Mastodawn

Wild computer day. Fell in love with #NixOS and somehow ended up submitting a pull request to nixpkgs, adding missing packages for the Reticulum mesh networking stack. Found and fixed real bugs along the way. Not bad for someone who typically spends the first three hours just trying to get the clipboard working on the virtual machine. Score.

Oberhauser Global 3h ago

New article: Using Forgejo git mirrors and Nix flakes to build security-critical software from self-hosted, pinned sources.

With over 454,000 malicious packages identified in 2025, self-replicating npm worms, and AI-powered attack campaigns, supply chain security is no longer an option for self-hosters.

The post outlines an approach that effectively mitigates risks and highlights its limitations.

https://blog.networld.to/git-mirrors-and-nix-flakes-a-practical-approach-to-supply-chain-security/

#NixOS #Forgejo #SupplyChainSecurity #SelfHosting #InfoSec

Git Mirrors and Nix Flakes - A Practical Approach to Supply Chain Security · Networld Blog

Combining Forgejo git mirrors with Nix flakes to build security-critical software from pinned, self-hosted sources. A practical defense against a real class of supply chain attacks.

Networld Blog

Yuki Linux 4h ago

I am back on arch with #Wayfire and #Garuda as the core. At least I have been for the past few months here honestly, I could not be happier.

so I do like #nixos I also like not having to think about every little thing when I want to do something. I will forever miss the config file for packages. and I know I can run it off the distro, but I don’t want to.
#linux

nai 🖤10h ago

great

it turns out that I migrated from standalone Home Manager to integrating it as part of my NixOS config

...but there is a part of my config (not at all vital) that broke

it's time to look for equivalents for home.profileDirectory at NixOS level

#nix #nixos #homemanager

nai 🖤10h ago

having enabled nh on my nixos was really a very good idea

#nix #nixos

Benedikt Ritter (he/him)11h ago

Just updated to Linux 7.0. What could possibly go wrong?

#linux #nixos

Show thread

Aires 12h ago

authentik-nix has been an _enormous_ help in getting this set up on #NixOS

https://github.com/nix-community/authentik-nix

GitHub - nix-community/authentik-nix: Nix flake with package, NixOS module and VM test for authentik. Alternative deployment mode to the official docker-compose approach. No official support by authentik [maintainers=@ma27]

Nix flake with package, NixOS module and VM test for authentik. Alternative deployment mode to the official docker-compose approach. No official support by authentik [maintainers=@ma27] - nix-commu...

GitHub

Domdel AKA Data 15h ago

Bon, envie de tester #Nixos donc j'ai besoin d'un portable de testes.
........Loading........Slowly......

Paul Meyer 17h ago

The Nix sandbox aims to provide a pure environment by isolating the build environment from the rest of the system. However, some impurities can still affect builds inside the sandbox and lead to reproducibility issues. One of them is the filesystem.

A common example is builds that implicitly depend on inode numbering or directory entry ordering. In some cases, you might even run into a filesystem bug: a build succeeds on one machine, but fails on another with a different filesystem.

To debug these issues, you can now use nix-buildon. It lets you swap out the filesystem underneath the Nix sandbox. By running the sandbox on disorderfs, you can get a deterministic, sorted, or reverse-sorted view of directory entries. This makes it easy to check whether a build depends on filesystem behavior that should not matter in the first place.

https://github.com/katexochen/nix-buildon

I created this at #OceanSprint. 🌊

#Nix #NixOS #ReproducibleBuilds