Nix is a tool that takes a unique approach to package management and system configuration. Use it to build reproducible, declarative and reliable systems.
Posts mostly in English.
Announcements created by the NixOS Marketing Team, account monitored by @raboof
| website | https://nixos.org |
| code | https://github.com/nixos |
| matrix chat | https://matrix.to/#/#community:nixos.org |
| hashtag | #NixOS |
My #gpn23 talk about Linux + Go self-hosting seems to be well-received! ❤️
https://cfp.gulas.ch/gpn23/talk/U8D9KR/ if you missed it and want to catch up on the recording or slides :)
It covers the entire spectrum, starting from a Raspberry Pi (with my very own https://gokrazy.org/!) to Mini-servers running #NixOS 🚀
Here me out.
Nix remote builders, no ssh. Share derivations via cache i.e. https://github.com/kalbasit/ncps
So, there’s much to be said about these vulnerabilities…
https://guix.gnu.org/en/blog/2025/privilege-escalation-vulnerabilities-2025/
First, thanks to fellow Nix and Lix hackers for sending us a heads-up, for sharing Snyk’s detailed report, and for coordinating with us. 👍
devenv-secrets, a new tool to help store secrets locally in your computer's keychain
Security Advisory: Privilege Escalations in Nix, Lix and Guix
https://discourse.nixos.org/t/security-advisory-privilege-escalations-in-nix-lix-and-guix/66017
Summary This advisory follows up on the pre-announcement made last week. Nix and Lix are affected by a set of issues that can be combined to achieve root privilege escalation. These issues are identified as: CVE-2025-46415 CVE-2025-52991 CVE-2025-52992 CVE-2025-52993 Additionally, a privilege escalation to the build users has been identified. This issue is known as CVE-2025-46416. This is a coordinated disclosure between the Nix, Lix, and Guix projects. Guix is impacted by similar vulnerabi...
📢 Update your Nix installation, and refrain from building untrustworthy derivations until done.
https://discourse.nixos.org/t/security-advisory-privilege-escalations-in-nix-lix-and-guix/66017
Hercules CI Agent uses the running nix daemon, so updating your system Nix is sufficient.
Summary This advisory follows up on the pre-announcement made last week. Nix and Lix are affected by a set of issues that can be combined to achieve root privilege escalation. These issues are identified as: CVE-2025-46415 CVE-2025-52991 CVE-2025-52992 CVE-2025-52993 Additionally, a privilege escalation to the build users has been identified. This issue is known as CVE-2025-46416. This is a coordinated disclosure between the Nix, Lix, and Guix projects. Guix is impacted by similar vulnerabi...
Lix releases are now out, please upgrade. A detailed writeup about the issue and the mitigations is at https://lix.systems/blog/2025-06-24-lix-cves/, scroll a bit down for for instructions on how to protect yourselves.
See also the Discourse announcement post at https://discourse.nixos.org/t/security-advisory-privilege-escalations-in-nix-lix-and-guix/66017, which also links to the various Nixpkgs PRs for those that use Lix from Nixpkgs.
#TIL about @fediversity;
"... a comprehensive effort to bring easy-to-use, hosted cloud services with service portability and personal freedom to everyone. We aim to provide high-quality, secure IT systems for everyday use. Without tracking, without exploitation, in a way that runs everywhere and scales effortlessly.
... based on NixOS, a disruptive Linux distribution with a unique approach to package and configuration management."
Michael Stapelberg 🐧🐹😺
Yvan ー イボん 🗺️ 
Ludovic Courtès
Chris McDonough ✅
nixpkgs security changes
Robert Hensing
Lix Project
Strypey
Emi 
back @ home
FOSS United Chennai