5c7fa591a0
programs: sandbox: dtrx/e2fsprogs/efibootmgr/electrum
2024-02-16 10:32:18 +00:00
18c54e8b04
programs: sandbox cryptsetup and ddrescue (latter is untested, probably lacking!)
2024-02-16 10:05:24 +00:00
1416856fb6
programs: blueberry: sandbox
2024-02-16 07:58:00 +00:00
2a5bc6f612
programs: util-linux: disable sandbox
2024-02-16 07:37:59 +00:00
c56a6a8c24
programs: disable libcap_ng since it cant sandbox
2024-02-16 07:32:34 +00:00
f5a4bdedaf
programs: libcap_ng (netcap): disable sandbox
2024-02-16 07:32:05 +00:00
114a45f347
programs: pstree: sandbox
2024-02-16 06:57:45 +00:00
d53344d527
programs: killall: sandbox
2024-02-16 06:57:32 +00:00
561447de70
programs: shattered-pixel-dungeon: sandbox
2024-02-16 06:57:03 +00:00
9cc12fab5d
programs: gpodder: fix to work in sandbox (add dbus)
2024-02-16 06:07:46 +00:00
5cda3b2805
programs: firefox/fractal: document portal filechooser limitations
2024-02-16 05:49:56 +00:00
4afd56ff4c
programs: powertop: fix capabilities typo in sandbox definition
2024-02-16 05:49:13 +00:00
94b4f78e39
programs: lemoa: sandbox
2024-02-16 05:32:22 +00:00
3fd89ec91b
programs: sandbox powertop
2024-02-16 05:28:17 +00:00
4085828575
programs: sandbox parted
2024-02-16 05:28:07 +00:00
1a972927b6
programs: sandbox nethogs, nmon, nixpkgs-review
2024-02-16 05:27:50 +00:00
5f3ec42f57
programs: sandbox lsof with capsh only
...
can't get it to sandbox any more aggressively with either landlock or
bwrap
2024-02-16 04:55:18 +00:00
28aaeb051f
programs: disable sandboxing for strace and screen
2024-02-16 04:51:52 +00:00
9d252d095e
programs: htop/iotop/iftop: sandbox
2024-02-16 04:51:18 +00:00
4e5e4219ec
programs: usbutils: sandbox
2024-02-16 04:03:47 +00:00
824dd7c1f5
programs: endless-sky: sandbox with bwrap
2024-02-16 04:00:27 +00:00
b840a0d61c
programs: space-cadet-pinball: sandbox w/ bwrap
2024-02-16 03:58:09 +00:00
36bcecfd68
programs: sort
2024-02-16 03:53:53 +00:00
c3a5fb9394
programs: wdisplays: sandbox with bwrap
2024-02-16 03:53:27 +00:00
30507c3564
programs: soundconverter: sandbox with bwrap
2024-02-16 03:51:23 +00:00
2b66ffc58a
programs: feedbackd: sandbox w/ bwrap
2024-02-16 03:49:59 +00:00
48d96c1f36
programs: hase: sandbox with bwrap
...
couldn't test the net feature, because hase servers have since gone
offline :((
2024-02-16 03:48:59 +00:00
cdf61755a3
programs: splatmoji: document the sandboxing approach
2024-02-16 03:46:48 +00:00
511752fab5
programs: xdg-desktop-portal{-gtk,-wlr}: enable sandbox
2024-02-16 03:17:19 +00:00
40ed7cff1b
programs: git: fix failing sandbox build
2024-02-16 03:16:46 +00:00
5e7f914354
programs: superTux: fix failing sandbox build
2024-02-16 03:16:28 +00:00
0dec8b6d5b
programs: fontconfig: sandbox
2024-02-15 18:26:45 +00:00
7eaffc9fa0
programs: w3m: enable sandbox
2024-02-15 18:25:48 +00:00
b7c1a6331d
programs: mate.engrampa: enable sandbox
2024-02-15 18:24:27 +00:00
d6868d58e6
xdg-desktop-portal: disable sandbox
2024-02-15 18:23:40 +00:00
52d768a162
programs: xterm: mark as not needing a sandbox
2024-02-15 17:26:55 +00:00
7a685d8de9
programs: inkscape: sandbox with bwrap
2024-02-15 17:26:37 +00:00
838c6d7dc8
programs: swaync: sandbox
2024-02-15 16:38:38 +00:00
9d706df5b5
programs: waybar: narrow the /run/user paths to just sway-ipc.sock
2024-02-15 14:40:01 +00:00
24d23f7903
programs: bemenu: fix sandboxing
2024-02-15 14:33:20 +00:00
5090c4e88c
sway: define without using nixos "programs.sway"
...
