movefasta/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-06-29 04:26:32 +03:00
Code Activity
506646 commits 164 branches 129 tags 6.8 GiB
Commit graph

26212 commits

Author SHA1 Message Date
Linus Heckemann
7ca65eeecf
Merge pull request #219354 from Izorkin/update-profiles-base 
nixos/profiles: optimize base and minimal profiles
 2023-03-14 14:45:15 +01:00
Domen Kožar
c08c079893
Merge pull request #216635 from DavHau/patch-4 
services.cachix-watch-store: fix description of compressionLevel
 2023-03-14 13:44:58 +00:00
Thomas Dy
fbb554fa58 nixos/kubernetes: update coredns 1.7.1 -> 1.10.1 2023-03-14 22:15:43 +10:00
github-actions[bot]
60e9cbe0f9
Merge staging-next into staging 2023-03-14 12:02:08 +00:00
Linus Heckemann
eb45cd5108 nixos/top-level: add includeBuildDependencies option 
This option allows adding the build closure of the system to its
runtime closure, enabling fully-offline rebuilds (as long as no new
packages are added).
 2023-03-14 11:55:13 +01:00
Martin Weinelt
6b67186fe9
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/development/python-modules/crownstone-cloud/default.nix
- pkgs/development/python-modules/exrex/default.nix
- pkgs/development/python-modules/mkdocs-minify/default.nix
- pkgs/development/python-modules/myjwt/default.nix
- pkgs/development/tools/analysis/checkov/default.nix
 2023-03-14 08:14:26 +01:00
Franz Pletz
bc0a1dd982
Merge pull request #220461 from SuperSandro2000/prometheus 
prometheus: 2.41.0 -> 2.42.0, split outputs, other cleanups
 2023-03-14 05:28:59 +01:00
Matthew Robbetts
f5b754881d bind: remove hard-coded allow-query config file entry, so it can be customized via extraConfig 2023-03-13 20:47:02 -07:00
John Soo
e30469a37b
nixos/minio: activate/restart service on credentials path changes 
Otherwise the `minio.service` service will fail either:

* with a message that the EnvironmentFile does not exist
* or silently with potentially stale credentials
 2023-03-13 17:43:19 -07:00
John Soo
7f85002ec0
nixos/minio: format with nixpkgs-fmt 2023-03-13 17:36:52 -07:00
Artturi
b978bf0f0f
Merge pull request #220570 from Artturin/fixlints1 2023-03-14 02:15:55 +02:00
Artturi
9d18216aa3
Merge pull request #221050 from Luflosi/nixos-generate-config-microcode-condition 
nixos-generate-config: update microcode only on bare metal
 2023-03-13 22:56:28 +02:00
7c6f434c
f7eeb48523
Merge pull request #213301 from bcc32/atop-dont-leave-new-log-files 
nixos/atop: Remove upgraded logfiles if not replaced
 2023-03-13 20:20:40 +00:00
Luflosi
1d65c7279c
nixos-generate-config: update microcode only on bare metal 
Guest operating systems inside VMs or containers can't update the host CPU's microcode for obvious security reasons, so setting the `hardware.cpu.*.updateMicrocode` options is pointless.
 2023-03-13 20:15:13 +01:00
github-actions[bot]
59ffe854f9
Merge staging-next into staging 2023-03-13 18:01:48 +00:00
Martin Weinelt
bb14c4255b Merge remote-tracking branch 'origin/master' into staging-next 2023-03-13 17:14:19 +00:00
Florian Klink
504d66bae9
Merge pull request #216826 from gdamjan/systemd-253 
systemd: 252.5 -> 253
 2023-03-13 17:37:39 +01:00
Marcus Ramberg
f834dfad8f nimdow: Add nixos windowmanager option 2023-03-13 11:37:32 -05:00
Vonfry
4e8ad00ae8
fcitx: remove packages and update documentations and aliases to fcitx5 2023-03-13 18:50:05 +08:00
Vonfry
051b74fe7d
nixos/fcitx: deprecated, and suggestions to use fcitx5 instead 2023-03-13 18:47:05 +08:00
Vladimír Čunát
2d51a0e8ad
Merge branch 'master' into staging-next 2023-03-13 08:25:10 +01:00
Martin Weinelt
4472cf44eb
treewide: Make yescrypt the default algorithm for pam_unix.so 
This ensures `passwd` will default to yescrypt for newly generated
passwords.
 2023-03-13 07:54:27 +01:00
Martin Weinelt
0d7cd66652
nixos/users-groups: Update password scheme validation 
Updates the warnings message for statefully set up passwords, now that
weak algorithms have been removed from our libxcrypt package.

Additionall we now add proper validation for hashing schemes used in
`hashedPassword`.

Neither will prevent a rebuiild, but instead issue a warning, that this
requires immediate remediation, or else users will be unable to login.

