cut var

add test file
we
2026-03-14 13:48:09 +01:00 · 2026-03-14 13:44:41 +01:00 · 2026-03-14 13:17:12 +01:00 · 2026-03-14 13:17:12 +01:00 · 2026-03-14 13:17:12 +01:00 · 2026-03-14 13:17:12 +01:00
26 changed files with 6776 additions and 20 deletions
--- a/.gitea/workflows/comment-diff.yml
+++ b/.gitea/workflows/comment-diff.yml
@@ -0,0 +1,33 @@
+name: Weekly Flake Update
+
+on:
+    pull_request:
+      types: 
+        - opened
+        - synchronize
+        - edited
+        - reopened
+
+permissions:
+    contents: write
+
+jobs:
+  Explore-Gitea-Actions:
+    runs-on: ubuntu-latest
+    steps:
+      - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event."
+      - run: echo "🐧 This job is now running on a ${{ runner.os }} server hosted by Gitea!"
+      - run: echo "🔎 The name of your branch is ${{ github.ref }} and your repository is ${{ github.repository }}."
+      - name: Check out repository code
+        uses: actions/checkout@v3
+      - run: echo "💡 The ${{ github.repository }} repository has been cloned to the runner."
+      - run: echo "🖥️ The workflow is now ready to test your code on the runner."
+      - name: List files in the repository
+        run: |
+          ls ${{ github.workspace }}
+      - run: echo "🍏 This job's status is ${{ job.status }}."
+      - name: Check for string parsing
+        run: |
+          var=$(echo "${{ github.ref }}" | cut -d / -f 3)
+          echo "$var"
+
--- a/.hydra/declarative-jobsets.nix
+++ b/.hydra/declarative-jobsets.nix
@@ -0,0 +1,75 @@
+{ nixpkgs, pulls, ... }:
+
+let
+  pkgs = import nixpkgs { };
+
+  prs = builtins.fromJSON (builtins.readFile pulls);
+  prJobsets = pkgs.lib.mapAttrs (num: info: {
+    enabled = 1;
+    hidden = false;
+    description = "PR ${num}: ${info.title}";
+    checkinterval = 300;
+    schedulingshares = 20;
+    enableemail = false;
+    emailoverride = "";
+    keepnr = 1;
+    type = 1;
+    flake = "${info.head.repo.html_url}/archive/${info.head.ref}.tar.gz";
+    inputs = {
+      gitea_repo_name = {
+        type = "string";
+        value = "${info.head.repo.name}";
+        emailresponsible = false;
+      };
+      gitea_repo_owner = {
+        type = "string";
+        value = "${info.head.repo.owner.username}";
+        emailresponsible = false;
+      };
+      gitea_http_url = {
+        type = "string";
+        value = "https://git.dynamicdiscord.de";
+        emailresponsible = false;
+      };
+      gitea_status_repo = {
+        type = "string";
+        value = "${info.head.ref}";
+        emailresponsible = false;
+      };
+    };
+  }) prs;
+  mkFlakeJobset = branch: {
+    description = "Build ${branch} branch of the Malobeo Infrastructure repo";
+    checkinterval = 300;
+    enabled = "1";
+    schedulingshares = 100;
+    enableemail = false;
+    emailoverride = "";
+    keepnr = 3;
+    hidden = false;
+    type = 1;
+    flake = "https://git.dynamicdiscord.de/malobeo/infrastructure/archive/${branch}.tar.gz";
+  };
+
+  desc = prJobsets // {
+    "master" = mkFlakeJobset "master";
+  };
+
+  log = {
+    pulls = prs;
+    jobsets = desc;
+  };
+
+in
+{
+  jobsets = pkgs.runCommand "spec-jobsets.json" { } ''
+    cat >$out <<'EOF'
+    ${builtins.toJSON desc}
+    EOF
+    # This is to get nice .jobsets build logs on Hydra
+    cat >tmp <<'EOF'
+    ${builtins.toJSON log}
+    EOF
+    ${pkgs.jq}/bin/jq . tmp
+  '';
+}
--- a/.hydra/spec.json
+++ b/.hydra/spec.json
@@ -0,0 +1,30 @@
+{
+  "enabled": 1,
+  "hidden": false,
+  "description": "Malobeo infrastructure repo",
+  "nixexprinput": "nixexpr",
+  "nixexprpath": ".hydra/declarative-jobsets.nix",
+  "checkinterval": 60,
+  "schedulingshares": 100,
+  "enableemail": false,
+  "emailoverride": "",
+  "keepnr": 5,
+  "type": 0,
+  "inputs": {
+    "nixexpr": {
+      "value": "https://git.dynamicdiscord.de/ahtlon/infrastructure master",
+      "type": "git",
+      "emailresponsible": false
+    },
+    "nixpkgs": {
+      "value": "https://github.com/NixOS/nixpkgs nixos-25.11",
+      "type": "git",
+      "emailresponsible": false
+    },
+    "pulls": {
+      "type": "path",
+      "value": "http://127.0.0.1:27364/gitea-pulls-sorted.json",
+      "emailresponsible": false
+    }
+  }
+}
--- a/doc/src/SUMMARY.md
+++ b/doc/src/SUMMARY.md
@@ -12,6 +12,7 @@
            - [musik](./projekte/musik.md)
        - [TODO](./todo.md)
        - [Modules]()
+            - [Gitea-translator](./module/gitea-translator.md)
            - [Initrd-ssh](./module/initssh.md)
            - [Disks](./module/disks.md)
    - [How-to]()
--- a/doc/src/module/gitea-translator.md
+++ b/doc/src/module/gitea-translator.md
@@ -0,0 +1,21 @@
+# Gitea-tanslator
+The module can be used by importing `inputs.self.nixosModules.malobeo.gitea-translator`
+
+This module starts a python server that fetches the gitea pull request api and translates it to a file that hydra understands.   
+To use, just set the parameters of the gitea server, then send a GET request to either `http://${host}:${port}/` or `http://${host}:${port}/gitea-pulls-sorted.json`
+
+## Module config
+##### enable (default = false) - enables the module  
+##### baseurl (default = "git.dynamicdiscord.de") - Base URL of the Gitea instance   
+##### owner (default = "malobeo") - Repository owner   
+##### repo (default = "infrastructure") - Repository name   
+##### host (default = "127.0.0.1") - Address the server binds to   
+##### port (default = 27364) - Port the server listens on   
+
+## Hydra config
+If you change the default port or host, the file `.hydra/spec.json` has to be modified accordingly.
