gador/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
874,514 Commits 9 Branches 0 Tags
0e9e2df87d2c6f45f4a46c4f26f53b51abe35b46
Commit Graph

54502 Commits

Author SHA1 Message Date
Adam C. Stephens
1fae0a2bea erlang: simplify generic builder and overriding (#448033) 2025-10-08 12:34:41 +00:00
Sandro
3170d4faf9 nixos/gtklock: use lines type for programs.gtklock.style option (#445580) 2025-10-08 12:26:30 +00:00
Luj
01e34769af nixos/uptime-kuma: Apply more hardening settings (#449295) 2025-10-08 11:13:49 +02:00
Thomas Gerbet
59f9c6722b nixos/murmur: Set ProtectControlGroups to strict (#448637) 2025-10-08 06:00:22 +00:00
dish
48b32fb7fb lib: remove lib.options.mkPackageOptionMD (#448409) 2025-10-07 23:27:57 +00:00
dish
a0e8f351a6 nixos/pixelfed: remove X-XSS-Protection header (#449589) 2025-10-07 23:27:35 +00:00
Felix Bühler
71ad9a34cf nixos/redmine: Apply more hardening options (#449140) 2025-10-07 23:30:22 +02:00
Martin Weinelt
41686edb04 music-assistant: build librespot fork (#447147) 2025-10-07 20:53:46 +00:00
sweenu
4e23b4365f music-assistant: use librespot-ma as spotify provider 2025-10-07 22:11:10 +02:00
dish
92aa5dc190 lib: remove lib.options.mkPackageOptionMD 
Removed this, as it was deprecated in 24.11 and was intended to be
removed in 25.05. Better late than never.
 2025-10-07 15:53:30 -04:00
Sandro
d3afe2db00 hadoop: 3.4.1 -> 3.4.2, use jdk21 (#442660) 2025-10-07 18:30:46 +00:00
dish
47a0293617 nixos/pixelfed: remove X-XSS-Protection header 
not recommended to set it, per OWASP, as it can actually introduce
security issues

https://owasp.org/www-project-secure-headers/#x-xss-protection
 2025-10-07 14:06:30 -04:00
Alexandre Esteves
cf818acac3 nixos/virtualbox-host: fix for kernels >= 6.12 (#444438) 2025-10-07 16:08:45 +00:00
h7x4
35ef0e22e8 nixos/linkwarden: init module, linkwarden: init at 2.13.0 (#347353) 2025-10-07 15:50:50 +00:00
Felix Singer
79ab4bb47b nixos/redmine: Enable MountAPIVFS hardening in service config 
This setting is already implied by others, but add it for completeness
as well. For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#MountAPIVFS=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 16:16:27 +02:00
Felix Singer
21f827065b nixos/redmine: Enable PrivateUsers hardening in service config 
For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#PrivateUsers=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 16:16:27 +02:00
Felix Singer
a799bd0e3d nixos/redmine: Set ProtectProc to invisible 
For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#ProtectProc=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 16:16:26 +02:00
Felix Singer
d06389e317 nixos/uptime-kuma: Ensure proper permissions for state directory 
Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 15:54:51 +02:00
Felix Singer
7b791e1de7 nixos/uptime-kuma: Enable MountAPIVFS hardening in service config 
This setting is already implied by others, but add it for completeness
as well. For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#MountAPIVFS=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 15:54:51 +02:00
Felix Singer
18af20e2b2 nixos/uptime-kuma: Set ProtectControlGroups to strict 
For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#ProtectControlGroups=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 15:54:51 +02:00
Felix Singer
606424d609 nixos/uptime-kuma: Set ProtectProc to invisible 
For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#ProtectProc=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 15:54:51 +02:00
Felix Singer
749fd94d19 nixos/uptime-kuma: Enable PrivateUsers hardening in service config 
For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#PrivateUsers=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-07 15:54:51 +02:00
Jan van Brügge
5ae9c6959e nixos/tests/linkwarden: init tests 2025-10-07 12:57:56 +01:00
Jan van Brügge
0bf693cb0f nixos/linkwarden: init module 2025-10-07 12:57:55 +01:00
Marcus Ramberg
39e076de80 nixos/immich: fix eval with settings == null (#449271) 2025-10-07 06:45:18 +00:00
Thomas Gerbet
f0335d8ede nixos/redmine: Set ProtectControlGroups to strict (#448634) 2025-10-07 06:20:44 +00:00
rewine
0a4ac75e5a linyaps-web-store-installer: init at 1.6.8 (#448147) 2025-10-07 04:39:34 +00:00
Robert Schütz
f1e52abf0d nixos/immich: fix eval with settings == null 
Using the module without declarative settings previously failed with

