d91759068c
element-desktop: sandbox with bwrap
2024-01-24 05:37:46 +00:00
c23c496066
programs: tuba: sandbox with bwrap
...
it complains "Fontconfig error: No writable cache directories"
seeeeeveral times. not sure if that's new or not. no obvious
consequences.
2024-01-24 05:34:10 +00:00
f8e8d23857
vlc: sandbox with bwrap instead of firejail
2024-01-24 05:19:20 +00:00
0e99b296bc
animatch: remove the (unused) .config directory
2024-01-24 02:18:58 +00:00
d0e1241bd1
animatch: fix to run on wayland w/o Xwayland, and enable bwrap sandbox
2024-01-24 01:43:33 +00:00
c1a0a08b76
gtkcord4: sandbox with bwrap
2024-01-24 00:12:12 +00:00
7cf9b342cc
gpodder: fixup GPODDER_DOWNLOAD_DIR to be more friendly to sandboxing
2024-01-23 16:44:47 +00:00
8739851f48
evince: port sandbox from firejail to bwrap
2024-01-23 16:44:13 +00:00
d945b43f6b
signal-desktop: switch sandbox from firejail -> bwrap
2024-01-23 16:42:48 +00:00
ccf4f66dd9
programs: dialect: sandbox with bubblewrap
2024-01-23 16:23:14 +00:00
b38e5403a5
splatmoji: sandbox
2024-01-23 16:01:27 +00:00
09af041745
g4music: ensure it can access the Music dir in its sandbox
2024-01-23 16:00:21 +00:00
cb5131746f
programs: audacity: sandbox with bubblewrap
2024-01-23 15:59:50 +00:00
bfd5630e21
programs: sandbox: omit media dirs by default, and implement --sane-sandbox-autodetect for programs which are liable to load data from paths
2024-01-23 15:48:12 +00:00
026f5dee4d
programs: g4music: sandbox with bwrap
2024-01-23 15:06:45 +00:00
b59be8338a
firefox: fix up sandboxing of ssh/sops
2024-01-23 14:57:57 +00:00
ab4bbc2224
programs: remove explicit firejail installation; let sane.programs decide when to install it sys-wide
2024-01-23 14:57:33 +00:00
156fcd1bf2
aerc: enable bwrap sandbox
2024-01-23 14:57:33 +00:00
bb63a594ab
conky: fixup needed paths for bwrap
2024-01-23 14:57:33 +00:00
f148334b58
programs: port extraFirejailConfig to extraConfig
2024-01-23 14:57:33 +00:00
da537ea8ea
fractal: switch from firejail -> bwrap
2024-01-23 14:13:09 +00:00
18d224dc34
dino: switch from firejail to bwrap
2024-01-23 14:12:52 +00:00
38fd171713
spotify: sandbox with bwrap instead of firejail
2024-01-23 12:12:56 +00:00
84c78d9256
conky: sandbox with bwrap instead of firejail
2024-01-23 12:11:22 +00:00
973203d85e
programs: mpv: sandbox with bwrap instead of firejail
2024-01-23 11:37:37 +00:00
f9174dd2aa
programs: firefox: sandbox with bwrap instead of firejail
2024-01-23 11:37:19 +00:00
0bed4d0ada
mpv: disable firejail sandboxing (it fails on moby)
2024-01-23 01:01:21 +00:00
f3e8af3fdb
doc: libreoffice: mention "still" v.s. "fresh" variants
2024-01-23 01:00:34 +00:00
af542ec05f
docs: gnome-keyring: point out that system gnome-keyring doesn't inherit my sandboxing
2024-01-23 01:00:06 +00:00
399a1d2052
steam: use wrapped package as system steam
2024-01-23 00:59:23 +00:00
bb6e5611d4
docs: conky: point out that un-sandboxed conky is used by sxmo-utils
2024-01-23 00:58:56 +00:00
c11f5a1401
wireshark: fix security.wrappers when wireshark is disabled
2024-01-22 23:58:04 +00:00
5b220f3fec
wireshark: enable firejail isolation
2024-01-22 13:12:10 +00:00
df861a3ef0
programs: firejail: inject custom firejail config through /etc/firejail
...
this improves rebuild times, and makes it easier for packages to inject their own free-form config
2024-01-22 11:12:18 +00:00
d6754b6cac
evince: sandbox with firejail
2024-01-22 10:20:29 +00:00
b03d7f7fb0
geary: test the firejail profile; it's not ready
2024-01-22 10:04:18 +00:00
008b186479
audacity: test the firejail profile; it's not ready
2024-01-22 10:04:03 +00:00
914f9b3703
vlc: sandbox with firejail
2024-01-22 09:47:24 +00:00
ed7ec4a371
conky: sandbox with firejail
2024-01-22 09:31:00 +00:00
2d338201a5
signal-desktop: sandbox with firejail
...