+With the module running on the hydra host, create a new hydra project, then:
+
+    - Set `Declarative spec file` to `.hydra/spec.json`
+    - Change declaritive input type to `Git checkout`
+    - Set your git repo location in the field below that
--- a/this/gitea2.json
+++ b/this/gitea2.json
@@ -0,0 +1,350 @@
+{
+  "allow_maintainer_edit": false,
+  "assignee": null,
+  "assignees": null,
+  "base": {
+    "label": "master",
+    "ref": "master",
+    "repo": {
+      "allow_fast_forward_only_merge": false,
+      "allow_manual_merge": false,
+      "allow_merge_commits": true,
+      "allow_rebase": true,
+      "allow_rebase_explicit": true,
+      "allow_rebase_update": true,
+      "allow_squash_merge": true,
+      "archived": false,
+      "archived_at": "1970-01-01T01:00:00+01:00",
+      "autodetect_manual_merge": false,
+      "avatar_url": "",
+      "clone_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure.git",
+      "created_at": "2024-10-24T19:38:14+02:00",
+      "default_allow_maintainer_edit": false,
+      "default_branch": "master",
+      "default_delete_branch_after_merge": false,
+      "default_merge_style": "merge",
+      "description": "",
+      "empty": false,
+      "fork": true,
+      "forks_count": 0,
+      "full_name": "ahtlon/infrastructure",
+      "has_actions": true,
+      "has_code": true,
+      "has_issues": false,
+      "has_packages": false,
+      "has_projects": false,
+      "has_pull_requests": true,
+      "has_releases": false,
+      "has_wiki": false,
+      "html_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure",
+      "id": 29,
+      "ignore_whitespace_conflicts": false,
+      "internal": false,
+      "language": "",
+      "languages_url": "https://git.dynamicdiscord.de/api/v1/repos/ahtlon/infrastructure/languages",
+      "licenses": [],
+      "link": "",
+      "mirror": false,
+      "mirror_interval": "",
+      "mirror_updated": "0001-01-01T00:00:00Z",
+      "name": "infrastructure",
+      "object_format_name": "sha1",
+      "open_issues_count": 0,
+      "open_pr_counter": 5,
+      "original_url": "",
+      "owner": {
+        "active": false,
+        "avatar_url": "https://git.dynamicdiscord.de/avatars/7399d018a0bcee0f2da113bdeeafec029316d8e8ce774b829de4125b026c0599",
+        "created": "2024-10-23T17:19:18+02:00",
+        "description": "",
+        "email": "ahtlon@noreply.git.dynamicdiscord.de",
+        "followers_count": 0,
+        "following_count": 0,
+        "full_name": "",
+        "html_url": "https://git.dynamicdiscord.de/ahtlon",
+        "id": 8,
+        "is_admin": false,
+        "language": "",
+        "last_login": "0001-01-01T00:00:00Z",
+        "location": "",
+        "login": "ahtlon",
+        "login_name": "",
+        "prohibit_login": false,
+        "restricted": false,
+        "source_id": 0,
+        "starred_repos_count": 0,
+        "username": "ahtlon",
+        "visibility": "public",
+        "website": ""
+      },
+      "parent": {
+        "allow_fast_forward_only_merge": false,
+        "allow_manual_merge": false,
+        "allow_merge_commits": true,
+        "allow_rebase": true,
+        "allow_rebase_explicit": true,
+        "allow_rebase_update": true,
+        "allow_squash_merge": true,
+        "archived": false,
+        "archived_at": "1970-01-01T01:00:00+01:00",
+        "autodetect_manual_merge": false,
+        "avatar_url": "",
+        "clone_url": "https://git.dynamicdiscord.de/malobeo/infrastructure.git",
+        "created_at": "2022-10-04T18:35:43+02:00",
+        "default_allow_maintainer_edit": false,
+        "default_branch": "master",
+        "default_delete_branch_after_merge": false,
+        "default_merge_style": "merge",
+        "description": "",
+        "empty": false,
+        "fork": false,
+        "forks_count": 1,
+        "full_name": "malobeo/infrastructure",
+        "has_actions": true,
+        "has_code": true,
+        "has_issues": true,
+        "has_packages": false,
+        "has_projects": true,
+        "has_pull_requests": true,
+        "has_releases": true,
+        "has_wiki": true,
+        "html_url": "https://git.dynamicdiscord.de/malobeo/infrastructure",
+        "id": 15,
+        "ignore_whitespace_conflicts": false,
+        "internal": false,
+        "internal_tracker": {
+          "allow_only_contributors_to_track_time": true,
+          "enable_issue_dependencies": true,
+          "enable_time_tracker": true
+        },
+        "language": "",
+        "languages_url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure/languages",
+        "licenses": [],
+        "link": "",
+        "mirror": false,
+        "mirror_interval": "",
+        "mirror_updated": "0001-01-01T00:00:00Z",
+        "name": "infrastructure",
+        "object_format_name": "sha1",
+        "open_issues_count": 40,
+        "open_pr_counter": 4,
+        "original_url": "",
+        "owner": {
+          "active": false,
+          "avatar_url": "https://git.dynamicdiscord.de/avatars/9ea8af20ca015cb078b2971cd4e91e6d",
+          "created": "2023-03-29T17:26:16+02:00",
+          "description": "",
+          "email": "",
+          "followers_count": 0,
+          "following_count": 0,
+          "full_name": "",
+          "html_url": "https://git.dynamicdiscord.de/malobeo",
+          "id": 7,
+          "is_admin": false,
+          "language": "",
+          "last_login": "0001-01-01T00:00:00Z",
+          "location": "",
+          "login": "malobeo",
+          "login_name": "",
+          "prohibit_login": false,
+          "restricted": false,
+          "source_id": 0,
+          "starred_repos_count": 0,
+          "username": "malobeo",
+          "visibility": "public",
+          "website": ""
+        },
+        "permissions": {
+          "admin": false,
+          "pull": true,
+          "push": false
+        },
+        "private": false,
+        "projects_mode": "",
+        "release_counter": 0,
+        "size": 2878,
+        "ssh_url": "ssh://gitea@git.dynamicdiscord.de:23428/malobeo/infrastructure.git",
+        "stars_count": 1,
+        "template": false,
+        "topics": [],
+        "updated_at": "2026-03-12T01:11:13+01:00",
+        "url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure",
+        "watchers_count": 2,
+        "website": ""
+      },
+      "permissions": {
+        "admin": false,
+        "pull": true,
+        "push": false
+      },
+      "private": false,
+      "projects_mode": "all",
+      "release_counter": 0,
+      "size": 14507,
+      "ssh_url": "ssh://gitea@git.dynamicdiscord.de:23428/ahtlon/infrastructure.git",
+      "stars_count": 0,
+      "template": false,
+      "topics": [],
+      "updated_at": "2026-03-12T01:05:43+01:00",
+      "url": "https://git.dynamicdiscord.de/api/v1/repos/ahtlon/infrastructure",
+      "watchers_count": 1,
+      "website": ""
+    },
+    "repo_id": 29,
+    "sha": "dacdb2214ea6ff645c444ce0eaab68c317f0a616"
+  },
+  "body": "",
+  "closed_at": null,
+  "comments": 0,
+  "created_at": "2026-03-11T17:29:55+01:00",
+  "diff_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8.diff",
+  "draft": false,
+  "due_date": null,
+  "head": {
+    "label": "nixpkgs_bump_20260305",
+    "ref": "nixpkgs_bump_20260305",
+    "repo": {
+      "allow_fast_forward_only_merge": false,
+      "allow_manual_merge": false,
+      "allow_merge_commits": true,
+      "allow_rebase": true,
+      "allow_rebase_explicit": true,
+      "allow_rebase_update": true,
+      "allow_squash_merge": true,
+      "archived": false,
+      "archived_at": "1970-01-01T01:00:00+01:00",
+      "autodetect_manual_merge": false,
+      "avatar_url": "",
+      "clone_url": "https://git.dynamicdiscord.de/malobeo/infrastructure.git",
+      "created_at": "2022-10-04T18:35:43+02:00",
+      "default_allow_maintainer_edit": false,
+      "default_branch": "master",
+      "default_delete_branch_after_merge": false,
+      "default_merge_style": "merge",
+      "description": "",
+      "empty": false,
+      "fork": false,
+      "forks_count": 1,
+      "full_name": "malobeo/infrastructure",
+      "has_actions": true,
+      "has_code": true,
+      "has_issues": true,
+      "has_packages": false,
+      "has_projects": true,
+      "has_pull_requests": true,
+      "has_releases": true,
+      "has_wiki": true,
+      "html_url": "https://git.dynamicdiscord.de/malobeo/infrastructure",
+      "id": 15,
+      "ignore_whitespace_conflicts": false,
+      "internal": false,
+      "internal_tracker": {
+        "allow_only_contributors_to_track_time": true,
+        "enable_issue_dependencies": true,
+        "enable_time_tracker": true
+      },
+      "language": "",
+      "languages_url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure/languages",
+      "licenses": [],
+      "link": "",
+      "mirror": false,
+      "mirror_interval": "",
+      "mirror_updated": "0001-01-01T00:00:00Z",
+      "name": "infrastructure",
+      "object_format_name": "sha1",
+      "open_issues_count": 40,
+      "open_pr_counter": 4,
+      "original_url": "",
+      "owner": {
+        "active": false,
+        "avatar_url": "https://git.dynamicdiscord.de/avatars/9ea8af20ca015cb078b2971cd4e91e6d",
