harivansh-afk/nix
1
1
Fork 0
mirror of https://github.com/harivansh-afk/nix.git synced 2026-04-15 09:01:16 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
my nix config
87 commits 71 branches 0 tags 4.7 MiB
Find a file
Harivansh Rathi c056cd2919 rename to netty
2026-03-29 15:32:44 -04:00
config use GitHub path for cozybox.nvim colorscheme plugin 2026-03-29 15:26:00 -04:00
docs secrets 2026-03-15 14:09:37 -04:00
home rename to netty 2026-03-29 15:32:44 -04:00
hosts rename to netty 2026-03-29 15:32:44 -04:00
lib netty config 2026-03-29 15:32:21 -04:00
modules install mutex and barrett/forge 2026-03-28 03:11:57 -04:00
scripts netty config 2026-03-29 15:32:21 -04:00
.gitignore symlink karabiner and add git auth 2026-03-28 19:10:17 -04:00
flake.lock ssh config 2026-03-29 14:32:56 -04:00
flake.nix rename to netty 2026-03-29 15:32:44 -04:00
justfile rename to netty 2026-03-29 15:32:44 -04:00
README.md readme 2026-03-22 16:06:41 -04:00

README.md

Nix Config

New Machine

Darwin

curl --proto '=https' --tlsv1.2 -sSf -L https://install.determinate.systems/nix | sh -s -- install
git clone https://github.com/harivansh-afk/nix.git ~/Documents/GitHub/nix
cd ~/Documents/GitHub/nix
sudo nix --extra-experimental-features 'nix-command flakes' run github:nix-darwin/nix-darwin/master#darwin-rebuild -- switch --flake path:.#darwin
exec zsh -l
bw login
export BW_SESSION="$(bw unlock --raw)"
just secrets-sync
just secrets-restore-files
exec zsh -l

Linux

curl --proto '=https' --tlsv1.2 -sSf -L https://install.determinate.systems/nix | sh -s -- install
git clone https://github.com/harivansh-afk/nix.git ~/Documents/GitHub/nix
cd ~/Documents/GitHub/nix
nix run github:nix-community/home-manager -- switch --flake path:.#linux -b hm-bak
exec zsh -l

Layout

  • flake.nix: top-level flake and host wiring
  • hosts/darwin/default.nix: macOS nix-darwin host config
  • hosts/linux/default.nix: standalone Linux Home Manager host config
  • modules/base.nix: Nix settings and core packages
  • modules/macos.nix: macOS defaults and host-level settings
  • modules/packages.nix: system packages and fonts
  • modules/homebrew.nix: the remaining Homebrew-managed GUI apps
  • home/: Home Manager modules for shell, editor, CLI tools, and app config
  • home/common.nix: shared Home Manager imports used by macOS and Linux
  • home/linux.nix: Linux Home Manager entrypoint
  • home/migration.nix: transitional cleanup for old ~/dots symlinks
  • config/: repo-owned config files consumed by Home Manager

Ownership Boundaries

  • Nix owns packages, dotfiles, shell/editor config, launchd services, and selected macOS defaults
  • Homebrew is retained only for a narrow GUI cask boundary
  • Keychain items, TCC/privacy permissions, browser history, and most ~/Library/Application Support state are intentionally outside declarative Nix ownership

Bitwarden note:

  • bw is installed via Homebrew as bitwarden-cli
  • bws is not currently managed in this repo because I did not find a supported nixpkgs or Homebrew package for it on macOS during verification
  • daily shell secrets are synced from Bitwarden into ~/.config/secrets/shell.zsh via just secrets-sync
  • vault items are currently the source of truth for imported machine secrets and SSH material