Update every 14 days; close previous prs

Automatic Nixpkgs update (#156 )
Date: Thu Apr 30 00:03:28 UTC 2026 Evaluation warnings: evaluation warning: cloud-hypervisor supports systemd-notify via vsock, but `microvm.vsock.cid` must be set to enable this. evaluation warning: 'system' has been renamed to/replaced by 'stdenv.hostPlatform.system' Co-authored-by: malobot <malobot@systemli.org> Reviewed-on: malobeo/infrastructure#156 Co-authored-by: ahtlon <git@ahtlon.de> Co-committed-by: ahtlon <git@ahtlon.de>
2026-05-05 11:38:48 +02:00 · 2026-05-05 11:11:20 +02:00 · 2026-04-29 20:53:30 +02:00 · 2026-04-14 13:14:34 +02:00 · 2026-03-26 10:59:37 +01:00 · 2026-03-26 10:31:09 +01:00
8 changed files with 102 additions and 24 deletions
--- a/.gitea/workflows/autoupdate.yml
+++ b/.gitea/workflows/autoupdate.yml
@@ -2,7 +2,7 @@ name: Weekly Flake Update
 on:
    schedule:
-        - cron: "0 0 * * 4"
+        - cron: "0 4 /14 * *"
    workflow_dispatch:
 permissions:
@@ -102,6 +102,18 @@ jobs:
                -L "bump"
                -t "$COMMIT_MSG"
                -d "$COMMIT_DESC"
            - name: close other bump requests
              run: |
                for i in $(tea pr -o simple | grep "Automatic Nixpkgs update" | awk '{print $1}')
                do
                  if [ "$i" = "" ]
                  then
                    echo "No bumps to close"
                    exit 0
                  else
                    tea pr close $i
                  fi
                done
            - name: Skip pull request
              if: steps.no-pr.outcome == 'failure'
              shell: bash
--- a/.gitea/workflows/hydra-callback.yml
+++ b/.gitea/workflows/hydra-callback.yml
@@ -0,0 +1,63 @@
 name: Hydra callback
 on:
    pull_request:
        types: 
            - opened
            - synchronize
        paths:
          - '**.nix'
          - flake.lock
    push:
        branches:
          - master
        paths:
          - '**.nix'
          - flake.lock
 permissions:
    contents: write
 jobs:
    on_pr:
        if: github.event.pull_request
        runs-on: ubuntu-latest
        env:
            NIXPKGS_ALLOW_UNFREE: 1
        steps:
            - name: Install sudo
              run: |
                  apt-get update
                  apt-get install -y sudo
            - name: Set up Nix
              uses: https://github.com/cachix/install-nix-action@v31
              with: 
                github_access_token: ${{ secrets.AHTLONS_GITHUB_TOKEN }}
            - name: Find pr number
              run: |
                echo PR=$(echo "${{ github.ref }}" | cut -d / -f 3) >> "$GITHUB_ENV"
            - name: run hydra wait
              timeout-minutes: 200
              run: |
                echo "Running now @ pr no $PR"
                nix run nixpkgs#hydra-cli -- -H https://hydra.dynamicdiscord.de jobset-wait malobeo2 "$PR"
    on_push:
        if: github.event.push
        runs-on: ubuntu-latest
        env:
            NIXPKGS_ALLOW_UNFREE: 1
        steps:
            - name: Install sudo
              run: |
                  apt-get update
                  apt-get install -y sudo
            - name: Set up Nix
              uses: https://github.com/cachix/install-nix-action@v31
              with: 
                github_access_token: ${{ secrets.AHTLONS_GITHUB_TOKEN }}
            - name: run hydra wait
              timeout-minutes: 200
