Alex Oberhauser2d ago

Tired of SSH-ing into every NixOS machine to run updates? New guide on how to automate it: CI updates flake.lock daily, shows you exactly what changed per host, and machines self-upgrade after you merge. No surprises, no manual SSH.

Works also for your desktop machines.

https://getnix.io/guides/nixos-auto-upgrades/

#Nix #NixOS #CI #IaC #GitOps

Automatic NixOS Upgrades with Forgejo Actions

Keep NixOS servers and desktops up-to-date automatically — CI updates flake.lock, hosts self-upgrade daily, and you review a diff before anything deploys.

Show threadPascal Dietrich1d ago
@obale With Forgejo Actions?! Sounds very interesting! Currently I'm updating my flake from time to time manually. The only obstacle I have is that it's a single flake for my laptop + 3 servers. I'd have to split it then (at least for the laptop).
Show threadAlex Oberhauser

@cameo007 Same for me. I have my laptops split from the servers. Both repositories use the same CI job logic. Thinking of splitting up overlays that overwrite software versions from both of them. Given that some of them are shared across the two repositories.

That was kind of the motivation to automate the update process. Got tired of it.

Apr 13 at 9:27pmWeb