motivation was to leverage 'sane.programs.sway.env' to statically configure SWAYSOCK. i think that's still the right way: we'll see
2024-02-15 14:25:27 +00:00
081114da65
programs: waybar: sandbox in a way that works well for moby too
2024-02-15 13:16:18 +00:00
02b7586ffa
programs: komikku: add dbus to the sandbox to fix it
2024-02-15 11:58:08 +00:00
25dcb7f89a
programs: open-in-mpv: document that upstream merged my PR
2024-02-15 11:38:37 +00:00
88f1d63b6e
firefox: properly integrate xdg-desktop-portal for opening media
2024-02-15 11:36:50 +00:00
d36e269edd
programs: loupe: remove the dbus services to make it work with Firefox
2024-02-15 11:36:24 +00:00
582a003739
programs: waybar: fix battery indicator within sandbox
2024-02-15 10:35:24 +00:00
df60be8c61
open-in-mpv: sandbox with bwrap
2024-02-15 09:49:03 +00:00
e8b4c36442
programs: nautilus: specify inode/directory mime association
2024-02-15 09:48:26 +00:00
2f699737f5
firefox: fix open-in-mpv integration
...
two parts: add open-in-mpv's config to firefox's sandbox; patch open-in-mpv to forward to xdg-open
2024-02-15 09:14:57 +00:00
4a3d24be3f
waybar: migrate all config to "sane.programs"
2024-02-15 07:18:12 +00:00
10feb319fe
sway: lift waybar to own file and sandbox it
2024-02-15 02:33:40 +00:00
b2fcf6fdfd
programs: messengers (fractal, signal, dino, tuba): add media libraries to the sandbox
2024-02-15 00:49:24 +00:00
dcc2eb265d
programs: re-enable sandbox for tumiki-fighters and losslesscut (X applications)
2024-02-15 00:09:40 +00:00
518c3afd07
programs: sandbox: disable losslesscut/tumiki-fighters sandbox until i can figure out Xwayland
2024-02-14 14:37:59 +00:00
90dee85664
programs: sort alphabetically
2024-02-14 14:28:22 +00:00
26fc283fd9
programs: losslesscut: sandbox
2024-02-14 14:26:56 +00:00
d0430ce1e9
programs: pavucontrol/pwvucontrol: enable audio devices inside the sandbox
2024-02-14 14:26:56 +00:00
368a52b91e
programs: speedtest-cli: sandbox with bwrap
2024-02-14 14:26:56 +00:00
d90dacee1f
programs: grimshot: sandbox with bwrap
2024-02-14 14:17:41 +00:00
a6e2b3bc5c
programs: xdg-terminal-exec: disable sandbox
2024-02-14 14:11:35 +00:00
8863a3c674
programs: wob: sandbox with bwrap
2024-02-14 14:10:20 +00:00
fa8d6dbb9f
programs: wob: fix config substitution
2024-02-14 14:04:54 +00:00
e5e79a6b60
programs: FileMimeInfo: disable sandbox
2024-02-14 13:54:21 +00:00
95f7eeeb5c
programs: libnotify: sandbox with bwrap
2024-02-14 13:49:48 +00:00
29d638c68b
programs: dig: sandbox with bwrap
2024-02-14 13:47:44 +00:00
7d22a5466f
programs: zsh: fix "switch" function to be friendly to sandboxing
2024-02-14 13:45:56 +00:00
5907d9fa42
Revert "xdg-desktop-portal-gtk: build without support for notifications"
...
This reverts commit c9e02bfd8a
.
disable notifications at this level did not cause fractal (gtk app) to
send its notifications to swaync. instead, it still tried to deliver to
the Portal, where the Portal wasn't expecting anything and just returned
an error to fractal.
setting `GNOTIFICATION_BACKEND = "freedesktop"` seems to be the correct
way to get gtk apps to behave as desired with their notifications.