+        "created": "2023-03-29T17:26:16+02:00",
+        "description": "",
+        "email": "",
+        "followers_count": 0,
+        "following_count": 0,
+        "full_name": "",
+        "html_url": "https://git.dynamicdiscord.de/malobeo",
+        "id": 7,
+        "is_admin": false,
+        "language": "",
+        "last_login": "0001-01-01T00:00:00Z",
+        "location": "",
+        "login": "malobeo",
+        "login_name": "",
+        "prohibit_login": false,
+        "restricted": false,
+        "source_id": 0,
+        "starred_repos_count": 0,
+        "username": "malobeo",
+        "visibility": "public",
+        "website": ""
+      },
+      "permissions": {
+        "admin": false,
+        "pull": true,
+        "push": false
+      },
+      "private": false,
+      "projects_mode": "",
+      "release_counter": 0,
+      "size": 2878,
+      "ssh_url": "ssh://gitea@git.dynamicdiscord.de:23428/malobeo/infrastructure.git",
+      "stars_count": 1,
+      "template": false,
+      "topics": [],
+      "updated_at": "2026-03-12T01:11:13+01:00",
+      "url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure",
+      "watchers_count": 2,
+      "website": ""
+    },
+    "repo_id": 15,
+    "sha": "7c66a24563d0e95c292aafeaa08056effc6152d9"
+  },
+  "html_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8",
+  "id": 66,
+  "is_locked": false,
+  "labels": [],
+  "merge_base": "344eeb437b0aa29baee1227e48878f987e21e296",
+  "merge_commit_sha": null,
+  "mergeable": true,
+  "merged": false,
+  "merged_at": null,
+  "merged_by": null,
+  "milestone": null,
+  "number": 8,
+  "patch_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8.patch",
+  "pin_order": 0,
+  "requested_reviewers": null,
+  "requested_reviewers_teams": null,
+  "state": "open",
+  "target_repo_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure.git",
+  "title": "Update flake.lock",
+  "updated_at": "2026-03-11T17:29:55+01:00",
+  "url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8",
+  "user": {
+    "active": false,
+    "avatar_url": "https://git.dynamicdiscord.de/avatars/7399d018a0bcee0f2da113bdeeafec029316d8e8ce774b829de4125b026c0599",
+    "created": "2024-10-23T17:19:18+02:00",
+    "description": "",
+    "email": "ahtlon@noreply.git.dynamicdiscord.de",
+    "followers_count": 0,
+    "following_count": 0,
+    "full_name": "",
+    "html_url": "https://git.dynamicdiscord.de/ahtlon",
+    "id": 8,
+    "is_admin": false,
+    "language": "",
+    "last_login": "0001-01-01T00:00:00Z",
+    "location": "",
+    "login": "ahtlon",
+    "login_name": "",
+    "prohibit_login": false,
+    "restricted": false,
+    "source_id": 0,
+    "starred_repos_count": 0,
+    "username": "ahtlon",
+    "visibility": "public",
+    "website": ""
+  }
+}
--- a/this/gitea_out.json
+++ b/this/gitea_out.json
--- a/this/gitlab-pulls-sorted.json
+++ b/this/gitlab-pulls-sorted.json
--- a/this/pretty_gl_api_out.json
+++ b/this/pretty_gl_api_out.json
--- a/this/raw_gl_api_out.txt
+++ b/this/raw_gl_api_out.txt
--- a/flake.lock
+++ b/flake.lock
@@ -126,11 +126,11 @@
        "spectrum": "spectrum"
      },
      "locked": {
-        "lastModified": 1772055583,
-        "narHash": "sha256-iPIm1orqkhsxqju6EVODOrV1BmyA5HNTZ8a1o812bFM=",
+        "lastModified": 1773018425,
+        "narHash": "sha256-fpgZBmZpKoEXEowBK/6m8g9FcOLWQ4UxhXHqCw2CpSM=",
        "owner": "astro",
        "repo": "microvm.nix",
-        "rev": "f6dcfb7c16cc3775536c825dc0698d4ede13d063",
+        "rev": "25ebda3c558e923720c965832dc9a04f559a055c",
        "type": "github"
      },
      "original": {
@@ -177,11 +177,11 @@
    },
    "nixos-hardware": {
      "locked": {
-        "lastModified": 1771969195,
-        "narHash": "sha256-qwcDBtrRvJbrrnv1lf/pREQi8t2hWZxVAyeMo7/E9sw=",
+        "lastModified": 1772972630,
+        "narHash": "sha256-mUJxsNOrBMNOUJzN0pfdVJ1r2pxeqm9gI/yIKXzVVbk=",
        "owner": "NixOS",
        "repo": "nixos-hardware",
-        "rev": "41c6b421bdc301b2624486e11905c9af7b8ec68e",
+        "rev": "3966ce987e1a9a164205ac8259a5fe8a64528f72",
        "type": "github"
      },
      "original": {
@@ -209,11 +209,11 @@
    },
    "nixpkgs-unstable": {
      "locked": {
-        "lastModified": 1771848320,
-        "narHash": "sha256-0MAd+0mun3K/Ns8JATeHT1sX28faLII5hVLq0L3BdZU=",
+        "lastModified": 1773282481,
+        "narHash": "sha256-b/GV2ysM8mKHhinse2wz+uP37epUrSE+sAKXy/xvBY4=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "2fc6539b481e1d2569f25f8799236694180c0993",
+        "rev": "fe416aaedd397cacb33a610b33d60ff2b431b127",
        "type": "github"
      },
      "original": {
@@ -225,11 +225,11 @@
    },
    "nixpkgs_2": {
      "locked": {
-        "lastModified": 1771903837,
-        "narHash": "sha256-sdaqdnsQCv3iifzxwB22tUwN/fSHoN7j2myFW5EIkGk=",
+        "lastModified": 1773375660,
+        "narHash": "sha256-SEzUWw2Rf5Ki3bcM26nSKgbeoqi2uYy8IHVBqOKjX3w=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "e764fc9a405871f1f6ca3d1394fb422e0a0c3951",
+        "rev": "3e20095fe3c6cbb1ddcef89b26969a69a1570776",
        "type": "github"
      },
      "original": {
@@ -264,11 +264,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1772048434,
-        "narHash": "sha256-/wA0OaH6kZ/pFA+nXR/tvg5oupOmEDmMS5us79JT60o=",
+        "lastModified": 1773096132,
+        "narHash": "sha256-M3zEnq9OElB7zqc+mjgPlByPm1O5t2fbUrH3t/Hm5Ag=",
        "owner": "Mic92",
        "repo": "sops-nix",
-        "rev": "334daa7c273dd8bf7a0cd370e4e16022b64e55e9",
+        "rev": "d1ff3b1034d5bab5d7d8086a7803c5a5968cd784",
        "type": "github"
      },
      "original": {
@@ -280,11 +280,11 @@
    "spectrum": {
      "flake": false,
      "locked": {
-        "lastModified": 1759482047,
-        "narHash": "sha256-H1wiXRQHxxPyMMlP39ce3ROKCwI5/tUn36P8x6dFiiQ=",
+        "lastModified": 1772189877,
+        "narHash": "sha256-i1p90Rgssb//aNiTDFq46ZG/fk3LmyRLChtp/9lddyA=",
        "ref": "refs/heads/main",
-        "rev": "c5d5786d3dc938af0b279c542d1e43bce381b4b9",
-        "revCount": 996,
+        "rev": "fe39e122d898f66e89ffa17d4f4209989ccb5358",
+        "revCount": 1255,
        "type": "git",
        "url": "https://spectrum-os.org/git/spectrum"
      },
--- a/gitea2.json
+++ b/gitea2.json
@@ -0,0 +1,350 @@
+AAAAAA{
+  "allow_maintainer_edit": false,
+  "assignee": null,
+  "assignees": null,
+  "base": {
+    "label": "master",
+    "ref": "master",dd
+    "repo": {
+      "allow_fast_ddasdad_only_merge": false,
+      "allow_manual_merge": false,
+      "allow_merge_commits": true,
+      "allow_rebase": true,
+      "allow_rebase_explicit": true,
+      "allow_rebase_update": true,
+      "allow_squash_merge": true,
+      "archived": false,
+      "archived_at": "1970-01-01T01:00:00+01:00",
+      "autodetect_manual_merge": false,
+      "avatar_url": "",
+      "clone_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure.git",
+      "created_at": "2024-10-24T19:38:14+02:00",
+      "default_allow_maintainer_edit": false,
+      "default_branch": "master",
+      "default_delete_branch_after_merge": false,
+      "default_merge_style": "merge",
+      "description": "",
+      "empty": false,
+      "fork": true,
+      "forks_count": 0,
+      "full_name": "ahtlon/infrastructure",
+      "has_actions": true,
+      "has_code": true,
+      "has_issues": false,
+      "has_packages": false,
+      "has_projects": false,
+      "has_pull_requests": true,
+      "has_releases": false,
+      "has_wiki": false,
+      "html_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure",
+      "id": 29,
+      "ignore_whitespace_conflicts": false,
+      "internal": false,
+      "language": "",
+      "languages_url": "https://git.dynamicdiscord.de/api/v1/repos/ahtlon/infrastructure/languages",
+      "licenses": [],
+      "link": "",
+      "mirror": false,
+      "mirror_interval": "",
+      "mirror_updated": "0001-01-01T00:00:00Z",
+      "name": "infrastructure",
+      "object_format_name": "sha1",
+      "open_issues_count": 0,
+      "open_pr_counter": 6,
+      "original_url": "",
+      "owner": {
+        "active": false,
+        "avatar_url": "https://git.dynamicdiscord.de/avatars/7399d018a0bcee0f2da113bdeeafec029316d8e8ce774b829de4125b026c0599",
+        "created": "2024-10-23T17:19:18+02:00",
+        "description": "",
+        "email": "ahtlon@noreply.git.dynamicdiscord.de",
+        "followers_count": 0,
+        "following_count": 0,
+        "full_name": "",
+        "html_url": "https://git.dynamicdiscord.de/ahtlon",
+        "id": 8,
+        "is_admin": false,
+        "language": "",
+        "last_login": "0001-01-01T00:00:00Z",
+        "location": "",
+        "login": "ahtlon",
+        "login_name": "",
+        "prohibit_login": false,
+        "restricted": false,
+        "source_id": 0,
+        "starred_repos_count": 0,
+        "username": "ahtlon",
+        "visibility": "public",
+        "website": ""
+      },
+      "parent": {
+        "allow_fast_forward_only_merge": false,
+        "allow_manual_merge": false,
+        "allow_merge_commits": true,
+        "allow_rebase": true,
+        "allow_rebase_explicit": true,
+        "allow_rebase_update": true,
+        "allow_squash_merge": true,