              run: |
                echo "Running now @ master"
                nix run nixpkgs#hydra-cli -- -H https://hydra.dynamicdiscord.de jobset-wait malobeo2 master
--- a/.hydra/spec.json
+++ b/.hydra/spec.json
@@ -12,7 +12,7 @@
  "type": 0,
  "inputs": {
    "nixexpr": {
-      "value": "https://git.dynamicdiscord.de/ahtlon/infrastructure master",
+      "value": "https://git.dynamicdiscord.de/malobeo/infrastructure master",
      "type": "git",
      "emailresponsible": false
    },
--- a/flake.lock
+++ b/flake.lock
@@ -126,11 +126,11 @@
        "spectrum": "spectrum"
      },
      "locked": {
-        "lastModified": 1772055583,
+        "lastModified": 1776340739,
-        "narHash": "sha256-iPIm1orqkhsxqju6EVODOrV1BmyA5HNTZ8a1o812bFM=",
+        "narHash": "sha256-s4FDictJlPtY6Shd6scG5hgrDMiHth09+svtvTA5NLA=",
        "owner": "astro",
        "repo": "microvm.nix",
-        "rev": "f6dcfb7c16cc3775536c825dc0698d4ede13d063",
+        "rev": "2f2f62fdfdca2750e3399f66bd03986ab967e5ca",
        "type": "github"
      },
      "original": {
@@ -177,11 +177,11 @@
    },
    "nixos-hardware": {
      "locked": {
-        "lastModified": 1771969195,
+        "lastModified": 1777917524,
-        "narHash": "sha256-qwcDBtrRvJbrrnv1lf/pREQi8t2hWZxVAyeMo7/E9sw=",
+        "narHash": "sha256-k+LVe9YaO2BEPB9AaCtTtOMCeGi4dxDo6gt4Un3qoPY=",
        "owner": "NixOS",
        "repo": "nixos-hardware",
-        "rev": "41c6b421bdc301b2624486e11905c9af7b8ec68e",
+        "rev": "df7783100babf59001340a7a874ba3824e441ecb",
        "type": "github"
      },
      "original": {
@@ -209,11 +209,11 @@
    },
    "nixpkgs-unstable": {
      "locked": {
-        "lastModified": 1771848320,
+        "lastModified": 1777578337,
-        "narHash": "sha256-0MAd+0mun3K/Ns8JATeHT1sX28faLII5hVLq0L3BdZU=",
+        "narHash": "sha256-Ad49moKWeXtKBJNy2ebiTQUEgdLyvGmTeykAQ9xM+Z4=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "2fc6539b481e1d2569f25f8799236694180c0993",
+        "rev": "15f4ee454b1dce334612fa6843b3e05cf546efab",
        "type": "github"
      },
      "original": {
@@ -225,11 +225,11 @@
    },
    "nixpkgs_2": {
      "locked": {
-        "lastModified": 1771903837,
+        "lastModified": 1777673416,
-        "narHash": "sha256-sdaqdnsQCv3iifzxwB22tUwN/fSHoN7j2myFW5EIkGk=",
+        "narHash": "sha256-5c2POKPOjU40Kh0MirOdScBLG0bu9TAuPYAtPRNZMBs=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "e764fc9a405871f1f6ca3d1394fb422e0a0c3951",
+        "rev": "26ef669cffa904b6f6832ab57b77892a37c1a671",
        "type": "github"
      },
      "original": {
@@ -264,11 +264,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1772048434,
+        "lastModified": 1777944972,
-        "narHash": "sha256-/wA0OaH6kZ/pFA+nXR/tvg5oupOmEDmMS5us79JT60o=",
+        "narHash": "sha256-VfGRo1qTBKOe3s2gOv8LSoA6Fk19PvBlwQ1ECN0Evn8=",
        "owner": "Mic92",
        "repo": "sops-nix",
-        "rev": "334daa7c273dd8bf7a0cd370e4e16022b64e55e9",
+        "rev": "c591bf665727040c6cc5cb409079acb22dcce33c",
        "type": "github"
      },
      "original": {
@@ -280,11 +280,11 @@
    "spectrum": {
      "flake": false,
      "locked": {
-        "lastModified": 1759482047,
+        "lastModified": 1772189877,
-        "narHash": "sha256-H1wiXRQHxxPyMMlP39ce3ROKCwI5/tUn36P8x6dFiiQ=",
+        "narHash": "sha256-i1p90Rgssb//aNiTDFq46ZG/fk3LmyRLChtp/9lddyA=",