2024-02-14 11:09:37 +00:00
67fe8d4666
swaync: propagate GNOTIFICATION_BACKEND = "freedesktop"
to all users
2024-02-14 11:09:20 +00:00
c9e02bfd8a
xdg-desktop-portal-gtk: build without support for notifications
2024-02-14 10:51:18 +00:00
03b58b3cab
programs: vim: support system copy/paste inside of sandbox
2024-02-14 09:11:31 +00:00
ae01c17c05
programs: splatmoji: fix to work inside a sandbox again
2024-02-14 09:11:12 +00:00
677e6e679b
programs: sandbox {s,}waylock lockscreen
2024-02-14 08:48:03 +00:00
3eb47a9a8d
programs: swaylock: *partially* sandbox with capsh
2024-02-14 05:46:36 +00:00
f11e443678
programs: waylock: *partially* sandbox with capsh
2024-02-14 05:46:28 +00:00
8f8ec090c4
programs: add "waylock"
2024-02-14 05:01:33 +00:00
e174eaeff0
programs: loupe: fix sandboxing
2024-02-14 04:32:10 +00:00
f12b7afa1e
programs: mimeo: dont sandbox
2024-02-14 01:51:26 +00:00
080bd856ec
programs: sandboxing: only permit wayland socket access to those specific apps which require it
2024-02-14 01:49:49 +00:00
2d7c5b9fa5
programs: mpv: explicitly add Videos/servo, Books/servo to sandbox
2024-02-13 15:38:57 +00:00
83cb29aeeb
xdg-utils: re-add mimetype
package
2024-02-13 12:31:04 +00:00
1a18ed533b
programs: don't include dbus in the sandbox by default
2024-02-13 11:58:33 +00:00
18eec98cae
programs: brightnessctl: switch to landlock
2024-02-13 11:58:33 +00:00
82c386a6a4
programs: tor-browser-bundle-bin -> tor-browser
...
they're the same (aliased), only my programs API expects 'tor-browser' specifically
2024-02-13 11:58:33 +00:00
634dc318cd
programs: spotify: remove old/unused firejail config
2024-02-13 11:15:30 +00:00
6eaaeeb91a
programs: remove audio from the sandbox by default
2024-02-13 11:14:38 +00:00
94be4a7551
programs: wob: fix service definition (Exec -> ExecStart)
2024-02-13 11:03:18 +00:00
b4a20da78a
programs: brightnessctl: sandbox
2024-02-13 10:55:44 +00:00
bb68506839
modules/programs: add separate "user" v.s. "system" options for whitelistDbus
2024-02-13 10:55:10 +00:00
77e2af0ed9
programs: krita: enable sandbox
2024-02-13 10:36:42 +00:00
126f3e4922
programs: sandboxing: restrict /run/user dir to just dbus/pipewire/pulse/wayland, by default
2024-02-13 10:28:30 +00:00
371af5939e
programs: mpv: tighten the /run/user portion of the sandbox
2024-02-12 15:24:07 +00:00
e94e338040
programs: handbrake: remove unneeded Pictures/servo-macros from sandbox
2024-02-12 12:54:41 +00:00
354ce378f6
programs: assorted: convert /mnt/servo "extraPaths" into "extraHomePaths" where possible
2024-02-12 12:54:16 +00:00
f9a998eb92
programs: koreader: remove "sandbox.embedProfile = true"
...
i guess this was set while i was debugging
2024-02-12 11:33:55 +00:00
1e05119adc
mpv: fix loading of album art within sandbox
2024-02-12 08:59:46 +00:00
e81df0ac86
modules/programs: enforce that user services don't accidentally override PATH
2024-02-12 08:44:55 +00:00
b19492ba23
programs: mpv: add .config/mpv to sandbox paths
2024-02-12 08:26:51 +00:00
8b26fa1303
programs: wob: split the script into an actual package
2024-02-12 08:26:51 +00:00
6b3a71aadf
programs: xdg-desktop-portal: dont show app chooser for apps which are the default association
2024-02-12 07:12:04 +00:00
66ca822ac1
remove xdg-desktop-portal-gtk service; xdg-desktop-portal knows how to start that itself
2024-02-12 01:33:34 +00:00
db7a414030
xdg-desktop-portal(s): dont install globally
2024-02-12 01:16:17 +00:00
bf53e3628a
xdg-utils: cleanup
2024-02-11 23:57:50 +00:00
d719eb0f11
programs: gPodder: enable Videos/gPodder in sandbox
2024-02-11 23:37:16 +00:00
772f1070e7
xdg-desktop-portal: configure myself, to unblock future portal-related work
2024-02-11 23:29:07 +00:00
590a239f7d
programs: gpodder: sandbox with bwrap
...
which we can do, now that xdg-open works correctly within sandboxes
2024-02-09 10:31:42 +00:00
bcbc57f5ef
programs: get xdg-open to work from within sandboxes
...
note that implementation may have a quirk that applications launched via the portal cannot themselves "xdg-open" through the portal, because of the environment variable manipulation.
not sure how best to address that.