+        "archived": false,
+        "archived_at": "1970-01-01T01:00:00+01:00",
+        "autodetect_manual_merge": false,
+        "avatar_url": "",
+        "clone_url": "https://git.dynamicdiscord.de/malobeo/infrastructure.git",
+        "created_at": "2022-10-04T18:35:43+02:00",
+        "default_allow_maintainer_edit": false,
+        "default_branch": "master",
+        "default_delete_branch_after_merge": false,
+        "default_merge_style": "merge",
+        "description": "",
+        "empty": false,
+        "fork": false,
+        "forks_count": 1,
+        "full_name": "malobeo/infrastructure",
+        "has_actions": true,
+        "has_code": true,
+        "has_issues": true,
+        "has_packages": false,
+        "has_projects": true,
+        "has_pull_requests": true,
+        "has_releases": true,
+        "has_wiki": true,
+        "html_url": "https://git.dynamicdiscord.de/malobeo/infrastructure",
+        "id": 15,
+        "ignore_whitespace_conflicts": false,
+        "internal": false,
+        "internal_tracker": {
+          "allow_only_contributors_to_track_time": true,
+          "enable_issue_dependencies": true,
+          "enable_time_tracker": true
+        },
+        "language": "",
+        "languages_url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure/languages",
+        "licenses": [],
+        "link": "",
+        "mirror": false,
+        "mirror_interval": "",
+        "mirror_updated": "0001-01-01T00:00:00Z",
+        "name": "infrastructure",
+        "object_format_name": "sha1",
+        "open_issues_count": 40,
+        "open_pr_counter": 4,
+        "original_url": "",
+        "owner": {
+          "active": false,
+          "avatar_url": "https://git.dynamicdiscord.de/avatars/9ea8af20ca015cb078b2971cd4e91e6d",
+          "created": "2023-03-29T17:26:16+02:00",
+          "description": "",
+          "email": "",
+          "followers_count": 0,
+          "following_count": 0,
+          "full_name": "",
+          "html_url": "https://git.dynamicdiscord.de/malobeo",
+          "id": 7,
+          "is_admin": false,
+          "language": "",
+          "last_login": "0001-01-01T00:00:00Z",
+          "location": "",
+          "login": "malobeo",
+          "login_name": "",
+          "prohibit_login": false,
+          "restricted": false,
+          "source_id": 0,
+          "starred_repos_count": 0,
+          "username": "malobeo",
+          "visibility": "public",
+          "website": ""
+        },
+        "permissions": {
+          "admin": false,
+          "pull": true,
+          "push": false
+        },
+        "private": false,
+        "projects_mode": "",
+        "release_counter": 0,
+        "size": 2878,
+        "ssh_url": "ssh://gitea@git.dynamicdiscord.de:23428/malobeo/infrastructure.git",
+        "stars_count": 1,
+        "template": false,
+        "topics": [],
+        "updated_at": "2026-03-12T01:11:13+01:00",
+        "url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure",
+        "watchers_count": 2,
+        "website": ""
+      },
+      "permissions": {
+        "admin": false,
+        "pull": true,
+        "push": false
+      },
+      "private": false,
+      "projects_mode": "all",
+      "release_counter": 0,
+      "size": 14584,
+      "ssh_url": "ssh://gitea@git.dynamicdiscord.de:23428/ahtlon/infrastructure.git",
+      "stars_count": 0,
+      "template": false,
+      "topics": [],
+      "updated_at": "2026-03-13T16:33:51+01:00",
+      "url": "https://git.dynamicdiscord.de/api/v1/repos/ahtlon/infrastructure",
+      "watchers_count": 1,
+      "website": ""
+    },
+    "repo_id": 29,
+    "sha": "e73516fbe79022d12608e9616b75b3a388bd0e5f"
+  },
+  "body": "",
+  "closed_at": null,
+  "comments": 0,
+  "created_at": "2026-03-11T17:29:55+01:00",
+  "diff_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8.diff",
+  "draft": false,
+  "due_date": null,
+  "head": {
+    "label": "nixpkgs_bump_20260305",
+    "ref": "nixpkgs_bump_20260305",
+    "repo": {
+      "allow_fast_forward_only_merge": false,
+      "allow_manual_merge": false,
+      "allow_merge_commits": true,
+      "allow_rebase": true,
+      "allow_rebase_explicit": true,
+      "allow_rebase_update": true,
+      "allow_squash_merge": true,
+      "archived": false,
+      "archived_at": "1970-01-01T01:00:00+01:00",
+      "autodetect_manual_merge": false,
+      "avatar_url": "",
+      "clone_url": "https://git.dynamicdiscord.de/malobeo/infrastructure.git",
+      "created_at": "2022-10-04T18:35:43+02:00",
+      "default_allow_maintainer_edit": false,
+      "default_branch": "master",
+      "default_delete_branch_after_merge": false,
+      "default_merge_style": "merge",
+      "description": "",
+      "empty": false,
+      "fork": false,
+      "forks_count": 1,
+      "full_name": "malobeo/infrastructure",
+      "has_actions": true,
+      "has_code": true,
+      "has_issues": true,
+      "has_packages": false,
+      "has_projects": true,
+      "has_pull_requests": true,
+      "has_releases": true,
+      "has_wiki": true,
+      "html_url": "https://git.dynamicdiscord.de/malobeo/infrastructure",
+      "id": 15,
+      "ignore_whitespace_conflicts": false,
+      "internal": false,
+      "internal_tracker": {
+        "allow_only_contributors_to_track_time": true,
+        "enable_issue_dependencies": true,
+        "enable_time_tracker": true
+      },
+      "language": "",
+      "languages_url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure/languages",
+      "licenses": [],
+      "link": "",
+      "mirror": false,
+      "mirror_interval": "",
+      "mirror_updated": "0001-01-01T00:00:00Z",
+      "name": "infrastructure",
+      "object_format_name": "sha1",
+      "open_issues_count": 40,
+      "open_pr_counter": 4,
+      "original_url": "",
+      "owner": {
+        "active": false,
+        "avatar_url": "https://git.dynamicdiscord.de/avatars/9ea8af20ca015cb078b2971cd4e91e6d",
+        "created": "2023-03-29T17:26:16+02:00",
+        "description": "",
+        "email": "",
+        "followers_count": 0,
+        "following_count": 0,
+        "full_name": "",
+        "html_url": "https://git.dynamicdiscord.de/malobeo",
+        "id": 7,
+        "is_admin": false,
+        "language": "",
+        "last_login": "0001-01-01T00:00:00Z",
+        "location": "",
+        "login": "malobeo",
+        "login_name": "",
+        "prohibit_login": false,
+        "restricted": false,
+        "source_id": 0,
+        "starred_repos_count": 0,
+        "username": "malobeo",
+        "visibility": "public",
+        "website": ""
+      },
+      "permissions": {
+        "admin": false,
+        "pull": true,
+        "push": false
+      },
+      "private": false,
+      "projects_mode": "",
+      "release_counter": 0,
+      "size": 2878,
+      "ssh_url": "ssh://gitea@git.dynamicdiscord.de:23428/malobeo/infrastructure.git",
+      "stars_count": 1,
+      "template": false,
+      "topics": [],
+      "updated_at": "2026-03-12T01:11:13+01:00",
+      "url": "https://git.dynamicdiscord.de/api/v1/repos/malobeo/infrastructure",
+      "watchers_count": 2,
+      "website": ""
+    },
+    "repo_id": 15,
+    "sha": "7c66a24563d0e95c292aafeaa08056effc6152d9"
+  },
+  "html_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8",
+  "id": 66,
+  "is_locked": false,
+  "labels": [],
+  "merge_base": "344eeb437b0aa29baee1227e48878f987e21e296",
+  "merge_commit_sha": null,
+  "mergeable": true,
+  "merged": false,
+  "merged_at": null,
+  "merged_by": null,
+  "milestone": null,
+  "number": 8,
+  "patch_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8.patch",
+  "pin_order": 0,
+  "requested_reviewers": null,
+  "requested_reviewers_teams": null,
+  "state": "open",
+  "target_repo_url": "https://git.dynamicdiscord.de/ahtlon/infrastructure.git",
+  "title": "Update flake.lock",
+  "updated_at": "2026-03-11T17:29:55+01:00",
+  "url": "https://git.dynamicdiscord.de/ahtlon/infrastructure/pulls/8",
+  "user": {
+    "active": false,
+    "avatar_url": "https://git.dynamicdiscord.de/avatars/7399d018a0bcee0f2da113bdeeafec029316d8e8ce774b829de4125b026c0599",
+    "created": "2024-10-23T17:19:18+02:00",
+    "description": "",
+    "email": "ahtlon@noreply.git.dynamicdiscord.de",
+    "followers_count": 0,
+    "following_count": 0,
+    "full_name": "",
+    "html_url": "https://git.dynamicdiscord.de/ahtlon",
+    "id": 8,
+    "is_admin": false,
+    "language": "",
+    "last_login": "0001-01-01T00:00:00Z",
+    "location": "",
+    "login": "ahtlon",
+    "login_name": "",
+    "prohibit_login": false,
+    "restricted": false,
+    "source_id": 0,
+    "starred_repos_count": 0,
+    "username": "ahtlon",
+    "visibility": "public",
+    "website": ""
+  }
+}
--- a/machines/.sops.yaml
+++ b/machines/.sops.yaml
@@ -15,6 +15,7 @@ keys:
  - &machine_fanny age136sz3lzhxf74ryruvq34d4tmmxnezkqkgu6zqa3dm582c22fgejqagrqxk
  - &machine_nextcloud age1g084sl230x94mkd2wq92s03mw0e8mnpjdjfx9uzaxw6psm8neyzqqwpnqe
  - &machine_vaultwarden age1zs9puemeevc5kt84w9d2mc5396w0t9p60qxymkpatwvwxunzs5usmxr3an
+  - &machine_pretalx age1y04q8n7mgk82c87rfddm0u72h0ny6sfzktjsk0cc3gu93kezudfqdp9v9g
  #this dummy key is used for testing.
