51 lines
1.6 KiB
Nix
51 lines
1.6 KiB
Nix
{
|
|
description = "infra-shell";
|
|
|
|
# bitwarden-cli has a build issue on macOS since 2024.8.0:
|
|
# this commit fixes nixpkgs right before switching to 2024.8.0
|
|
# https://github.com/NixOS/nixpkgs/issues/339576
|
|
inputs.nixpkgs.url = "github:nixos/nixpkgs/c374d94f1536013ca8e92341b540eba4c22f9c62";
|
|
#inputs.nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
|
|
|
|
outputs = { self, nixpkgs }:
|
|
let
|
|
stableSystems = ["x86_64-linux" "aarch64-linux" "x86_64-darwin" "aarch64-darwin"];
|
|
forAllSystems = nixpkgs.lib.genAttrs stableSystems;
|
|
pkgsFor = nixpkgs.lib.genAttrs stableSystems (
|
|
system: import nixpkgs { inherit system; config.allowUnfree = true; }
|
|
);
|
|
in rec {
|
|
devShells = forAllSystems (system: let
|
|
pkgs = pkgsFor.${system};
|
|
in {
|
|
default = let
|
|
pythonPkgs = pkgs.python3.withPackages (
|
|
_: with (pkgs.python3Packages); [
|
|
ipython pyyaml jinja2 PyGithub
|
|
pyopenssl cryptography
|
|
hvac
|
|
]
|
|
);
|
|
in pkgs.mkShellNoCC {
|
|
packages = with pkgs.buildPackages; [
|
|
# misc
|
|
git openssh jq fzf silver-searcher direnv
|
|
# networking
|
|
curl nmap nettools dnsutils
|
|
# infra
|
|
terraform ansible_2_16 pythonPkgs
|
|
# security
|
|
pass vault bitwarden-cli yubikey-manager pwgen
|
|
# cloud
|
|
aliyun-cli awscli doctl google-cloud-sdk
|
|
hcloud s3cmd scaleway-cli
|
|
];
|
|
|
|
shellHook = ''
|
|
make checks
|
|
'';
|
|
};
|
|
});
|
|
};
|
|
}
|