2024-02-09 10:27:30 +00:00
c9af5bf9b4
programs: sandboxing: enable net isolation for most sandboxed programs
2024-02-08 21:51:32 +00:00
0c050d1953
programs: fuzzel: fix overly-aggressive sandboxing
2024-02-06 20:10:29 +00:00
2fc1fe7510
modules/programs: make-sandboxed: fix that /share/* was being linked into top-level /; better way to enforce sandboxing of /share entries
2024-02-06 19:55:55 +00:00
5fbf66fb15
programs: loupe: sandbox with bwrap
2024-02-06 06:05:32 +00:00
97d50629e9
programs: handbrake: sandbox with landlock
2024-02-06 05:48:54 +00:00
5f8699fcef
rearrange /mnt structure for host-based subdirs
...
e.g. /mnt/servo/media, /mnt/desko/home, etc
2024-02-06 05:48:11 +00:00
5ff7bf0c69
programs: fuzzel: sandbox
2024-02-06 02:34:46 +00:00
2495200b67
tidy: programs: wget: remove warning about the sandbox being untested
2024-02-06 01:34:40 +00:00
4c499629f5
programs: vvvvvv: sandbox with bwrap
2024-02-06 01:34:04 +00:00
7b9f54dd54
programs: superTux: sandbox with bwrap
2024-02-06 01:16:36 +00:00
bda932c3df
programs: supertuxkart: sandbox with bwrap
2024-02-06 01:10:39 +00:00
1c4e2f97fe
swaylock: mark sandboxing as unsupported
2024-02-05 23:36:35 +00:00
6eb2a3d67f
programs: handbrake: sandbox with bwrap
2024-02-05 22:28:15 +00:00
ddc41bc9d8
programs: pavucontrol/pwvucontrol: sandbox with bwrap
2024-02-05 22:15:48 +00:00
7d833ebf76
programs: kdenlive: sandbox with bwrap
2024-02-05 22:07:37 +00:00
bfc0eadfaa
programs: hitori: sandbox with bwrap
2024-02-05 21:52:57 +00:00
ff1cbcc16b
programs: gnome-clocks,gnome-calendar: sandbox with bwrap
2024-02-05 21:46:27 +00:00
9a8d8a20bd
programs: frozen-bubble: persist data and sandbox with bwrap
2024-02-05 21:32:58 +00:00
cd1d22e7b9
programs: gnome-calculator: sandbox with bwrap
2024-02-05 20:58:38 +00:00
2c0e93826d
programs: gimp: sandbox with bwrap
2024-02-05 20:53:05 +00:00
cab346f3ad
programs: delfin: sandbox with bwrap
2024-02-05 20:44:47 +00:00
a2decaff9c
programs: bemenu: sandbox with landlock
2024-02-05 18:41:52 +00:00
8ef9f7a485
epiphany: persist dconf settings; reduce sandboxer errors
2024-02-05 18:31:38 +00:00
12846732b9
programs: blanket: sandbox with bwrap
2024-02-05 18:26:21 +00:00
e84079e84c
programs: firefox: allow sandbox access to ~/dev
2024-02-05 18:17:49 +00:00
45ffd9246d
programs: brave: sandbox with bwrap
2024-02-05 18:17:28 +00:00
6d1eae2200
programs: gnome-2048: sandbox with bwrap
2024-02-05 08:26:06 +00:00
293eab8225
koreader: use modern openssl
2024-02-04 20:05:02 +00:00
abdbb83e10
koreader: replace vendored dependencies with their nixpkgs equivalents much more effectively
...
the old method was still causing everything to be re-compiled within koreader, rather than linking against the nix store.