TODO: fix URL opening / xdg-open
2024-01-22 09:30:34 +00:00
a8aad1f98f
dino: sandbox with firejail
...
TODO: fix URL opening / xdg-open
2024-01-22 09:30:13 +00:00
2d06b93118
fractal: sandbox with firejail
...
TODO: seems this broke link opening? (xdg-open?)
2024-01-22 09:28:50 +00:00
60547204a8
sane.programs: firejail: support wrapping "runCommand" packages
2024-01-22 09:16:25 +00:00
3d763a0021
tor-browser-bundle-bin -> tor-browser
...
upstream nixpgs just has tor-browser-bundle-bin as an alias for tor-browser
2024-01-22 08:13:37 +00:00
0f3f0933b1
mpv: sandbox with firejail
2024-01-22 03:50:28 +00:00
f8440e3811
go2tv: allow more ports through the firewall
2024-01-22 03:50:04 +00:00
9ecd0adcbe
firefox: sandbox with firejail
...
TODO: get it so open-in-mpv launches an mpv that has access to ~/.config/mpv
i guess this is the 'firejail url problem'
2024-01-21 23:59:15 +00:00
cf475c4696
nicotine-plus: remove distro-specific symlink
2024-01-21 03:56:33 +00:00
59187a0ec0
programs: allow running binaries in a netns-style firejail
2024-01-20 11:11:12 +00:00
f43d6bff92
route VPN traffic such that i can configure any app to selectively use the VPN
...
e.g. firejail --net=br-ovpnd-us-mi --noprofile --dns=46.227.67.134 getent ahostsv4 uninsane.org
2024-01-19 09:54:01 +00:00
34bcdb5128
firefox: disable kinetic scrolling
2024-01-14 20:34:14 +00:00
aebd11ea82
alacritty: port config: yaml to toml
2024-01-12 03:24:55 +00:00
4ce93f74c6
wob: add debug logging
2024-01-04 17:07:47 +00:00
09b806d7a7
go2tv: document youtube workarounds
2024-01-04 16:26:25 +00:00
ca3f97ec51
docs: go2tv: elaborate seeking limitations
2024-01-04 16:25:49 +00:00
daf046861c
wob: implement as part of sway instead of exclusive to sxmo
2024-01-04 13:08:20 +00:00
22f5853741
firefox: remove unused functions
2024-01-03 14:59:59 +00:00
fe217f6667
firefox: disable ctrl+shift+c shortcut more broadly
2024-01-03 14:59:27 +00:00
75b649543a
firefox: enable ctrl-shift-c-should-copy extension
2024-01-03 13:42:58 +00:00
041855dbc7
zsh: fix broken <del> and <ctrl>+<arrow> keybindings
2024-01-03 13:07:29 +00:00
6471524f4a
programs: zecwallet-lite: move to own file
2024-01-01 15:17:51 +00:00
8d0707699c
mpv/vlc: associate with flv video type
2024-01-01 11:48:18 +00:00
f9361af41c
go2tv: remove firewall fix and allow SSDP at the iptables layer
2023-12-30 06:16:17 +00:00
b0ddb1b31c
conky: use the same percent symbol even in battery_estimate
2023-12-28 17:43:34 +00:00
70ee98736a
conky/battery_estimate: handle the static state better
2023-12-28 17:35:33 +00:00
5de06cef35
conky: fix text substitutions
2023-12-28 17:07:29 +00:00
4f3706622c
conky/battery_estimate: render stylized
2023-12-28 03:05:27 +00:00
104e76de47
conky/battery_estimate: render h/m indicators as superscript
2023-12-28 01:53:43 +00:00
1df99978bb
conky/battery_estimte: select icon based on battery percentage
2023-12-28 01:11:51 +00:00
3846322f12
conky/battery_estimate: support new-style Thinkpad batteries
2023-12-28 00:41:23 +00:00
623b2c6611
conky/battery_estimate: add debugging
2023-12-28 00:35:48 +00:00
cb4d73f959
nixpkgs: 2023-12-23 -> 2023-12-26
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/2125288b9266cde9e3333a6787525bc151918742' (2023-12-23)
→ 'github:nixos/nixpkgs/0db7618e46243d3710ff2b8040aca5f6e0102900' (2023-12-26)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/d8aba6fe4067abdd8b1a7f398f2b90f21c608530' (2023-12-23)
→ 'github:nixos/nixpkgs/d956588517edbcde71781bd8ac3a9947a9fc55a6' (2023-12-26)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/f7db64b88dabc95e4f7bee20455f418e7ab805d4' (2023-12-18)
