- Updated the version from 1.0.16 to 1.0.16-1.
- Replaced GitHub tag with a specific revision for better precision.
- Updated cargo and source hashes to match the new revision.
- Added `goose-cli` package definition and metadata in `unstable` overlay.
- Updated `default.nix` under `aarch64-darwin` to include `goose-cli` in system packages.
- Removed commented out packages and cleaned up unused lines for better clarity and maintainability.
Replaces incorrect `gui.kbd.ellipsis.enable` with `gui.kbd.ellipsis`. This aligns with the correct configuration syntax for enabling the ellipsis feature.
Introduced `claude-desktop-with-fhs` package by adding the `claude` flake to the inputs. Updated the system configuration and overlays to integrate the new package for usage.
- Added `.direnv/` to the `.gitignore` file to ignore environment-specific configuration files.
- Ensures cleaner version control by excluding local development artifacts.
- Introduce guidelines for building, configuration, and formatting.
- Detail repository structure and style conventions.
- Provide instructions for module creation and best practices.
- Add detailed project structure breakdown, including modules, systems, and configurations.
- Update installation and update instructions for NixOS, macOS, and Home Manager.
- Replace outdated content with relevant examples and commands.
- Created a `limits` module to centralize system limit configurations.
- Replaced inlined user and systemd limits with the new module on aarch64 and x86_64 platforms.
- Simplifies maintenance and ensures consistency across configurations.
- Updated `brew`, `nix-darwin`, `disko`, and other dependencies in `flake.lock` to newer revisions.
- Improves compatibility and includes upstream updates for stability and features.
- Introduce `gui.kbd.ellipsis.enable` option for keybinding.
- Move related xkb configuration to a dedicated module for clarity.
- Simplify `default.nix` by delegating ellipsis setup to the new module.
- Enable Ollama API by setting `ENABLE_OLLAMA_API` to true.
- Disable OpenAI API by setting `ENABLE_OPENAI_API` to false.
This improves control over API usage and ensures proper configuration.
- Change OpenWebUI host binding from 0.0.0.0 to 127.0.0.1 for security.
- Consolidate ACME certificates under internal.hoyer.world with extra domain names.
- Update Nginx virtual hosts to use the unified ACME host internal.hoyer.world.
Added `systemctl-tui` to the NixOS default packages list. This enhances user experience by providing a text-based user interface for managing systemd services.
Replaces `[[ $# > 0 ]]` with `(( $# > 0 ))` for clarity and correctness. This ensures improved readability and adherence to best practices in Bash scripting.
Removed explicit revision for `snowfall-lib` and updated flake.lock to align with the latest upstream changes. This ensures dependencies stay current while simplifying maintenance.
Added Logseq to the system packages for productivity tools. Permitted the insecure Electron 27.3.11 package to bypass restrictions for compatibility needs.
This commit enables the Syncthing service and its tray integration in the configuration. It prepares for potential folder and device overrides by including commented placeholders.
Reformatted configuration files for better readability and consistency. Updated lock file dependencies to the latest revisions, ensuring compatibility and performance improvements.
Renamed folders in the fileserver configuration for improved clarity and alignment with naming conventions. Adjustments ensure better organization and functionality in the SGX environment.
Commented out DNSSEC configuration and single-label resolution in systemd-resolved. This change disables custom DNS behavior to potentially align with default system behavior or compatibility requirements.
Added configuration for Syncthing devices and shared folders, enabling synchronization between specific devices. Adjusted the structure for better clarity and maintainability.
Updated the relay host for RustDesk server from "mx.surfsite.org" to "rustdesk.hoyer.world". This ensures the service uses the new designated host for signal relay.
Enabled `forceSSL` for the RustDesk nginx configuration to ensure secure connections. Replaced `proxyPass` with detailed `extraConfig` to include necessary headers and support for WebSocket connections.
Moved rustdesk-server settings from `default.nix` to a dedicated module `rustdesk.nix`. This improves configuration structure and ensures better modularity for maintainability.
Added `relayHosts` configuration to rustdesk-server to specify the relay host `mx.surfsite.org`. This ensures proper routing and connectivity for the RustDesk service.
- Enabled LLMNR to allow link-local name resolution.
- Enabled MulticastDNS to support service discovery and hostname resolution within local networks.
- Enabled LLMNR to allow link-local name resolution.
- Enabled MulticastDNS to support service discovery and hostname resolution within local networks.
- Enable systemd-resolved and configure DNSSEC with downgrade option.
- Add extra configuration to allow resolving unicast single-label names.
This improves DNS handling and ensures compatibility for SGX setup.
Set idle I/O and CPU scheduling policies for the Nix daemon to improve GUI responsiveness. Adjusted scheduling class, priority, and policy to optimize background tasks.
Added btop to the default package list in NixOS services. This change ensures btop is available by default for system monitoring and resource management. No impact on existing configurations is expected.
Introduces a new XKB configuration for typing the ellipsis symbol. Updates dconf settings and XDG config files to enable and map the custom "mod:ellipsis" option.
Previously, the `insecureSkipHostcheck` option was incorrectly placed under `settings.options`. This update moves it to the correct path under `settings.gui` to ensure proper configuration behavior.
Adjusts the `insecureSkipHostcheck` setting to align with the proper configuration structure. This resolves a misconfiguration issue in the SGX fileserver Nix file.
Harald Hoyer