decreases build time to about 3m on a desktop
2024-02-04 19:39:32 +00:00
dc74bca06a
programs: vim: add private/knowledge to sandbox
2024-02-03 23:53:53 +00:00
42523b75a8
programs: gdb: disable sandboxing
2024-02-03 23:53:34 +00:00
111946eb1d
programs: vim, imagemagick: fix sandboxing to consider uncreated files
2024-02-03 14:07:53 +00:00
14b20fd9c2
programs: komikku: fix sandboxing
2024-02-03 00:52:17 +00:00
2df1b20f02
programs: epiphany: simplify the sandboxing
2024-02-03 00:44:23 +00:00
2f9fad503c
programs: fix sandboxing errors for programs which create files (notably: ffmpeg)
2024-02-03 00:17:54 +00:00
56734fe5da
mpv: add /dev/dri to the sandbox
2024-02-02 19:18:30 +00:00
3c96f6d418
programs: koreader: enable DRI in the sandbox, and use wrappedDerivation
2024-02-02 17:22:57 +00:00
86b23e8183
programs: fractal: enable DRI in sandbox
2024-02-02 17:19:35 +00:00
6151eee8d5
programs (assorted): fix wantedBy = "default.target" to be more specific
...
now GUI apps aren't stuck in a restart loop until sway starts
in particular, signal-desktop can actually be autostarted
2024-02-02 14:21:57 +00:00
715ac42f13
remove samba from closure
...
current samba hangs during configurePhase. this is not the first time samba has failed to build. nor the third. purge it.
2024-02-01 15:28:40 +00:00
368eb2c29b
programs: git: whitelist more repo roots
2024-01-31 21:17:48 +00:00
8736ca478b
programs: firefox: allow access to servo image-macros
2024-01-31 15:36:09 +00:00
cb3960fb21
programs: git: fix access to ~/private/knowledge
2024-01-31 15:35:21 +00:00
6e24a1ff28
programs: re-enable sops
2024-01-31 15:30:15 +00:00
f5c88853ee
sway: replace "greetd" with "unl0kr"-based login process
2024-01-31 15:20:27 +00:00
0009e5ca4c
programs: sandboxing: use wrapperType="wrappedDerivation" where applicable
2024-01-29 15:21:16 +00:00
db6ba61429
programs: sandbox more apps with wrapperType=wrappedDerivation
2024-01-29 13:45:57 +00:00
d3f7a036ce
ripgrep: move options out of assorted.nix into its own file
2024-01-29 12:57:56 +00:00
0454abacd9
komikku: sandbox
2024-01-29 12:56:08 +00:00
1cb2c5225f
programs: use wrapperType=wrappedDerivation where possible
2024-01-29 12:07:04 +00:00
6f86e61a00
firefox: fix build
...
zip was giving some complaints... i'm not sure why, i think it still works
2024-01-29 09:57:35 +00:00
c1a1f51ca2
git: fix git-upload-pack (used on the remote when doing git pull)
2024-01-29 09:57:27 +00:00
bfec531fa2
sandbox a bunch more apps
2024-01-28 11:43:05 +00:00
de11edffa5
programs/assorted: remove more unused programs
2024-01-28 11:34:33 +00:00
e536e3c718
programs/assorted.nix: remove unused tree-sitter package
2024-01-28 11:03:09 +00:00
17d14dbac2
programs/assorted.nix: uninstall some programs i don't frequently use
2024-01-28 10:40:57 +00:00
94981ef335
vim: sandbox
2024-01-28 10:39:08 +00:00
3cd244be76
git: sandbox with bwrap
2024-01-28 10:36:19 +00:00
7da979503b
bubblewrap: explicitly disable sandboxing
2024-01-27 17:20:40 +00:00
3b32c26026
zsh: explicitly disable sandboxing
2024-01-27 17:20:24 +00:00
cad25306e7
alacritty: explicitly disable sandbox
2024-01-27 17:20:11 +00:00
4d7414c941
programs: introduce and use "autodetectCliPaths" nix config
2024-01-27 17:19:48 +00:00
b29b8bdec7
wireshark: specify capabilities via sandbox.capabilities config
2024-01-27 17:12:40 +00:00
770db96ec6
go2tv: sandbox with bwrap
2024-01-27 15:31:08 +00:00
ff356fdd49
playerctl: sandbox with bwrap
2024-01-27 15:18:56 +00:00
eec89e2cc1
librewolf: sandbox with bwrap
2024-01-27 15:16:53 +00:00
d69d8f64f3
tor-browser: sandbox with bwrap; remove useHardenedMalloc patch
2024-01-27 15:04:22 +00:00
4ee2562202
programs: tidy: prefer "sandbox.extraHomePaths" over "fs" for external deps
2024-01-27 14:54:17 +00:00
08b1ece56e
programs: gnome-weather: sandbox with bwrap
2024-01-27 14:53:38 +00:00
b22c2e094c
koreader: sandbox with bwrap
2024-01-27 14:39:22 +00:00
b40775f97c
koreader-from-src: document FTP configuration
2024-01-27 14:39:02 +00:00
100ddad40e
wike: link to issue about state directory
2024-01-27 14:27:02 +00:00
1bde38bf72
cozy: sandbox with bwrap
2024-01-27 13:11:22 +00:00
0a25ef544f
wike: sandbox with bwrap
2024-01-27 12:29:58 +00:00
79ee47bada
firefox: get away with linking slightly less into the sandbox
2024-01-27 11:41:18 +00:00
be06e61bfb
programs: geary: fix sandboxing
...
