Use Colmena's experimental flake-eval feature

Don't extract sops keys as root
2024-11-30 23:22:16 +01:00 · 2024-11-30 23:22:16 +01:00 · a29d10e507
commit a29d10e507
parent 842d2afbc0
5 changed files with 139 additions and 30 deletions
--- a/flake.nix
+++ b/flake.nix
@ -10,6 +10,7 @@
    nixos-facter-modules.url = "github:numtide/nixos-facter-modules";
    flake-utils.url = "github:numtide/flake-utils";
    nixos-hardware.url = "github:NixOS/nixos-hardware/master";
+    colmena.url = "github:zhaofengli/colmena";

    git-hooks = {
      url = "github:cachix/git-hooks.nix";
@ -57,6 +58,7 @@
    self,
    nixpkgs,
    flake-utils,
+    colmena,
    ...
  }:
    (flake-utils.lib.meld inputs [
@ -70,8 +72,7 @@
      devShells.default = nixpkgs.legacyPackages.${system}.mkShell {
        inherit (self.checks.${system}.pre-commit-check) shellHook;
        buildInputs =
-          self.checks.${system}.pre-commit-check.enabledPackages
-          ++ (with nixpkgs.legacyPackages.${system}; [colmena]);
+          self.checks.${system}.pre-commit-check.enabledPackages ++ [colmena.defaultPackage.${system}];
      };
    });
 }