|
|
5a0760a571
|
programs: sandbox oathtools
|
2024-02-21 00:03:48 +00:00 |
|
|
|
757ab79724
|
programs: dconf: sandbox
|
2024-02-20 23:43:25 +00:00 |
|
|
|
81148b7b42
|
programs: explicitly depend on dconf instead of manually persisting dconf's dirs
|
2024-02-20 23:39:27 +00:00 |
|
|
|
429d0c53e7
|
programs: ripgrep: sandbox with bwrap instead of landlock
this provides network isolation
|
2024-02-20 23:32:54 +00:00 |
|
|
|
6cf1bc5a28
|
programs: grep: sandbox
|
2024-02-20 23:32:28 +00:00 |
|
|
|
768b340c93
|
findutils: sandbox
use bwrap instead of landlock for the dumb preference that i can disable
net
|
2024-02-20 23:31:58 +00:00 |
|
|
|
d9901aa161
|
programs: sane-secrets-*: sandbox
|
2024-02-20 23:31:39 +00:00 |
|
|
|
be2098c18a
|
programs: sane-vpn: sandbox
|
2024-02-20 23:05:24 +00:00 |
|
|
|
bb569b1668
|
sane-vpn: port away from systemd so that i can use it as an ordinary user (no sudo)
|
2024-02-20 22:21:02 +00:00 |
|
|
|
71025329e7
|
programs: sane-dev-cargo-loop: sandbox
|
2024-02-20 19:26:38 +00:00 |
|
|
|
ca4d1e3b9d
|
programs: sane-tag-music: sandbox
|
2024-02-20 19:26:18 +00:00 |
|
|
|
284b698015
|
sane-reclaim-boot-space: fix, and sandbox
well i didn't get to test this thoroughly: might still have problems
|
2024-02-20 19:16:36 +00:00 |
|
|
|
8beac8df2f
|
programs: sandbox sane-shutdown, sane-reboot
|
2024-02-20 13:43:05 +00:00 |
|
|
|
58db553c84
|
programs: unl0kr: sandbox
|
2024-02-20 13:29:56 +00:00 |
|
|
|
2ea3776d84
|
programs: sane-sync-from-servo: remove
this was obsoleted by the top-level flake `sync` scripts
|
2024-02-20 13:16:21 +00:00 |
|
|
|
a624571b22
|
move glib program recommendation into programs/assorted.nix
|
2024-02-20 12:11:26 +00:00 |
|
|
|
53cbe5c8da
|
dconf: split into own sane.programs definition
|
2024-02-20 12:09:52 +00:00 |
|
|
|
a05184f956
|
programs: neovim: fix nvim-treesitter typo
|
2024-02-20 10:23:52 +00:00 |
|
|
|
36ad2d5421
|
programs: unl0kr: auto-derive the user option
|
2024-02-20 07:21:22 +00:00 |
|
|
|
b0f62830a5
|
unl0kr: port to sane.programs
|
2024-02-20 07:14:30 +00:00 |
|
|
|
c7f4661c1c
|
programs: htop: persist config
|
2024-02-20 05:38:45 +00:00 |
|
|
|
e8306831c5
|
programs: qemu: mark as slowToBuild
|
2024-02-20 05:34:47 +00:00 |
|
|
|
41b1a013d7
|
programs: sane-sudo-redirect: disable sandbox
|
2024-02-19 17:09:27 +00:00 |
|
|
|
f785ccd351
|
programs: sane-reclaim-disk-space: sandbox
|
2024-02-19 17:06:22 +00:00 |
|
|
|
48744dcaaa
|
programs: sane-ip-reconnect: remove (unused)
|
2024-02-19 17:05:27 +00:00 |
|
|
|
9373864b60
|
programs: sane-git-init: remove (unused)
|
2024-02-19 16:53:59 +00:00 |
|
|
|
c16c9dfe0b
|
programs: sandbox a bunch of sane scripts
|
2024-02-19 16:51:53 +00:00 |
|
|
|
2d17826731
|
programs: eza: sandbox with bwrap instead of landlock
|
2024-02-19 15:32:40 +00:00 |
|
|
|
de297f22be
|
programs: split sane-scripts out of assorted.nix
|
2024-02-19 14:19:10 +00:00 |
|
|
|
4b47b76461
|
programs: sfeed: sandbox
|
2024-02-19 14:14:59 +00:00 |
|
|
|
3effd59c9b
|
xdg-desktop-portal-{gtk,wlr}: start via service manager, with ordered deps, instead of letting dbus activate it for us
that gets more reliable environment importing, etc
|
2024-02-19 13:44:23 +00:00 |
|
|
|
44647e0d36
|
programs: forkstat: sandbox
|
2024-02-19 13:15:15 +00:00 |
|
|
|
da1053d635
|
programs: configure auto-launching programs to only start *after* graphical-session.target
this ensures they really have their environment
|
2024-02-19 12:58:08 +00:00 |
|
|
|
8886177c23
|
xdg-desktop-portal: fix it to find all the portal configs again
maybe i broke this when i simplified XDG_CONFIG_DIRS? not sure
|
2024-02-19 12:58:08 +00:00 |
|
|
|
35b4cc779f
|
megapixels: switch to bwrap, to support Loupe image viewer
|
2024-02-18 18:46:37 +00:00 |
|
|
|
c7d111a318
|
megapixels: 1.7.0 -> 1.8.0
|
2024-02-18 18:27:47 +00:00 |
|
|
|
7e5eb6324d
|
megapixels: sandbox
it's iffy... 1.8.0 is released, which can be sandboxed w/o sys/dev/char or ~/.local/share/applications, but seems to be even flakier
|
2024-02-18 17:44:49 +00:00 |
|
|
|
55c305812d
|
WIP: megapixels: sandbox
|
2024-02-18 13:53:18 +00:00 |
|
|
|
67395bdcd3
|
programs: ship forkstat
|
2024-02-18 11:58:30 +00:00 |
|
|
|
a591be98d4
|
programs: portfolio-filemanager: sandbox
|
2024-02-18 07:07:29 +00:00 |
|
|
|
82e028e37d
|
programs: nautilus: assign a mime priority
|
2024-02-18 07:07:29 +00:00 |
|
|
|
7f7543ee78
|
programs: planify: sandbox
|
2024-02-18 07:07:29 +00:00 |
|
|
|
8d0e3e0db3
|
programs: notejot: sandbox
|
2024-02-18 07:07:29 +00:00 |
|
|
|
bf352d184c
|
programs: tangram: sandbox
|
2024-02-18 07:07:29 +00:00 |
|
|
|
81a6600f54
|
programs: xarchiver: sandbox
|
2024-02-18 07:07:29 +00:00 |
|
|
|
536f0aedc3
|
open-in-mpv: remove my patch which has been upstreamed, previously required to use xdg-open
|
2024-02-18 04:52:27 +00:00 |
|
|
|
98aafead94
|
programs: wob: add missing "coreutils" dep
it *should* be acquired via user's PATH, but wob-pulse can start before sway imports PATH to systemd
|
2024-02-17 16:38:22 +00:00 |
|
|
|
f8663cd827
|
programs: monero-gui: sandbox
|
2024-02-17 16:06:58 +00:00 |
|
|
|
af1ee1734d
|
programs: wireguard-tools: sandbox
|
2024-02-17 15:54:16 +00:00 |
|
|
|
5375cab716
|
programs: ntfy-sh: sandbox
|
2024-02-17 15:47:47 +00:00 |
|
