From 04d1aa152be0bc999665c9ed443dbf37e632908a Mon Sep 17 00:00:00 2001 From: TheWanderingCrow Date: Tue, 7 Apr 2026 15:11:19 -0400 Subject: [PATCH] update and swap to Lix because of CVE --- flake.lock | 48 +++++++++++++-------------- hosts/common/core/default.nix | 2 ++ hosts/common/core/dns.nix | 20 +++++------ modules/services/jellyfin/default.nix | 2 +- 4 files changed, 37 insertions(+), 35 deletions(-) diff --git a/flake.lock b/flake.lock index 4e1602d..b135821 100644 --- a/flake.lock +++ b/flake.lock @@ -44,11 +44,11 @@ ] }, "locked": { - "lastModified": 1773025010, - "narHash": "sha256-khlHllTsovXgT2GZ0WxT4+RvuMjNeR5OW0UYeEHPYQo=", + "lastModified": 1773889306, + "narHash": "sha256-PAqwnsBSI9SVC2QugvQ3xeYCB0otOwCacB1ueQj2tgw=", "owner": "nix-community", "repo": "disko", - "rev": "7b9f7f88ab3b339f8142dc246445abb3c370d3d3", + "rev": "5ad85c82cc52264f4beddc934ba57f3789f28347", "type": "github" }, "original": { @@ -65,11 +65,11 @@ "quickshell": "quickshell" }, "locked": { - "lastModified": 1772034342, - "narHash": "sha256-InX8kRyrpVL+MP/gW1qhH9tGtDx2z2gmJ9NfmvUJ35I=", + "lastModified": 1775588644, + "narHash": "sha256-iYBdSBvcW7bJtc84G6k5TFJEbPHQrif9KzZyE9Lbq8M=", "owner": "AvengeMedia", "repo": "DankMaterialShell", - "rev": "47b12d09fc8526f9c231de60848a41b5990b4a37", + "rev": "9798d78300d402178896f6ee1c370baed490158a", "type": "github" }, "original": { @@ -155,11 +155,11 @@ }, "hardware": { "locked": { - "lastModified": 1772972630, - "narHash": "sha256-mUJxsNOrBMNOUJzN0pfdVJ1r2pxeqm9gI/yIKXzVVbk=", + "lastModified": 1775490113, + "narHash": "sha256-2ZBhDNZZwYkRmefK5XLOusCJHnoeKkoN95hoSGgMxWM=", "owner": "nixos", "repo": "nixos-hardware", - "rev": "3966ce987e1a9a164205ac8259a5fe8a64528f72", + "rev": "c775c2772ba56e906cbeb4e0b2db19079ef11ff7", "type": "github" }, "original": { @@ -175,11 +175,11 @@ ] }, "locked": { - "lastModified": 1775143651, - "narHash": "sha256-S0RqAyDPMTcv9vASMaE8eY1QexFysAOdnxUxFHIPOyE=", + "lastModified": 1775661044, + "narHash": "sha256-HlvLj+wE5ELaU+u2cY2nBFUJHdrob1V7qydk9lBx7oE=", "owner": "nix-community", "repo": "home-manager", - "rev": "d166a078541982a76f14d3e06e9665fa5c9ed85e", + "rev": "4ac0a4fd1537325d769377d574dccd10b97c28a2", "type": "github" }, "original": { @@ -312,11 +312,11 @@ }, "nixpkgs-stable": { "locked": { - "lastModified": 1772822230, - "narHash": "sha256-yf3iYLGbGVlIthlQIk5/4/EQDZNNEmuqKZkQssMljuw=", + "lastModified": 1775525138, + "narHash": "sha256-BQb70+B378ECLO8iQT3P/b1hCC5/CJVHZdeulY8futc=", "owner": "nixos", "repo": "nixpkgs", - "rev": "71caefce12ba78d84fe618cf61644dce01cf3a96", + "rev": "d96b37bbeb9840f1c0ebfe90585ef5067b69bbb3", "type": "github" }, "original": { @@ -328,11 +328,11 @@ }, "nixpkgs-unstable": { "locked": { - "lastModified": 1772773019, - "narHash": "sha256-E1bxHxNKfDoQUuvriG71+f+s/NT0qWkImXsYZNFFfCs=", + "lastModified": 1775423009, + "narHash": "sha256-vPKLpjhIVWdDrfiUM8atW6YkIggCEKdSAlJPzzhkQlw=", "owner": "nixos", "repo": "nixpkgs", - "rev": "aca4d95fce4914b3892661bcb80b8087293536c6", + "rev": "68d8aa3d661f0e6bd5862291b5bb263b2a6595c9", "type": "github" }, "original": { @@ -376,11 +376,11 @@ }, "nixpkgs_4": { "locked": { - "lastModified": 1775036866, - "narHash": "sha256-ZojAnPuCdy657PbTq5V0Y+AHKhZAIwSIT2cb8UgAz/U=", + "lastModified": 1775423009, + "narHash": "sha256-vPKLpjhIVWdDrfiUM8atW6YkIggCEKdSAlJPzzhkQlw=", "owner": "nixos", "repo": "nixpkgs", - "rev": "6201e203d09599479a3b3450ed24fa81537ebc4e", + "rev": "68d8aa3d661f0e6bd5862291b5bb263b2a6595c9", "type": "github" }, "original": { @@ -525,11 +525,11 @@ ] }, "locked": { - "lastModified": 1772944399, - "narHash": "sha256-xTzsSd3r5HBeufSZ3fszAn0ldfKctvsYG7tT2YJg5gY=", + "lastModified": 1775619836, + "narHash": "sha256-VcC/+MMMldwQKcST2y/QTndGLusSxjeUvYwFwzZKKko=", "owner": "mic92", "repo": "sops-nix", - "rev": "c8e69670b316d6788e435a3aa0bda74eb1b82cc0", + "rev": "de5f2d596eb896a5728afcd15f823f59cb9ecfdb", "type": "github" }, "original": { diff --git a/hosts/common/core/default.nix b/hosts/common/core/default.nix index 72ea977..22865dd 100644 --- a/hosts/common/core/default.nix +++ b/hosts/common/core/default.nix @@ -63,7 +63,9 @@ in virtualisation.oci-containers.backend = lib.mkDefault "podman"; + # Nix Settings nix = { + package = pkgs.lixPackageSets.stable.lix; settings = { connect-timeout = 5; log-lines = 25; diff --git a/hosts/common/core/dns.nix b/hosts/common/core/dns.nix index 766ac86..3dcd62c 100644 --- a/hosts/common/core/dns.nix +++ b/hosts/common/core/dns.nix @@ -1,13 +1,13 @@ { pkgs, ... }: { - environment.systemPackages = [ - pkgs.nextdns - ]; - services.nextdns = { - enable = true; - arguments = [ - "-config" - "cc2b9b" - ]; - }; + # environment.systemPackages = [ + # pkgs.nextdns + # ]; + # services.nextdns = { + # enable = true; + # arguments = [ + # "-config" + # "cc2b9b" + # ]; + # }; } diff --git a/modules/services/jellyfin/default.nix b/modules/services/jellyfin/default.nix index f3c834b..a978585 100644 --- a/modules/services/jellyfin/default.nix +++ b/modules/services/jellyfin/default.nix @@ -7,7 +7,7 @@ }: { imports = [ - inputs.nix-secrets.flakeModules.jellyfin + # inputs.nix-secrets.flakeModules.jellyfin inputs.quadlet-nix.nixosModules.quadlet ];