This repository has been archived on 2026-03-09. You can view files and clone it. You cannot open issues or pull requests or push a commit.

Torjus Håkestad 95b795dcfd fix: remove systemd hardening to allow nix sandbox namespace creation ...

The previous hardening options (ProtectControlGroups, LockPersonality,
SystemCallArchitectures, etc.) prevented Nix from creating the kernel
namespaces required for build sandboxing. Following the approach of
the NixOS auto-upgrade module which has no hardening since nixos-rebuild
requires broad system access.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-07 06:52:16 +01:00

..

module.nix

fix: remove systemd hardening to allow nix sandbox namespace creation

2026-02-07 06:52:16 +01:00