmIv5ChiwKCcbkxjdEQ/RO2ZS1gD7SFy6EZ7rc%3D' (2026-04-14)
• Updated input 'zen-browser/nixpkgs':
'github:nixos/nixpkgs/c06b4ae3d6599a672a6210b7021d699c351eebda?narHash=sha256-wvfdLLWJ2I9oEpDd9PfMA8osfIZicoQ5MT1jIwNs9Tk%3D' (2026-03-13)
→ 'github:nixos/nixpkgs/4c1018dae018162ec878d42fec712642d214fdfa?narHash=sha256-ar3rofg%2BawPB8QXDaFJhJ2jJhu%2BKqN/PRCXeyuXR76E%3D' (2026-04-09)
|
||
|---|---|---|
| aspects | ||
| data | ||
| packages | ||
| secrets | ||
| shells | ||
| terranix | ||
| .envrc | ||
| .gitignore | ||
| flake.lock | ||
| flake.nix | ||
| readme.md | ||
NixOS Flake Configuration
Modular NixOS configuration using flake-parts with the dendritic pattern.
Structure
.
├── aspects/ # Reusable NixOS/home-manager modules (dendritic)
│ ├── base/ # Base system configuration
│ ├── hosts/ # Host-specific configurations
│ │ ├── _alexandria/
│ │ ├── _io/
│ │ ├── _rotterdam/
│ │ └── _trantor/
│ ├── systems/ # System type modules (desktop, server, cli, gaming)
│ └── users/ # User account configurations
├── data/ # Shared host/service definitions
├── packages/ # Custom packages and overlays
├── shells/ # Shell configurations
└── terranix/ # Terraform configurations for cloud resources
Hosts
| Host | Architecture | Type | Description |
|---|---|---|---|
| trantor | aarch64-linux | server | ARM server running Forgejo |
| alexandria | x86_64-linux | server | x86 server (Kanidm, Vaultwarden, Nextcloud, Jellyfin) |
| rotterdam | x86_64-linux | desktop | Main workstation setup for gaming |
| io | x86_64-linux | desktop | Workstation |
Services
- git.baduhai.dev (Forgejo) - Publicly accessible on trantor
Other services (LAN/Tailscale only): Vaultwarden, Nextcloud, Jellyfin
Features
- Ephemeral root: Automatic btrfs subvolume rollover with impermanence
- Secrets: Managed via agenix with age encryption
- Disk management: disko for declarative disk partitioning
- Modular architecture: Each aspect is a separate module imported via import-tree
- Dendritic pattern: Aspects are imported as a unified flake module
Building
# Build specific host
nix build .#nixosConfigurations.trantor.config.system.build.toplevel
# Rebuild host (if using nixos-cli on the host)
sudo nixos apply
Terranix
Terraform configurations for cloud infrastructure managed via terranix:
- baduhai.dev DNS on CloudFlare
- VPS provisioning on OCI
- Tailscale subnet routers
Key Dependencies
- nixpkgs (nixos-unstable for workstations, nixos for servers)
- home-manager
- agenix
- disko
- impermanence
- nix-flatpak
- nixos-cli