Reuses the crypt scheme ids as provided by the libxcrypt package.
 2023-03-13 07:54:27 +01:00
Elis Hirwing
ce76a6838c
Merge pull request #203487 from jocelynthode/init-readarr 
readarr: init at 0.1.4.1596
 2023-03-13 06:56:35 +01:00
Lassulus
47233b27c9
Merge pull request #167319 from schnusch/cgit 2023-03-13 09:51:08 +07:00
figsoda
928c8115ba nixos/starship: add interactiveOnly option 2023-03-12 21:23:23 -04:00
Ben Wolsieffer
b92dae961c nixos/chrony: allow @chown syscall set 
The module was allowing specific chown syscalls, which is brittle because
there are several and different ones are used by glibc on different
architectures. For example, fchownat was already added to the allowlist for
aarch64, while on armv6l chrony crashes because chown32 is not in the
allowlist.

systemd provides the @chown syscall set, which includes all the chown
syscalls and avoids this brittleness. I believe the syscalls would all be
equivalent from an attacker's perspective, so there is unlikely to be any
security impact.
 2023-03-12 18:10:56 -05:00
Martin Weinelt
d03d74aa67
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/development/python-modules/aiopulse/default.nix
- pkgs/development/python-modules/identify/default.nix
- pkgs/development/python-modules/spur/default.nix
 2023-03-12 23:28:23 +01:00
nicoo
df4faec23b nixos/hidpi: Explicitely refer to fontconfig.nix for the choice of defaults 2023-03-12 21:33:38 +00:00
Jocelyn Thode
e7f54823b1
readarr: init at 0.1.4.1596 2023-03-12 20:54:23 +01:00
Guillaume Girol
db901673ea
Merge pull request #209156 from pwaller/issue-114594 
nixos/grub: Name initrd-secrets by system, not by initrd
 2023-03-12 18:50:33 +00:00
Vladimír Čunát
1dd94ad62f
Merge branch 'master' into staging-next 2023-03-12 09:06:28 +01:00
Ryan Lahfa
ac93edb3ac
Merge pull request #209829 from notgne2/fix/systemd-boot-always-profile-path 
nixos/systemd-boot: always use profile_path() for system closure paths
 2023-03-11 22:08:18 +01:00
Janne Heß
6798068e84
Merge pull request #220555 from lilyinstarlight/feature/fwupd-uefi-capsule 
nixos/fwupd: add settings option for uefi_capsule.conf
 2023-03-11 20:04:32 +01:00
github-actions[bot]
feb117e32c
Merge master into staging-next 2023-03-11 18:01:19 +00:00
Jonas Heinrich
161a1ca129
Merge pull request #191974 from tu-maurice/btrbk-doas 
btrbk: Use sudo or doas based on configuration
 2023-03-11 16:10:50 +01:00
Lily Foster
9c1d627508
Merge pull request #208414 from RossComputerGuy/feat/java-binfmt 
nixos/java: add binfmt option
 2023-03-11 10:04:43 -05:00
nachoslover813260
4b0bc9ea72 nixos/plasma5: add ark as an optional package instead 2023-03-11 21:29:24 +08:00
nachoslover813260
9e8f51fc6c Adding Ark as a file archiver 
Since the default plasma desktop already got dolphin-plugins adding ark for archiving would make plasma desktop more complete as well
 2023-03-11 21:29:24 +08:00
Alvar Penning
adafbeff4a nixos/restic: generalize cache configuration 
The restic repository cache location defaults to ~/.cache/restic when
not overwritten either by the --cache-dir command line parameter or the
universal RESTIC_CACHE_DIR environment variable.

Currently, the --cache-dir variable is set to only some restic commands,
but, e.g., not to the unit's preStart command for the module's
initialize option. This results in two distinct cache locations, one at
~/.cache/restic for the initialize commands and one at the configured
--cache-dir location for the restic backup command.

By explicitly setting RESTIC_CACHE_DIR for the unit, only one cache at
the correct location will be used.

https://restic.readthedocs.io/en/v0.15.1/manual_rest.html#caching
 2023-03-11 12:59:10 +01:00
github-actions[bot]
d165f35883
Merge master into staging-next 2023-03-11 06:01:15 +00:00
Mario Rodas
2ce9b9842b
Merge pull request #219355 from tomfitzhenry/phosh-0.25.1 
phosh: 0.23 -> 0.25.1
 2023-03-10 21:03:33 -05:00
Artturin
cab4a24c34 treewide: fix lints 
Arg to lib.optional is a list

build time tool in buildInputs
 2023-03-11 00:55:17 +02:00
Lily Foster
6e6d31f4bc
nixos/fwupd: add settings option for uefi_capsule.conf 2023-03-10 15:25:41 -05:00
Alyssa Ross
8c70bfb9f2
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
	pkgs/development/libraries/librsvg/default.nix
	pkgs/development/python-modules/r2pipe/default.nix
 2023-03-10 18:46:21 +00:00
genesis
cab32f0f86 nixos/jellyseerr: init 2023-03-10 16:18:00 +01:00
Yureka
7efee351ec
Merge branch 'gitlab-pages' of github.com:talyz/nixpkgs into HEAD 2023-03-10 14:36:25 +01:00
uoleg
8ca0687b97 nixos/nano: refactor nanorc creation 
The default syntax highlighting rules are included at the top of the nanorc file to allow overriding.
 2023-03-10 15:13:58 +03:00
Martin Weinelt
ef91384e6f Merge remote-tracking branch 'origin/master' into staging-next 2023-03-10 13:09:25 +01:00
Sandro Jäckel
da2f281453
prometheus: split doc and cli into extra outputs 2023-03-10 11:45:45 +01:00