this is an UGLY one. geary itself uses bwrap, and that fails if it's sandboxed AT ALL in landlock (i.e. even with just / landlocked as RW).
maybe this has to do with what landlock-sandboxer considers 'read/write' to be, and there's actually more file ops i need to enable on /
2024-01-27 11:28:08 +00:00
dae7785ee2
wireshark: remove dead code
2024-01-27 09:04:08 +00:00
27f3b2bd76
firefox: allow ~/tmp and ~/Pictures access
2024-01-27 06:00:46 +00:00
3e6278fa21
wireshark: sandbox with landlock instead of firejail
...
and remove the SUID wrapper, yay!
2024-01-27 04:44:21 +00:00
8ecb17ed3e
programs: enable libcap_ng/netcap
2024-01-26 09:13:20 +00:00
c4874c85b1
bubblewrap: debugging
2024-01-26 09:13:00 +00:00
79e2bd2913
epiphany: sandbox with bwrap
...
this is the first app which *requires* DRI/DRM to function correctly. maybe this effects anything webkitgtk (like wike)?
2024-01-24 06:25:20 +00:00
95161b55cd
spot: sandbox with bwrap
2024-01-24 05:47:04 +00:00
d91759068c
element-desktop: sandbox with bwrap
2024-01-24 05:37:46 +00:00
c23c496066
programs: tuba: sandbox with bwrap
...
it complains "Fontconfig error: No writable cache directories"
seeeeeveral times. not sure if that's new or not. no obvious
consequences.
2024-01-24 05:34:10 +00:00
f8e8d23857
vlc: sandbox with bwrap instead of firejail
2024-01-24 05:19:20 +00:00
0e99b296bc
animatch: remove the (unused) .config directory
2024-01-24 02:18:58 +00:00
d0e1241bd1
animatch: fix to run on wayland w/o Xwayland, and enable bwrap sandbox
2024-01-24 01:43:33 +00:00
c1a0a08b76
gtkcord4: sandbox with bwrap
2024-01-24 00:12:12 +00:00
7cf9b342cc
gpodder: fixup GPODDER_DOWNLOAD_DIR to be more friendly to sandboxing
2024-01-23 16:44:47 +00:00
8739851f48
evince: port sandbox from firejail to bwrap
2024-01-23 16:44:13 +00:00
d945b43f6b
signal-desktop: switch sandbox from firejail -> bwrap
2024-01-23 16:42:48 +00:00
ccf4f66dd9
programs: dialect: sandbox with bubblewrap
2024-01-23 16:23:14 +00:00
b38e5403a5
splatmoji: sandbox
2024-01-23 16:01:27 +00:00
09af041745
g4music: ensure it can access the Music dir in its sandbox
2024-01-23 16:00:21 +00:00
cb5131746f
programs: audacity: sandbox with bubblewrap
2024-01-23 15:59:50 +00:00
bfd5630e21
programs: sandbox: omit media dirs by default, and implement --sane-sandbox-autodetect for programs which are liable to load data from paths
2024-01-23 15:48:12 +00:00
026f5dee4d
programs: g4music: sandbox with bwrap
2024-01-23 15:06:45 +00:00
b59be8338a
firefox: fix up sandboxing of ssh/sops
2024-01-23 14:57:57 +00:00
ab4bbc2224
programs: remove explicit firejail installation; let sane.programs decide when to install it sys-wide
2024-01-23 14:57:33 +00:00
156fcd1bf2
aerc: enable bwrap sandbox
2024-01-23 14:57:33 +00:00
bb63a594ab
conky: fixup needed paths for bwrap
2024-01-23 14:57:33 +00:00
f148334b58
programs: port extraFirejailConfig to extraConfig
2024-01-23 14:57:33 +00:00
da537ea8ea
fractal: switch from firejail -> bwrap
