Add linting, formatting, and CI with fixes for all warnings

Infrastructure: - Add deadnix, nixfmt, and statix to flake inputs - Add formatter output to flake for nix fmt support - Add deadnix, nixfmt, statix to Home Manager packages - Add GitHub Actions workflow for CI validation - Add .pre-commit-config.yaml with hooks for nixfmt, deadnix, and statix - Support x86_64-darwin in formatter Statix fixes (W10/W20 warnings): - Remove unused lambda argument from nixpkgs-settings.nix - Merge repeated keys in hardware-configuration.nix files (boot.initrd, boot, fileSystems) - Merge repeated keys in nixnuc/default.nix (services, virtualisation) - Merge repeated keys in rainbow-planet/default.nix (desktopManager) - Merge repeated keys in home/general/default.nix (home) Deadnix fixes (unused declarations): - Remove unused pkgs/lib/username/http_port arguments from various files - Fix unused final parameter in overlay functions (final -> _final) CI/pre-commit fixes: - Fix pre-commit statix config: add pass_filenames: false - Fix CI workflow: use nix run nixpkgs# prefix and --ci flag for nixfmt
2026-03-28 01:47:42 -04:00 · 2026-03-20 22:11:58 -04:00 · 2026-03-20 22:11:58 -04:00 · 9b3c078319
commit 9b3c078319
parent 5047d93b86
78 changed files with 1662 additions and 955 deletions
--- a/modules/hosts/nixos/hetznix01/post-install/default.nix
+++ b/modules/hosts/nixos/hetznix01/post-install/default.nix
@ -1,7 +1,15 @@
-{ config, lib, pkgs, username, ... }: let
+{
+  config,
+  lib,
+  pkgs,
+  username,
+  ...
+}:
+let
  domain = "technicalissues.us";
  restic_backup_time = "01:00";
-in {
+in
+{
  imports = [
    ../../../../shared/nixos/lets-encrypt.nix
    ../../../../shared/nixos/restic.nix
@ -26,7 +34,7 @@ in {
        # Listen on loopback interface only, and accept requests from ::1
        net = {
          listen = "loopback";
-          post_allow.host = ["::1"];
+          post_allow.host = [ "::1" ];
        };

        # Restrict loading documents from WOPI Host nextcloud.example.com
@ -162,14 +170,14 @@ in {
      };
      matrix_secrets_yaml = {
        owner = config.users.users.matrix-synapse.name;
-        restartUnits = ["matrix-synapse.service"];
+        restartUnits = [ "matrix-synapse.service" ];
      };
      matrix_homeserver_signing_key.owner = config.users.users.matrix-synapse.name;
-      mqtt_recorder_pass.restartUnits = ["mosquitto.service"];
+      mqtt_recorder_pass.restartUnits = [ "mosquitto.service" ];
      nextcloud_admin_pass.owner = config.users.users.nextcloud.name;
      owntracks_basic_auth = {
        owner = config.users.users.nginx.name;
-        restartUnits = ["nginx.service"];
+        restartUnits = [ "nginx.service" ];
      };
      plausible_admin_pass.owner = config.users.users.nginx.name;
      plausible_secret_key_base.owner = config.users.users.nginx.name;
@ -180,31 +188,36 @@ in {
  };

  systemd.services = {
-    nextcloud-config-collabora = let
-      inherit (config.services.nextcloud) occ;
+    nextcloud-config-collabora =
+      let
+        inherit (config.services.nextcloud) occ;

-      wopi_url = "http://[::1]:${toString config.services.collabora-online.port}";
-      public_wopi_url = "https://collabora.pack1828.org";
-      wopi_allowlist = lib.concatStringsSep "," [
-        "127.0.0.1"
-        "::1"
-        "5.161.244.95"
-        "2a01:4ff:f0:977c::1"
-      ];
-    in {
-      wantedBy = ["multi-user.target"];
-      after = ["nextcloud-setup.service" "coolwsd.service"];
-      requires = ["coolwsd.service"];
-      script = ''
-        ${occ}/bin/nextcloud-occ config:app:set richdocuments wopi_url --value ${lib.escapeShellArg wopi_url}
-        ${occ}/bin/nextcloud-occ config:app:set richdocuments public_wopi_url --value ${lib.escapeShellArg public_wopi_url}
-        ${occ}/bin/nextcloud-occ config:app:set richdocuments wopi_allowlist --value ${lib.escapeShellArg wopi_allowlist}
-        ${occ}/bin/nextcloud-occ richdocuments:setup
-      '';
-      serviceConfig = {
-        Type = "oneshot";
+        wopi_url = "http://[::1]:${toString config.services.collabora-online.port}";
+        public_wopi_url = "https://collabora.pack1828.org";
+        wopi_allowlist = lib.concatStringsSep "," [
+          "127.0.0.1"
+          "::1"
+          "5.161.244.95"
+          "2a01:4ff:f0:977c::1"
+        ];
+      in
+      {
+        wantedBy = [ "multi-user.target" ];
+        after = [
+          "nextcloud-setup.service"
+          "coolwsd.service"
+        ];
+        requires = [ "coolwsd.service" ];
+        script = ''
+          ${occ}/bin/nextcloud-occ config:app:set richdocuments wopi_url --value ${lib.escapeShellArg wopi_url}
+          ${occ}/bin/nextcloud-occ config:app:set richdocuments public_wopi_url --value ${lib.escapeShellArg public_wopi_url}
+          ${occ}/bin/nextcloud-occ config:app:set richdocuments wopi_allowlist --value ${lib.escapeShellArg wopi_allowlist}
+          ${occ}/bin/nextcloud-occ richdocuments:setup
+        '';
+        serviceConfig = {
+          Type = "oneshot";
+        };
      };
-    };
  };

  # Enable common container config files in /etc/containers