    error: attribute 'settingsFile' missing
 2025-10-06 15:08:09 -07:00
Tim Schumacher
d64cf50184 nixos/gpu-screen-recorder: Use getExe instead of building paths 2025-10-06 21:47:05 +02:00
illustris
c3c9b51017 hadoop: 3.4.1 -> 3.4.2, use jdk21 
- Update hadoop to 3.4.2
- Switch from jdk11 to jdk21
- Add support for lean variant builds
- Replace netstat with ss in tests
 2025-10-06 22:03:11 +05:30
Masum Reza
120e6fd0a1 nixos/limine: forceMbr -> force (#449144) 2025-10-06 16:24:36 +00:00
Franz Pletz
2f39ef8220 nixos/netboot: use initrd.compressorArgs on netbootRamdisk (#448924) 2025-10-06 14:31:10 +00:00
dish
231b923f0a {nixos/,}.tt-rss: drop (#448401) 2025-10-06 13:54:05 +00:00
Sizhe Zhao
3fbc40c0ac nixos/limine: forceMbr -> force 2025-10-06 21:48:31 +08:00
Florian Klink
a2d829eaa7 nixos/gerrit: Apply more hardening settings (#448870) 2025-10-06 11:13:38 +00:00
Doron Behar
4ec104a4fd musescore: 4.5.2-unstable-2025-07-03 -> 4.6.0 (#448796) 2025-10-06 09:15:16 +00:00
dotlambda
65fb719b8c nixos/immich: add secretSettings option (#448238) 2025-10-06 09:07:08 +00:00
Sarah Brofeldt
dbd5479105 apacheKafka: Deprecate 3.7 and 3.8 series (#446610) 2025-10-06 07:56:46 +00:00
Wolfgang Walther
9757580132 maintainers: drop evils (#448938) 2025-10-06 06:29:57 +00:00
Matteo Pacini
20fcd7d4ac nixos/murmur: Enable PrivateMounts hardening in service config (#448490) 2025-10-05 22:19:14 +00:00
Doron Behar
21008a6b52 nixosTests.musescore: adapt test to 4.6.0 and beyond 2025-10-05 23:40:35 +03:00
Martin Weinelt
5b039b9fd4 nixos/limesurvey: fix default config merging when config is defined, set userquestionthemerootdir default (#400448) 2025-10-05 21:34:02 +02:00
Acid Bong
f418365067 maintainers: drop evils 2025-10-05 22:22:45 +03:00
Felix Stupp
604b955324 nixos/netboot: use initrd.compressorArgs on netbootRamdisk 
- because already boot.initrd.compressor is used, one could expect
  compressorArgs is also used
- this allows users to customize the compression speed for netboot
  builds
 2025-10-05 17:58:54 +00:00
Yohann Boniface
39d4980709 firezone-server: 0-unstable-2025-03-15 -> 0-unstable-2025-08-31 (#433162) 2025-10-05 16:07:42 +00:00
Patrick
a536b2a1d6 firezone-server: 0-unstable-2025-03-15 -> 0-unstable-2025-08-10 2025-10-05 17:49:44 +02:00
Adam C. Stephens
038d146ee6 nixos/tests/rabbitmq: fail quickly if service fails to start 2025-10-05 11:14:33 -04:00
Felix Singer
8dac7deb3d nixos/gerrit: Enable PrivateUsers hardening in service config 
For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#PrivateUsers=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-05 16:06:19 +02:00
Felix Singer
1ed557f179 nixos/gerrit: Set ProtectProc to invisible 
For documentation see
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#ProtectProc=

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-10-05 15:58:16 +02:00
jopejoe1
5ad1786de3 nixos/gpu-screen-recorder: remove cap_sys_nice, again (#442391) 2025-10-05 13:45:07 +00:00