2024-01-23 14:13:09 +00:00
18d224dc34
dino: switch from firejail to bwrap
2024-01-23 14:12:52 +00:00
38fd171713
spotify: sandbox with bwrap instead of firejail
2024-01-23 12:12:56 +00:00
84c78d9256
conky: sandbox with bwrap instead of firejail
2024-01-23 12:11:22 +00:00
973203d85e
programs: mpv: sandbox with bwrap instead of firejail
2024-01-23 11:37:37 +00:00
f9174dd2aa
programs: firefox: sandbox with bwrap instead of firejail
2024-01-23 11:37:19 +00:00
0bed4d0ada
mpv: disable firejail sandboxing (it fails on moby)
2024-01-23 01:01:21 +00:00
f3e8af3fdb
doc: libreoffice: mention "still" v.s. "fresh" variants
2024-01-23 01:00:34 +00:00
af542ec05f
docs: gnome-keyring: point out that system gnome-keyring doesn't inherit my sandboxing
2024-01-23 01:00:06 +00:00
399a1d2052
steam: use wrapped package as system steam
2024-01-23 00:59:23 +00:00
bb6e5611d4
docs: conky: point out that un-sandboxed conky is used by sxmo-utils
2024-01-23 00:58:56 +00:00
c11f5a1401
wireshark: fix security.wrappers when wireshark is disabled
2024-01-22 23:58:04 +00:00
5b220f3fec
wireshark: enable firejail isolation
2024-01-22 13:12:10 +00:00
df861a3ef0
programs: firejail: inject custom firejail config through /etc/firejail
...
this improves rebuild times, and makes it easier for packages to inject their own free-form config
2024-01-22 11:12:18 +00:00
d6754b6cac
evince: sandbox with firejail
2024-01-22 10:20:29 +00:00
b03d7f7fb0
geary: test the firejail profile; it's not ready
2024-01-22 10:04:18 +00:00
008b186479
audacity: test the firejail profile; it's not ready
2024-01-22 10:04:03 +00:00
914f9b3703
vlc: sandbox with firejail
2024-01-22 09:47:24 +00:00
ed7ec4a371
conky: sandbox with firejail
2024-01-22 09:31:00 +00:00
2d338201a5
signal-desktop: sandbox with firejail
...
TODO: fix URL opening / xdg-open
2024-01-22 09:30:34 +00:00
a8aad1f98f
dino: sandbox with firejail
...
TODO: fix URL opening / xdg-open
2024-01-22 09:30:13 +00:00
2d06b93118
fractal: sandbox with firejail
...
TODO: seems this broke link opening? (xdg-open?)
2024-01-22 09:28:50 +00:00
60547204a8
sane.programs: firejail: support wrapping "runCommand" packages
2024-01-22 09:16:25 +00:00
3d763a0021
tor-browser-bundle-bin -> tor-browser
...
upstream nixpgs just has tor-browser-bundle-bin as an alias for tor-browser
2024-01-22 08:13:37 +00:00
0f3f0933b1
mpv: sandbox with firejail
2024-01-22 03:50:28 +00:00
f8440e3811
go2tv: allow more ports through the firewall
2024-01-22 03:50:04 +00:00
9ecd0adcbe
firefox: sandbox with firejail
...
TODO: get it so open-in-mpv launches an mpv that has access to ~/.config/mpv
i guess this is the 'firejail url problem'
2024-01-21 23:59:15 +00:00
cf475c4696
nicotine-plus: remove distro-specific symlink
2024-01-21 03:56:33 +00:00
59187a0ec0
programs: allow running binaries in a netns-style firejail
2024-01-20 11:11:12 +00:00
f43d6bff92
route VPN traffic such that i can configure any app to selectively use the VPN
...