  - &machine_dummy age18jn5mrfs4gqrnv0e2sxsgh3kq4sgxx39hwr8z7mz9kt7wlgaasjqlr88ng
 creation_rules:
@@ -105,6 +106,14 @@ creation_rules:
      age:
      - *admin_atlan
      - *machine_vaultwarden
+  - path_regex: pretalx/secrets.yaml$
+    key_groups:
+    - pgp:
+      - *admin_kalipso
+      - *admin_kalipso_dsktp
+      age:
+      - *admin_atlan
+      - *machine_pretalx
  - path_regex: .*/secrets/.*
    key_groups:
    - pgp:
--- a/machines/durruti/host_config.nix
+++ b/machines/durruti/host_config.nix
@@ -63,6 +63,16 @@ in
      };
    };

+    services.nginx.virtualHosts."events.malobeo.org" = {
+      forceSSL = true;
+      enableACME= true;
+      locations."/" = {
+        proxyPass = "http://10.0.0.10";
+        extraConfig = ''
+        '';
+      };
+    };
+
    services.nginx.virtualHosts."tasklist.malobeo.org" = {
      forceSSL = true;
      enableACME= true;
--- a/machines/fanny/configuration.nix
+++ b/machines/fanny/configuration.nix
@@ -145,6 +145,7 @@ in
    "durruti" 
    "zineshop"
    "vaultwarden"
+    "pretalx"
  ];

  networking = {
@@ -229,6 +230,15 @@ in
      };
    };

+    virtualHosts."events.malobeo.org" = {
+      locations."/" = {
+        proxyPass = "http://${hosts.malobeo.hosts.pretalx.network.address}";
+        extraConfig = ''
+          proxy_set_header Host $host;
+        '';
+      };
+    };
+
    virtualHosts."tasklist.malobeo.org" = {
      locations."/" = {
        proxyPass = "http://${hosts.malobeo.hosts.durruti.network.address}:8080";
--- a/machines/hosts.nix
+++ b/machines/hosts.nix
@@ -103,6 +103,11 @@ in
        type = "microvm";
        network = createMaloNet "17" "52:DA:0D:F9:EF:F3";
      };
+
+      pretalx = {
+        type = "microvm";
+        network = createMaloNet "18" "52:DA:0D:F9:EF:F4";
+      };
    };
  };
 }
--- a/machines/modules/malobeo/gitea_translator.nix
+++ b/machines/modules/malobeo/gitea_translator.nix
@@ -0,0 +1,78 @@
+{ config, self, lib, inputs, pkgs, ... }:
+
+with lib;
+
+let
+  cfg = config.services.malobeo.gitea-translator;
+in
+{
+  options = {
+    services.malobeo.gitea-translator = {
+      enable = mkOption {
+        default = false;
+        type = types.bool;
+        description = lib.mdDoc "Start a webserver for hydra to use the gitea pull request api.";
+      };
+
+      baseurl = mkOption {
+        type = types.str;
+        default = "git.dynamicdiscord.de";
+        description = lib.mdDoc "Base URL of the Gitea instance.";
+      };
+
+      owner = mkOption {
+        type = types.str;
+        default = "malobeo";
+        description = lib.mdDoc "Repository owner on the Gitea instance.";
+      };
+
+      repo = mkOption {
+        type = types.str;
+        default = "infrastructure";
+        description = lib.mdDoc "Repository name on the Gitea instance.";
+      };
+
+      host = mkOption {
+        type = types.str;
+        default = "127.0.0.1";
+        description = lib.mdDoc "Address the server binds to.";
+      };
+
+      port = mkOption {
+        type = types.port;
+        default = 27364;
+        description = lib.mdDoc "Port the server listens on.";
+      };
+    };
+  };
+
+  config = mkIf cfg.enable {
+    systemd.services.gitea-translator = {
+      description = "Gitea Pull Request Translator for Hydra";
+      after = [ "network-online.target" ];
+      wants = [ "network-online.target" ];
+      wantedBy = [ "multi-user.target" ];
+
+      serviceConfig = {
+        ExecStart = ''
+          ${pkgs.python3}/bin/python3 ${inputs.self + /scripts/gitea_hydra_server.py} \
+            --baseurl ${cfg.baseurl} \
+            --owner ${cfg.owner} \
+            --repo ${cfg.repo} \
+            --host ${cfg.host} \
+            --port ${toString cfg.port}
+        '';
+        Restart = "on-failure";
+        RestartSec = 5;
+
+        # Hardening because why not 
+        DynamicUser = true;
+        NoNewPrivileges = true;
+        ProtectSystem = "strict";
+        ProtectHome = true;
+        PrivateTmp = true;
+        PrivateDevices = true;
+      };
+    };
+  };
+}
--- a/machines/modules/malobeo/peers.nix
+++ b/machines/modules/malobeo/peers.nix
@@ -32,7 +32,7 @@

  "hetzner" = {
    role = "client";
-    address = "10.100.0.6";
+    address = "10.100.0.7";
    allowedIPs = [ "10.100.0.6/32" ];
    publicKey = "csRzgwtnzmSLeLkSwTwEOrdKq55UOxZacR5D3GopCTQ=";
  };
--- a/machines/overwatch/configuration.nix
+++ b/machines/overwatch/configuration.nix
@@ -144,6 +144,18 @@ in
          targets = [ "${hosts.malobeo.hosts.zineshop.network.address}:9002" ];
        }];
      }
+      {
+        job_name = "vaultwarden";
+        static_configs = [{
+          targets = [ "${hosts.malobeo.hosts.vaultwarden.network.address}:9002" ];
+        }];
+      }
+      {
+        job_name = "pretalx";
+        static_configs = [{
+          targets = [ "${hosts.malobeo.hosts.pretalx.network.address}:9002" ];
+        }];
+      }
      {
        job_name = "fanny";
        static_configs = [{
--- a/machines/pretalx/configuration.nix
+++ b/machines/pretalx/configuration.nix
@@ -0,0 +1,99 @@
+{ config, self, lib, pkgs,  ... }:
+
+with lib;
+
+let
+  hosts = import ../hosts.nix {};
+in
+{
+  sops.defaultSopsFile = ./secrets.yaml;
+  sops.secrets = {
+    pretalx_smtp = {
+      owner = "pretalx";
+      group = "pretalx";
+    };
+  };
+
+  networking = {
+    hostName = mkDefault "pretalx";
+    useDHCP = false;
+  };
+
+  imports = [
+    self.nixosModules.malobeo.metrics
+    self.nixosModules.malobeo.users
+    ../modules/sshd.nix
+    ../modules/minimal_tools.nix
+    ../modules/autoupdate.nix
+  ];
+
+  malobeo.metrics = {
+    enable = true;
+    enablePromtail = true;
+    logNginx = true;
+  };
+
+  malobeo.users = {
+    admin = true;
+  };
+
+
+  services.postgresqlBackup = {
+    enable = true;
+  };
+
+  services.nginx = {
+    enable = true;
+    commonHttpConfig = /* nginx */ ''
+      proxy_headers_hash_bucket_size 64;
+    '';
+    virtualHosts = {
+      "events.malobeo.org" = {
+        forceSSL = false;
+        enableACME = false;
+      };
+    };
+  };
+
+
+  services.pretalx = {
+    enable = true;
+    celery.extraArgs = [
+      "--concurrency=${toString config.microvm.vcpu}"
+    ];
+    gunicorn.extraArgs = [
+      # https://docs.pretalx.org/administrator/installation/#step-6-starting-pretalx-as-a-service
+      "--log-level=info"
+      "--max-requests-jitter=50"
+      "--max-requests=1200"
+      "--workers=${toString config.microvm.vcpu}"
+
+      # TODO: 25.11 upstream
+      "--name=pretalx"
+      "--preload"
+    ];
+    nginx.domain = "events.malobeo.org";
+    environmentFiles = [
+      config.sops.secrets.pretalx_smtp.path
+    ];
+    settings = {
+      locale = {
+        language_code = "de";
+      };
+      mail = {
+        from = "malobot@systemli.org";
+        user = "malobot@systemli.org";
+        host = "mail.systemli.org";
+        port = "465";
+        ssl = true;
+        tls = false;
+      };
+
+    };
+  };
+
+  networking.firewall.allowedTCPPorts = [ 80 443 ];
+
+  system.stateVersion = "22.11"; # Did you read the comment?