        "ref": "refs/heads/main",
-        "rev": "c5d5786d3dc938af0b279c542d1e43bce381b4b9",
+        "rev": "fe39e122d898f66e89ffa17d4f4209989ccb5358",
-        "revCount": 996,
+        "revCount": 1255,
        "type": "git",
        "url": "https://spectrum-os.org/git/spectrum"
      },
--- a/machines/modules/malobeo/gitea_translator.nix
+++ b/machines/modules/malobeo/gitea_translator.nix
@@ -55,7 +55,7 @@ in
      serviceConfig = {
        ExecStart = ''
-          ${pkgs.python3}/bin/python3 ${inputs.self + /scripts/gitea_hydra_server.py} \
+          ${pkgs.python3}/bin/python3 ${../../../scripts/gitea_hydra_server.py} \
            --baseurl ${cfg.baseurl} \
            --owner ${cfg.owner} \
            --repo ${cfg.repo} \
--- a/machines/nextcloud/configuration.nix
+++ b/machines/nextcloud/configuration.nix
@@ -63,6 +63,7 @@ in
    settings = {
      trusted_domains = [ "cloud.malobeo.org" "cloud.hq.malobeo.org" ];
      trusted_proxies = [ hosts.malobeo.hosts.fanny.network.address ];
      overwriteprotocol = "https";
      "maintenance_window_start" = "1";
      "default_phone_region" = "DE";
    };
--- a/machines/pretalx/configuration.nix
+++ b/machines/pretalx/configuration.nix
@@ -1,4 +1,4 @@
-{ config, self, lib, pkgs,  ... }:
+{ config, self, lib, pkgs, inputs,  ... }:
 with lib;
@@ -58,6 +58,7 @@ in
  services.pretalx = {
    enable = true;
    package = inputs.nixpkgs-unstable.legacyPackages."x86_64-linux".pretalx;
    celery.extraArgs = [
      "--concurrency=${toString config.microvm.vcpu}"
    ];
--- a/outputs.nix
+++ b/outputs.nix
@@ -118,6 +118,7 @@ in (utils.lib.eachSystem (builtins.filter filter_system utils.lib.defaultSystems
      users.imports = [ ./machines/modules/malobeo/users.nix ];
      backup.imports = [ ./machines/modules/malobeo/backup.nix ];
      printing.imports = [ ./machines/modules/malobeo/printing.nix ];
      gitea-translator.imports = [ ./machines/modules/malobeo/gitea_translator.nix ];
    };
    hydraJobs = nixpkgs.lib.mapAttrs (_: nixpkgs.lib.hydraJob) (
Author	SHA1	Message	Date
ahtlon	9c55854987	Update every 14 days; close previous prs	2026-05-05 11:38:48 +02:00
ahtlon	8e7c9141c2	Automatic Nixpkgs update (#156 ) Date: Thu Apr 30 00:03:28 UTC 2026 Evaluation warnings: evaluation warning: cloud-hypervisor supports systemd-notify via vsock, but `microvm.vsock.cid` must be set to enable this. evaluation warning: 'system' has been renamed to/replaced by 'stdenv.hostPlatform.system' Co-authored-by: malobot <malobot@systemli.org> Reviewed-on: malobeo/infrastructure#156 Co-authored-by: ahtlon <git@ahtlon.de> Co-committed-by: ahtlon <git@ahtlon.de>	2026-05-05 11:11:20 +02:00
ahtlon	ea2ba8637b	[pretalx] pin package to unstable to fix security problem	2026-04-29 20:53:30 +02:00
kalipso	c40d84ba4d	[nextcloud] overwriteprotocol https	2026-04-14 13:14:34 +02:00
malobot	bd859dd40d	Update flake.lock	2026-03-26 10:59:37 +01:00
ahtlon	3ccd73788c	[gitea] add timeout and run on master	2026-03-26 10:31:09 +01:00
ahtlon	b2fc2d126f	Add hydra callback	2026-03-25 10:41:53 +01:00
ahtlon	bf3f4db1b2	[hydra] forgot to change repo	2026-03-16 20:58:45 +01:00
kalipso	f4614f2887	[modules] do not reference self within modules if it gets included in other flakes 'self' references to that flake, instead of malobeo	2026-03-16 20:52:14 +01:00
kalipso	07d7f3b882	[modules] add gitea translator	2026-03-16 20:42:26 +01:00