→ 'github:Mic92/sops-nix/e523e89763ff45f0a6cf15bcb1092636b1da9ed3' (2023-12-24)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/a19a71d1ee93226fd71984359552affbc1cd3dc3' (2023-12-17)
→ 'github:NixOS/nixpkgs/7790e078f8979a9fcd543f9a47427eeaba38f268' (2023-12-23)
```
2023-12-27 00:34:48 +00:00
dbb6773634
audacity: disable first-run splashscreen
2023-12-21 04:08:05 +00:00
245a0544bc
audacity: ship w/o the webkitgtk dependency
2023-12-21 03:10:38 +00:00
b6a45656af
gui: add planify app
2023-12-19 22:31:14 +00:00
fd0f709d50
git: remove a/ b/ prefixes from diffs
2023-12-17 20:48:31 +00:00
b2bf9d63a3
mpv: don't assume xdg-terminal-exec is on PATH
2023-12-16 00:43:43 +00:00
bcac00d766
mpv: uosc: add a "cast" option to the menu
2023-12-16 00:39:36 +00:00
c256d7ded5
koreader: implement copy-to-clipboard
2023-12-15 20:53:04 +00:00
7ba39ea831
koreader: document how to configure
2023-12-15 20:05:06 +00:00
a933f8b512
delfin: persist server settings
2023-12-15 08:17:07 +00:00
ef8a8bc246
go2tv: document known-good format matrix
2023-12-15 03:22:03 +00:00
136ddda055
nautilus: enable the A/V pane
2023-12-15 02:57:25 +00:00
ba7bc3bd03
go2tv: docs: show that some mp4s work w/o transcoding
2023-12-15 02:32:44 +00:00
311412c5ee
go2tv: configure firewall as needed
2023-12-15 00:50:58 +00:00
54d2e875f6
koreader: disable image-based feeds; text only
2023-12-14 20:51:09 +00:00
c5cc0e90a3
wob: theme
2023-12-14 20:49:48 +00:00
f763448d6f
go2tv: docs: firewall
2023-12-14 10:56:07 +00:00
deb828e98a
programs: enable go2tv
2023-12-14 10:39:33 +00:00
ac22e07388
sxmo: bring wob service in-house
2023-12-14 10:33:33 +00:00
cb0d9e077b
programs: enable catt
2023-12-14 08:41:16 +00:00
58105e9b62
fix open-in-mpv extension
2023-12-14 07:26:50 +00:00
32fb79d43d
dino: auto-start
2023-12-14 01:57:32 +00:00
f129afdae8
flare-signal: document linking/registration issue
2023-12-14 01:56:54 +00:00
29cde5e724
firefox: support Element and Nheko URIs
2023-12-13 23:14:04 +00:00
540b3e4af2
firefox: auto-dispatch mpv:// URI handlers
2023-12-13 21:41:06 +00:00
e0211646b2
firefox: extraNativeMessagingHosts -> nativeMessagingHosts
2023-12-13 21:34:59 +00:00
94dcb0f08a
firefox: ship open-in-mpv extension
2023-12-13 21:34:34 +00:00
0b38ed2f2a
firefox: docs: clarify fxCast behavior
2023-12-13 20:58:45 +00:00
15622251ef
firefox: define the fx_cast addon
2023-12-13 20:51:57 +00:00
508257da87
newsflash: enable podcasts/videos; document
2023-12-13 03:45:07 +00:00
fadcf7d7c1
mpv: youtube: associate with another URL variant
2023-12-13 03:44:57 +00:00
7f43360120
newsflash: enable
2023-12-13 03:06:08 +00:00
1119726c64
docs: koreader: dictionary installation
2023-12-12 20:56:46 +00:00
d2012b4e40
notejot: fix store typo
2023-12-12 07:55:18 +00:00
a669c9c88b
gui: add Loupe image viewer specialization
2023-12-12 07:36:21 +00:00
8391e500c9
gui: handheld: ship notejot
2023-12-12 07:31:00 +00:00
688b4edf13
mpv: handle shorthand youtu.be URLs too
2023-12-11 16:19:51 +00:00
ad82bb2630
mimeo: fix infinite loop when dispatching non-specialized http/s URLs
2023-12-11 04:52:49 +00:00
008a6192d4
mpv: associate with https://youtube.com/ ...
2023-12-11 04:52:49 +00:00
9e2c0a7112
megapixels: simplify zbar fix
2023-12-11 03:27:29 +00:00
abbd28a634
git: add an "amend" alias
2023-12-10 17:01:58 +00:00
255da2b976
docs: gtkcord4: explain how to disable notif sounds
2023-12-10 16:26:26 +00:00
8cdb4aa53d
docs: feedbackd: show how to trigger a sound
2023-12-10 16:25:13 +00:00
4d5b462b2c
swaync: add rules to help with debugging
2023-12-10 16:18:55 +00:00
e0d9a59d10
nixpkgs: 2023-12-09 -> 2023-12-10
...