+}
+
--- a/machines/pretalx/dummy.yaml
+++ b/machines/pretalx/dummy.yaml
@@ -0,0 +1,64 @@
+pretalx_smtp: ENC[AES256_GCM,data:zYnhuulpJAEEacXxpqNG2GEVrV21H0UZfx3sqZaZxWYL2HW6WwFMZ2PeGL8bWCv92+iZ2DGkhg==,iv:kMJLfeQ+9ZZFc6T+HnS64p9BJUy38nXrakAOXdQ0gIU=,tag:l8/eSrcOtt9MLnqcif5v2A==,type:str]
+sops:
+    age:
+        - recipient: age18jn5mrfs4gqrnv0e2sxsgh3kq4sgxx39hwr8z7mz9kt7wlgaasjqlr88ng
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBNZXExRE14NDF6cnFRSE9G
+            RjdxV09UMXUvczBQai9GQW5PT2g0eUZhSUVvClRZL1dJVlpKUTArTkhhR2JCV1VG
+            cktFb21wNDZiZC9oc2l5VS9hdzVhbFUKLS0tIGZZa2Z2R0Nvd3RUbWRHMkFJMjVK
+            QXdRdkVwSFg2TVRBYU1qWFJ2bE9hWFUK8HuJ9ErFU0yH3QlXl1tnmawNX0fHDOFb
+            g+DpDYKccGcC6PxNOE/CsftJqGLtFlToYHOYWG18bFjNZawUoaOfLQ==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1ljpdczmg5ctqyeezn739hv589fwhssjjnuqf7276fqun6kc62v3qmhkd0c
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA3S0s4UlZuSWc3K3cvTDBR
+            WEt2L3hYSGRVWHBYbEtoci9rYkJEK1hYSkRZCkM5S25YNGM2Y3R0MG9lWUNJem9P
+            bnJXbTRFZUpUVmhWVVVqeVhjdDV2SWMKLS0tIEdXbXU0RkJ6ZzBTcTdiZlJPbG83
+            RW8zUzBkNjViYnVFY3MyM1ZENmZXVmcK4144dF921EuNaofNhaYw9Yh56KHdfQD/
+            vxPkp5jC02Wbb6hjImd+oMUg3jgCbWC4j3Qpvaky8Ig2AaJRhtqlxg==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2026-03-09T11:58:41Z"
+    mac: ENC[AES256_GCM,data:n11H0rFtXvCeleTKXnQ8tORm3YH11tvjRd/PYSRof8EIUpQ7ZtyVqdYqPZCUuck12LG8hh9+GBBpXIRDhwEJlteC61Vl0syW9bQvCbfETvIgRZsoIZr+mofYHe1twm73sd7YaGzC6xxVm5HZG/qS1LflHah6jFO6NkgQ0GpLPTE=,iv:np3bKJIbVwn96rMBeedLmw6f1him35waUWN6LJ5MLNk=,tag:fs8rmrSkK1REaUKJHxeSbw==,type:str]
+    pgp:
+        - created_at: "2026-03-09T11:58:34Z"
+          enc: |-
+            -----BEGIN PGP MESSAGE-----
+
+            hQGMA5HdvEwzh/H7AQv/VMIZlsBZPEolTd0yUfHyZ5PRsQDirt4hOuVFGXdKi8tb
+            Pk+L3y69ynfF+ZJsu41+GdVgaNX58bbdqJfnEgE+k35IrJxYmVlNuUmd5s79rOHQ
+            b1dn6SdoVrKTAgtrnicO0n0F41XZBSpqP4wKVHigsWgfHkaUUsI+5d/T/2F+VCcS
+            slhvveCMKNjDlK9sukp5TBiX+xrWTq4QIbMS7L6VSlwHod72bp73o7RV9PgoO4vy
+            aodYiPmJqDjF0Az7JXdu2UdWJGUYxNWb5jHCT3qpcZyX1kVSmZvcRjxtVVCySFx+
+            agcavtdlEV3t8JOOvVmYoxwNOGjDvJ83k6wdueFpoJFE4Z1pHy/XCVCHykmWH/+m
+            nYADzmg+GiOSrTR2xWEmkesrByOMucYiZngDV3RLuZraE+8PJbqX2aAAip1Ol6AX
+            eYGCtLw/cXvDM1ngdj/4vaelek/TMLRRmuDyzVHevnqMGhdgAp4Ns6+ihZajSYkK
+            4YqUSKOMHrfEwbZgGYGW0lgB4cv1uzPgyufcPWzg8oAS0/2jW6KjZPLIx4SYcp41
+            C3BE/osbnyzGhzmabNstFbVmBYF1iK73O/Np2PGj3glBsE7PNMmcDu4ASaEI1nNw
+            CpOmQCR9jRGi
+            =6itD
+            -----END PGP MESSAGE-----
+          fp: c4639370c41133a738f643a591ddbc4c3387f1fb
+        - created_at: "2026-03-09T11:58:34Z"
+          enc: |-
+            -----BEGIN PGP MESSAGE-----
+
+            hQIMA98TrrsQEbXUAQ//aQNOD855rikMtrXENG/XA5dZeKGaLQAv0kWUHuJbRddn
+            IB9pW+Y8AgyB6xc9A4oKOKgjT8TCSYvGI6zDchf5tjrvQwmiMlpQouflcjR+UgDy
+            mANqL2+7GLFVcTuQfRPbEdK54Q78KciQ2bxMeh0WDZ5vV8fCTz+aPsvlNT8AJBcq
+            BO4dyG1oqCT13ln7g7LoHPn22wAj+H93F8aqyFk6YjgomKRf0j9gAW/NI1w8TIsg
+            etgMBrn0AupANrADQHAij1zSS+GaK8ZMBVgCoInc9gAQl97ytMLp/eQj4Ll69r+z
+            JRhFdFDZgP0UIIFurAU5eFixNq8IZnFYvFRGpR/XzAiOh8JfgWUDs5HSLyRcADi9
+            XxLsEnTFm1kfoI+lpma0WtlAIXg2WpCoaU3B2kB15T4giVs6LWGmssux5t8uKTFR
+            DySHvdl9o78zBFPVxhW+j9h04fAeUmCWZYKpnEdFwKpBmGWtnC5rvz22Xwu3Q/wT
+            HioLzvETqVn+knc/ErR6Axw4A9zeLi1AccJdceVopR7rEq+0DjpLV/zYqwGruQaa
+            q1qtQIgPf888TKtNgAGSxQ2nUfkMM2oK2cC6r2juhxwbmTFcz6FUV41To9/hCo1c
+            1SE4ZiRu7R8i+KFn4K2y6RGRkJo75trJkxuwGvAYuo6gGUmj50EeimFx0rKRddfS
+            WAH8JPQH6ohAqaA1hdrQRM7lPtwjPCfJW/fUqPHAR5Ytwn9xmt0A+jQYvmubH9dR
+            UT8OMUOIh2XC2JDYt4P4pFXXODB6WPb3Fdft6S95+vLhx6eHuo7PvVM=
+            =KkYj
+            -----END PGP MESSAGE-----
+          fp: aef8d6c7e4761fc297cda833df13aebb1011b5d4
+    unencrypted_suffix: _unencrypted
+    version: 3.11.0
--- a/machines/pretalx/secrets.yaml
+++ b/machines/pretalx/secrets.yaml
@@ -0,0 +1,64 @@
+pretalx_smtp: ENC[AES256_GCM,data:Jrgx1/AsgTb1KxtgiTPGRkgtl5EHPWHPde4ItwOHH9lcmakAb1b2n4JP70vF53uuKIfiyCPeVQ==,iv:fcVFgjKSGTaFxC1DAX2Sb6WD/IbJO0s1A63wrQkLWbg=,tag:NjcNwa+6h/boRemEg1j9ng==,type:str]
+sops:
+    age:
+        - recipient: age1ljpdczmg5ctqyeezn739hv589fwhssjjnuqf7276fqun6kc62v3qmhkd0c
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBxb1dGalUyNzVtYjFFNm9T
+            a3ord2NSTEE3UkhrTm1TbHdMV3lITHJRLzJvCnAxeUZib0d0dCtUZ0x3NUtsdzdD
+            SjVYY0Y4MXhGRVZGZTRiNHJHSHNkb0kKLS0tIGtCL0puTDRZcUsrc2VRUU1URERs
+            Y084Z0tGR3JPZkw5ci9icFVSd051bE0KXaT1mPUBFUorZ/zgYjDyqWGbnHAkcjmZ
+            KVZJae9HC35+mq9mme7XOH96NX6tq69Hg+TUFoQg1m2Ifz27GKD3bQ==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1y04q8n7mgk82c87rfddm0u72h0ny6sfzktjsk0cc3gu93kezudfqdp9v9g
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBWVVJyZFZCTVZhUXN0WFJu
+            UWU2UWxTY3ErWHVhMGNGU0t3N0c2ekM5a0NvCkVtTDdyeEVMQzY5RUg1NnVZVHd1
+            a1U4cytPSjU3K0NaSmJDdk5peHM5emMKLS0tIGhTemxzbjBzNkFILy9QRG53V0lX
+            dEZTQVpCOUNDSW0yRS9rYkZkVjZPRG8K/Hea01veMQ0Gxo//24PRhDcncYUuExpQ
+            T4ff4CNXF2vDYDsSIPDlhHdmSRGmoCw00ChCZ8vvIlHl2O86Qmd0Ng==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2026-03-09T11:58:07Z"
+    mac: ENC[AES256_GCM,data:QWFdEg+I1YUH65qPUQvOwwb7i+X+HYKdhYJiLoku+XcvYq4xFaoBvFTW3eZ/S2i20yK1SQcAVjUe7JQEgZDtqzPdZH6w4YIZJVvQdDMPy99xdXXEZrnW+rHOy60XFS7WiyeUdLA3TQ4+Ec1f2kkQw7MhbDbOoOh0obsvfhtz3OE=,iv:h4Qn/LpayhXCWWsO/nm18Rapz6WXQcjItF9YwyiFJJ0=,tag:bxtQQMNgVyFkHp+pbSP3UQ==,type:str]
