| 21 Dec 2025 |
 Acid Bong | In reply to @sofiedotcafe:matrix.org
@jakehamilton:auxolotl.org do you have an example of Nilla but with agenix or similar? Nilla is just a Nix entry point system, like flakes, while Agenix and such live within NixOS | 03:34:10 |
| Acid Bong | i think you should be able to use agenix or sops-nix regardless whether your NixOS is behind flakes, colmena and/or nilla | 03:35:57 |
 piegames | Beta test the next npins release now: https://github.com/andir/npins/pull/185 | 13:21:37 |
 Sofie 🏳️⚧️ (she/her) | I mean, agree :3 | 13:35:18 |
| Sofie 🏳️⚧️ (she/her) | we really do need a better tool | 13:35:33 |
| Acid Bong | In reply to @jakehamilton:auxolotl.org
Ah I don't, I am not a fan of agenix and other existing secret solutions due to the manual work required :( what kinda manual work? is it about setting up ssh host keys on a new machine to decrypt the secrets? | 13:49:40 |
 jakehamilton | In reply to @acidbong:envs.net
what kinda manual work? is it about setting up ssh host keys on a new machine to decrypt the secrets? Rekeying, managing keys for different machines, etc. There are still quite a few manual steps which I feel like shouldn't be necessary. | 13:52:18 |
| jakehamilton | Plus the issue of secrets being checked into git (even if encrypted). I think we can do better than that as well. | 13:53:04 |
 tc424 (Steve D) | Added npins add container, which allows pinning OCI containers
Ooooooooh ... | 13:54:11 |
| jakehamilton | In reply to @srtcd424:auxolotl.org
Added npins add container, which allows pinning OCI containers
Ooooooooh ... I wonder if this is specific to container images or if any artifact on an OCI registry can be pinned this way. Helm charts, for example! | 13:56:32 |