```
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/61b691834e5ce9590c44690e73392ee7e001d45a' (2023-12-09)
→ 'github:nixos/nixpkgs/852e0ea0e8e1bd174bf1af9706f6b855319a5f1d' (2023-12-10)
```
2023-12-10 02:13:59 +00:00
7ce3cb79c9
switch from abaddon -> gtkcord4 as default discord client
2023-12-09 16:45:40 +00:00
4c553b1525
gtkcord4: fix to Default_keyring instead of login.keyring
2023-12-09 16:42:27 +00:00
366a9cea0d
fractal: ship optimized build
2023-12-07 16:39:36 +00:00
9704dcc997
feeds: add support for video; subscribe to videos in gpodder
2023-12-06 15:36:05 +00:00
7ff259073e
swaync: decrease mpris icon size 64 -> 48px
2023-12-05 17:01:57 +00:00
2bf10c60ee
swaynotificationcenter: fix mpris icon height even when it fails to load an icon
2023-12-05 16:57:24 +00:00
b061aff76e
IOCTL_... errrors: track mesa 23.3.1 PR which SHOULD fix them?
2023-12-04 11:07:59 +00:00
aa46c4cb8f
chatty: remove redundant evolution-data-server override: its done in overlays/preferences.nix
2023-12-04 02:09:52 +00:00
9e51d7f150
sane-wipe-*: consolidate into one sane-wipe binary
2023-12-03 14:25:35 +00:00
0c0e7881b1
signal-desktop: document a known bug
2023-12-03 13:58:30 +00:00
c687d059c5
signal-desktop: support wayland even when running as a service
2023-12-03 13:00:29 +00:00
8772aaec65
zfs: dont ship on moby
2023-12-03 00:58:49 +00:00
a9f932408c
servo: add zfs dataset
2023-12-02 17:38:00 +00:00
936118b8cb
sane-tag-music: init
2023-11-29 12:29:58 +00:00
c100f55f1c
mpv: associate with opus mimetype
2023-11-29 01:14:15 +00:00
8eb83bb283
sane-ssl-dump: remove
...
i never used it
2023-11-28 09:12:39 +00:00
4d2fecec13
geary: add my other email account
2023-11-27 07:56:26 +00:00
dcb74234a6
wine: persist pb powerbomber
2023-11-26 12:18:08 +00:00
5528b6d87d
games: ship wine
...
launch games with `wine some-game.exe`
2023-11-26 09:20:48 +00:00
1d38aa62de
fractal: persist the new(est) state dir
...
hope it stops moving around soon lol
2023-11-25 08:57:50 +00:00
4c4a8a0897
neovim: port to wrapNeovimUnstable
2023-11-25 05:02:48 +00:00
10aea555dd
neovim: simplify implementation
2023-11-25 04:46:24 +00:00
8f526cd2b5
tuba: remove workaround (fixed via gnome 45 update)
2023-11-24 21:41:07 +00:00
6382ac22cb
zsh: new alias to aid cloning an OS package
2023-11-24 21:40:16 +00:00
e1845d37da
zsh: order aliases alphabetically
2023-11-24 21:39:52 +00:00
9ccbfd8bf0
sane-clone: init
...
script to "git clone" a nix packages source code
2023-11-24 21:29:15 +00:00
9343447c03
nixpkgs: 2023-11-19 -> 2023-11-21
...
switch to `master` branch for the GNOME changes
```
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/e4ad989506ec7d71f7302cc3067abd82730a4beb' (2023-11-19)
→ 'github:nixos/nixpkgs/72edcc748a92377d0568c9536ece114dbabb948c' (2023-11-21)
```
2023-11-22 00:00:52 +00:00
fc2bf35588
sway-autoscaler: tune gnome-maps scale
2023-11-21 08:59:34 +00:00
fdc9df6b91
sway-autoscaler: cleanup
2023-11-21 08:25:01 +00:00
d294be9f35
sxmo: auto-scale the environment to accomodate non-mobile-friendly apps
...
this is hacky, but it hopefully makes gnome-maps usable, quickly.
an alternative fix would be to theme gnome-maps.
it's likely also that it becomes more mobile-friendly in the gnome 45
release.
2023-11-21 08:14:52 +00:00
98ea4d2dfe
abaddon: depend on gnome-keyring
2023-11-21 06:05:52 +00:00
6a950b4e97
abaddon: integrate with swaync services buttons
2023-11-21 03:32:59 +00:00
70292e4f8e
abaddon: dont show the "view members" pane, by default
2023-11-21 03:06:58 +00:00
61d5b9f048
abaddon: disable platform override (upstream has merged support for aarch64)
2023-11-21 00:37:02 +00:00