+    pgp:
+        - created_at: "2026-03-09T11:57:24Z"
+          enc: |-
+            -----BEGIN PGP MESSAGE-----
+
+            hQGMA5HdvEwzh/H7AQwAkahLpq8vqQn6N5EyrbC+33Ohl61ZbBPR6NnQaLvU3s+i
+            WJ3xe7T+LP0jv2C2t//VhYvVNolQ2LBA+yLE3Cvjw6JCyVhu54ZRDJciY2w/wY5J
+            MN++Bqac6avoEYHkvoN6m1/F8JK46fzgQT7xXFTGix+g1W48aSC70GRZUmsg469p
+            ZFYbj/mEseG1ICxhZANU2NgRgW7kA/La/fe3/+YE8tkNHSXF2ZevQvluarm7kXT9
+            KWani1wMlUMwZoCpwbfNwKpXPL0jW48FJsFIlxPbDrDCkR1gih1PHFVyqd45am9g
+            Uo0hJ1NOKzm5Cy5c/3xJzaP62UWyNJf+v5VojEg2XfSGqtaZDFQsLK0of5G/XArn
+            C7k7UbQJqz15rHWPznIppv2h+cTIsVDQcz77es1/qaOQyCMHdYqdkzi5YV7DJBZS
+            K6PP3Nt77uL4LGRL0vFtBgdhKFtXAAf8lhRfZJcJ2P9BYvaFdRUfjm/r0TNfCref
+            k2WCesk4F/pQSyB3ofuR0lYBJzlZ3iNpl7DlfyZ6DRZ/+aVFceRf9A8QKtkVmdMt
+            noqBJfLzhWgVmUUh3DO97mJV5pNOx8238vqVTxWrUqZXjXdXaUDaFUDXvgwg3GOA
+            N28ZjLy1XA==
+            =mIVi
+            -----END PGP MESSAGE-----
+          fp: c4639370c41133a738f643a591ddbc4c3387f1fb
+        - created_at: "2026-03-09T11:57:24Z"
+          enc: |-
+            -----BEGIN PGP MESSAGE-----
+
+            hQIMA98TrrsQEbXUAQ//cnVHHJEwQn+W8Jkt+jwgnKCgbRutvG3U8hlXizzdk2RI
+            j6nVPpv2DwuXvX3ktnng8XrmWwXf9rFRRltVs7alenEnHLxiDd5w+WYeH4NCHOFr
+            +vvFwxNOxzLDj5B2Fjod4El70jUdrP6Mqzy37DPu1Gb2qIUEwdF1LEzM4FMWdeWL
+            BA0wCJzlTXzdlb0shw7xEsqvmnL11u+aQ8AVU3kgWxSkn0VZJIYYkwegUYfflSIr
+            wZsNsh8k+wG58f5IVr8SqnzkfxRfJSoxNKWV9dK3a9hJnnD3DUhqnOgvCnPCRKSP
+            drH+7KxqmNBxqQK3f2iJvgcyLQwyEEqF2Rt6gXwyDByHy3ewupAQD0aQwi5HMWcK
+            iEUVSQVZ6jRfAIyDs3sBnBHceB9BShFr+NN9eUjKJWm2QD4TdQamnpMLsQGpdZv5
+            Lomk9VfdZPNw7DAKJs1oDeBRmhAP/crlOW/ZZho9mewKHr7Htu3VZP812GVupJns
+            IK9mMnpwAhgCtChcOj/ule9NcA/AWKcrtdAyId11SvjtMO+ZjRFrOCK1wKgIif3p
+            ogjaK38v/7gy4/8CDyVgru+luNklsRHfZr+BuPGBDDL8M7umXilK+GyGO1CnrjxW
+            DJXdvMe+u75OsYvGv7eX0tqd+ePanCEoDXxFJbMc2QZigD2kZgq+qRM9CxJ2jCXS
+            VgEEHybyGrOo5RcJkpk+UQpb2aTMLgFNqkTn0PRQSMFeXVQIt584a9xZs1TQ7ZsT
+            5H4jaFXFcS+GG09CORbkf2fkQI2KpaqBAGFct21K2hY17Tpm7kgC
+            =yGms
+            -----END PGP MESSAGE-----
+          fp: aef8d6c7e4761fc297cda833df13aebb1011b5d4
+    unencrypted_suffix: _unencrypted
+    version: 3.11.0
--- a/machines/vaultwarden/configuration.nix
+++ b/machines/vaultwarden/configuration.nix
@@ -18,10 +18,17 @@ with lib;
  imports = [
    ../modules/malobeo_user.nix
    ../modules/sshd.nix
+    inputs.self.nixosModules.malobeo.metrics
  ];

  networking.firewall.allowedTCPPorts = [ 80 ];

+  malobeo.metrics = {
+    enable = true;
+    enablePromtail = true;
+    logNginx = true;
+  };
+
  services.nginx = {
    enable = true;
    virtualHosts."keys.malobeo.org" = {
--- a/machines/vpn/configuration.nix
+++ b/machines/vpn/configuration.nix
@@ -58,6 +58,15 @@ with lib;
      };
    };

+    virtualHosts."events.malobeo.org" = {
+      locations."/" = {
+        proxyPass = "http://10.100.0.101";
+        extraConfig = ''
+          proxy_set_header Host $host;
+        '';
+      };
+    };
+
    virtualHosts."tasklist.malobeo.org" = {
      locations."/" = {
        proxyPass = "http://10.100.0.101";
--- a/scripts/gitea_hydra_server.py
+++ b/scripts/gitea_hydra_server.py
@@ -0,0 +1,107 @@
+#!/usr/bin/env python3
+
+#imports
+import os
+import json
+import argparse
+from http.server import BaseHTTPRequestHandler, HTTPServer
+import urllib.request
+
+def _get_api_response(baseurl, owner, repo):
+    ###https://docs.gitea.com/api/1.21/#tag/repository/operation/repoListPullRequests
+    ###GET /api/v1/repos/{owner}/{repo}/pulls
+    url=(f"https://{baseurl}/api/v1/repos/{owner}/{repo}/pulls?state=open")
+    headers={"Accept": "application/json"}
+    req=urllib.request.Request(url, headers=headers)
+    with urllib.request.urlopen(req) as resp:
+        return json.loads(resp.read().decode("utf-8"))
+
+def _parse_response(baseurl, owner, repo):
+    target_repo_url=f"https://{baseurl}/{owner}/{repo}.git"
+    pulls: dict={}
+    response=_get_api_response(baseurl, owner, repo)
+    for pr in response:
+        pr["target_repo_url"]=target_repo_url
+        pulls[str(pr["number"])]=pr
+    return pulls
+
+class PullsHandler(BaseHTTPRequestHandler):
+    _VALID_PATHS={"/", "/gitea-pulls-sorted.json"}
+
+    # Class variables to store configuration
+    baseurl = None
+    owner = None
+    repo = None
+
+    def do_GET(self):
+        if self.path not in self._VALID_PATHS:
+            self.send_error(404, "Not Found")
+            return
+
+        answer=dict(_parse_response(self.baseurl, self.owner, self.repo))
+
+        body=json.dumps(answer, indent=2, sort_keys=True).encode("utf-8")
+
+        self.send_response(200)
+        self.send_header("Content-Type", "application/json; charset=utf-8")
+        self.send_header("Content-Length", str(len(body)))
+        self.end_headers()
+        self.wfile.write(body)
+
+    def log_message(self, fmt, *args):
+        print(
+            f"[gitea-translator] {self.address_string()} - {fmt % args}",
+            flush=True,
+        )
+
+def main():
+    parser = argparse.ArgumentParser(
+        description="Hydra Server to Gitea-pull-request translator"
+    )
+    parser.add_argument(
+        "--baseurl",
+        default="git.dynamicdiscord.de",
+        help="Base URL of Gitea instance (default: git.dynamicdiscord.de)"
+    )
+    parser.add_argument(
+        "--owner",
+        default="malobeo",
