2024-07-05 13:40:18 +02:00
|
|
|
{
|
|
|
|
description = "infra-shell";
|
|
|
|
|
|
|
|
inputs.nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
|
|
|
|
|
|
|
|
outputs = { self, nixpkgs }:
|
|
|
|
let
|
|
|
|
stableSystems = ["x86_64-linux" "aarch64-linux" "x86_64-darwin" "aarch64-darwin"];
|
|
|
|
forAllSystems = nixpkgs.lib.genAttrs stableSystems;
|
|
|
|
pkgsFor = nixpkgs.lib.genAttrs stableSystems (
|
|
|
|
system: import nixpkgs { inherit system; config.allowUnfree = true; }
|
|
|
|
);
|
|
|
|
in rec {
|
|
|
|
devShells = forAllSystems (system: let
|
|
|
|
pkgs = pkgsFor.${system};
|
|
|
|
in {
|
|
|
|
default = let
|
2024-09-05 11:13:01 +02:00
|
|
|
pythonPkgs = pkgs.python311.withPackages (
|
|
|
|
_: with (pkgs.python311Packages); [
|
2024-07-05 13:40:18 +02:00
|
|
|
ipython pyyaml jinja2 PyGithub
|
|
|
|
pyopenssl cryptography
|
2024-09-05 11:13:01 +02:00
|
|
|
hvac
|
2024-07-05 13:40:18 +02:00
|
|
|
]
|
|
|
|
);
|
|
|
|
in pkgs.mkShellNoCC {
|
|
|
|
packages = with pkgs.buildPackages; [
|
|
|
|
# misc
|
2024-09-05 11:13:01 +02:00
|
|
|
git openssh jq fzf silver-searcher direnv
|
2024-07-05 13:40:18 +02:00
|
|
|
# networking
|
|
|
|
curl nmap nettools dnsutils
|
|
|
|
# infra
|
|
|
|
terraform ansible_2_16 pythonPkgs
|
|
|
|
# security
|
2024-09-05 11:13:01 +02:00
|
|
|
pass vault bitwarden-cli yubikey-manager pwgen
|
2024-07-05 13:40:18 +02:00
|
|
|
# cloud
|
|
|
|
aliyun-cli awscli doctl google-cloud-sdk
|
|
|
|
hcloud s3cmd scaleway-cli
|
|
|
|
];
|
|
|
|
|
|
|
|
shellHook = ''
|
|
|
|
./ansible/roles.py --check || \
|
|
|
|
echo -e '\nWARNING: Your role versions appear to be incorrect!' >&2
|
2024-09-05 11:13:01 +02:00
|
|
|
eval "$(direnv hook bash)"
|
|
|
|
direnv allow .
|
2024-07-05 13:40:18 +02:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
});
|
|
|
|
};
|
|
|
|
}
|