+        help="Repository owner (default: malobeo)"
+    )
+    parser.add_argument(
+        "--repo",
+        default="infrastructure",
+        help="Repository name (default: infrastructure)"
+    )
+    parser.add_argument(
+        "--host",
+        default="127.0.0.1",
+        help="Host to bind to (default: 127.0.0.1)"
+    )
+    parser.add_argument(
+        "--port",
+        type=int,
+        default=27364,
+        help="Port to bind to (default: 27364)"
+    )
+
+    args = parser.parse_args()
+
+    # Set class variables so they're accessible in request handlers
+    PullsHandler.baseurl = args.baseurl
+    PullsHandler.owner = args.owner
+    PullsHandler.repo = args.repo
+
+    print(
+        f"[gitea-translator] Starting, pulling from {args.baseurl}/{args.owner}/{args.repo}",
+        flush=True,
+    )
+    server=HTTPServer((args.host, args.port), PullsHandler)
+    print(
+        f"[gitea-translator] online @ {args.host}:{args.port}",
+        flush=True,
+    )
+    server.serve_forever()
+
+if __name__ == "__main__":
+    main()
--- a/1
+++ b/1
@@ -0,0 +1 @@
+1
Author	SHA1	Message	Date
ahtlon	48bc9a7468	cut var	2026-03-14 13:48:09 +01:00
ahtlon	f5a810875f	add test file	2026-03-14 13:44:41 +01:00
ahtlon	83de212561	we	2026-03-14 13:17:12 +01:00
ahtlon	024d48a15e	flake.lock: Update Flake lock file updates: • Updated input 'microvm': 'github:astro/microvm.nix/f6dcfb7c16cc3775536c825dc0698d4ede13d063' (2026-02-25) → 'github:astro/microvm.nix/25ebda3c558e923720c965832dc9a04f559a055c' (2026-03-09) • Updated input 'microvm/spectrum': 'git+https://spectrum-os.org/git/spectrum?ref=refs/heads/main&rev=c5d5786d3dc938af0b279c542d1e43bce381b4b9' (2025-10-03) → 'git+https://spectrum-os.org/git/spectrum?ref=refs/heads/main&rev=fe39e122d898f66e89ffa17d4f4209989ccb5358' (2026-02-27) • Updated input 'nixos-hardware': 'github:NixOS/nixos-hardware/41c6b421bdc301b2624486e11905c9af7b8ec68e' (2026-02-24) → 'github:NixOS/nixos-hardware/3966ce987e1a9a164205ac8259a5fe8a64528f72' (2026-03-08) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/e764fc9a405871f1f6ca3d1394fb422e0a0c3951' (2026-02-24) → 'github:NixOS/nixpkgs/3e20095fe3c6cbb1ddcef89b26969a69a1570776' (2026-03-13) • Updated input 'nixpkgs-unstable': 'github:NixOS/nixpkgs/2fc6539b481e1d2569f25f8799236694180c0993' (2026-02-23) → 'github:NixOS/nixpkgs/fe416aaedd397cacb33a610b33d60ff2b431b127' (2026-03-12) • Updated input 'sops-nix': 'github:Mic92/sops-nix/334daa7c273dd8bf7a0cd370e4e16022b64e55e9' (2026-02-25) → 'github:Mic92/sops-nix/d1ff3b1034d5bab5d7d8086a7803c5a5968cd784' (2026-03-09)	2026-03-14 13:17:12 +01:00
ahtlon	2e8db8d1bb	ANOTHER CHANGE FOR THE TEST BRANCH!!!!	2026-03-14 13:17:12 +01:00
ahtlon	9968512975	sad	2026-03-14 13:17:12 +01:00
ahtlon	ca53a08e35	weh!	2026-03-14 13:17:12 +01:00
ahtlon	e582dd2bfe	test commit	2026-03-14 13:17:12 +01:00
ahtlon	394c0610ce	Try out workflow check	2026-03-14 13:14:15 +01:00
ahtlon	6dee590206	Merge pull request 'Hydra integration' (#145 ) from ahtlon/infrastructure:hydra_integration3 into master All checks were successful Check flake syntax / flake-check (push) Successful in 12m9s Details Reviewed-on: #145 Reviewed-by: kalipso <kalipso@c3d2.de>	2026-03-14 12:21:15 +01:00
ahtlon	b6cd2b57f8	Document the gitea-translator module	2026-03-13 16:30:31 +01:00
ahtlon	c80628a1a9	Add gitea-translator server and module	2026-03-13 16:09:12 +01:00
ahtlon	8cd2eafaa5	Fix master build	2026-03-13 15:50:32 +01:00
ahtlon	ed19426eb7	Add status callback	2026-03-13 15:21:14 +01:00
ahtlon	7ff64a5c16	Add hydra spec files	2026-03-13 14:39:49 +01:00
kalipso	1e540bb39c	[pretalx] flip ssl/tls due to error All checks were successful Check flake syntax / flake-check (push) Successful in 5m44s Details Weekly Flake Update / update_and_check_flake (push) Successful in 5m28s Details	2026-03-09 14:48:04 +01:00
kalipso	d7278d18dd	[pretalx] fix missing user and disable ssl in favor of tls All checks were successful Check flake syntax / flake-check (push) Successful in 5m54s Details	2026-03-09 13:41:43 +01:00
kalipso	e32ee42ed1	[pretalx] rm redundant 'settings' All checks were successful Check flake syntax / flake-check (push) Successful in 6m25s Details	2026-03-09 13:02:56 +01:00
kalipso	696f1aeb90	[pretalx] rename talks.malobeo -> events.malobeo	2026-03-09 13:00:37 +01:00
kalipso	f385b0318b	[pretalx] setup email	2026-03-09 13:00:07 +01:00
kalipso	83c11bb06e	Merge pull request 'add pretalx' (#132 ) from pretalx into master All checks were successful Check flake syntax / flake-check (push) Successful in 11m21s Details Reviewed-on: #132	2026-03-07 16:16:26 +01:00
kalipso	cd5db6a616	[pretalx] fix wrong import All checks were successful Check flake syntax / flake-check (push) Successful in 5m30s Details	2026-03-07 16:10:07 +01:00
kalipso	e32e4d7774	[pretalx] enable admin user Some checks failed Check flake syntax / flake-check (push) Failing after 5m56s Details	2026-03-07 16:03:02 +01:00
kalipso	c3474f9c27	[pretalx] proxy through vpn Some checks failed Check flake syntax / flake-check (push) Has been cancelled Details	2026-03-07 16:01:47 +01:00
kalipso	e021f46b4d	[vaultwarden] fix missing input All checks were successful Check flake syntax / flake-check (push) Successful in 9m17s Details	2026-03-06 12:07:56 +01:00
kalipso	ff340d69fb	[fanny] deploy pretalx	2026-03-06 12:07:56 +01:00
kalipso	56c1ae5332	[vaultwarden] add monitoring	2026-03-06 12:07:56 +01:00
kalipso	bbf8decea1	[pretalx] add monitoring	2026-03-06 12:07:56 +01:00
kalipso	a1bfa0120c	[pretalx] init	2026-03-06 12:07:56 +01:00