e.g. firejail --net=br-ovpnd-us-mi --noprofile --dns=46.227.67.134 getent ahostsv4 uninsane.org
2024-01-19 09:54:01 +00:00
34bcdb5128
firefox: disable kinetic scrolling
2024-01-14 20:34:14 +00:00
aebd11ea82
alacritty: port config: yaml to toml
2024-01-12 03:24:55 +00:00
4ce93f74c6
wob: add debug logging
2024-01-04 17:07:47 +00:00
09b806d7a7
go2tv: document youtube workarounds
2024-01-04 16:26:25 +00:00
ca3f97ec51
docs: go2tv: elaborate seeking limitations
2024-01-04 16:25:49 +00:00
daf046861c
wob: implement as part of sway instead of exclusive to sxmo
2024-01-04 13:08:20 +00:00
22f5853741
firefox: remove unused functions
2024-01-03 14:59:59 +00:00
fe217f6667
firefox: disable ctrl+shift+c shortcut more broadly
2024-01-03 14:59:27 +00:00
75b649543a
firefox: enable ctrl-shift-c-should-copy extension
2024-01-03 13:42:58 +00:00
041855dbc7
zsh: fix broken <del> and <ctrl>+<arrow> keybindings
2024-01-03 13:07:29 +00:00
6471524f4a
programs: zecwallet-lite: move to own file
2024-01-01 15:17:51 +00:00
8d0707699c
mpv/vlc: associate with flv video type
2024-01-01 11:48:18 +00:00
f9361af41c
go2tv: remove firewall fix and allow SSDP at the iptables layer
2023-12-30 06:16:17 +00:00
b0ddb1b31c
conky: use the same percent symbol even in battery_estimate
2023-12-28 17:43:34 +00:00
70ee98736a
conky/battery_estimate: handle the static state better
2023-12-28 17:35:33 +00:00
5de06cef35
conky: fix text substitutions
2023-12-28 17:07:29 +00:00
4f3706622c
conky/battery_estimate: render stylized
2023-12-28 03:05:27 +00:00
104e76de47
conky/battery_estimate: render h/m indicators as superscript
2023-12-28 01:53:43 +00:00
1df99978bb
conky/battery_estimte: select icon based on battery percentage
2023-12-28 01:11:51 +00:00
3846322f12
conky/battery_estimate: support new-style Thinkpad batteries
2023-12-28 00:41:23 +00:00
623b2c6611
conky/battery_estimate: add debugging
2023-12-28 00:35:48 +00:00
cb4d73f959
nixpkgs: 2023-12-23 -> 2023-12-26
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/2125288b9266cde9e3333a6787525bc151918742' (2023-12-23)
→ 'github:nixos/nixpkgs/0db7618e46243d3710ff2b8040aca5f6e0102900' (2023-12-26)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/d8aba6fe4067abdd8b1a7f398f2b90f21c608530' (2023-12-23)
→ 'github:nixos/nixpkgs/d956588517edbcde71781bd8ac3a9947a9fc55a6' (2023-12-26)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/f7db64b88dabc95e4f7bee20455f418e7ab805d4' (2023-12-18)
→ 'github:Mic92/sops-nix/e523e89763ff45f0a6cf15bcb1092636b1da9ed3' (2023-12-24)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/a19a71d1ee93226fd71984359552affbc1cd3dc3' (2023-12-17)
→ 'github:NixOS/nixpkgs/7790e078f8979a9fcd543f9a47427eeaba38f268' (2023-12-23)
```
2023-12-27 00:34:48 +00:00
dbb6773634
audacity: disable first-run splashscreen
2023-12-21 04:08:05 +00:00
245a0544bc
audacity: ship w/o the webkitgtk dependency
2023-12-21 03:10:38 +00:00
b6a45656af
gui: add planify app
2023-12-19 22:31:14 +00:00
fd0f709d50
git: remove a/ b/ prefixes from diffs
2023-12-17 20:48:31 +00:00
b2bf9d63a3
mpv: don't assume xdg-terminal-exec is on PATH
2023-12-16 00:43:43 +00:00
bcac00d766
mpv: uosc: add a "cast" option to the menu
2023-12-16 00:39:36 +00:00
c256d7ded5
koreader: implement copy-to-clipboard
2023-12-15 20:53:04 +00:00
7ba39ea831
koreader: document how to configure
2023-12-15 20:05:06 +00:00
a933f8b512
delfin: persist server settings
2023-12-15 08:17:07 +00:00
ef8a8bc246
go2tv: document known-good format matrix
2023-12-15 03:22:03 +00:00
136ddda055
nautilus: enable the A/V pane
2023-12-15 02:57:25 +00:00
ba7bc3bd03
go2tv: docs: show that some mp4s work w/o transcoding
2023-12-15 02:32:44 +00:00
311412c5ee
go2tv: configure firewall as needed
2023-12-15 00:50:58 +00:00
54d2e875f6
koreader: disable image-based feeds; text only
2023-12-14 20:51:09 +00:00
c5cc0e90a3
wob: theme
2023-12-14 20:49:48 +00:00
f763448d6f
go2tv: docs: firewall
2023-12-14 10:56:07 +00:00
deb828e98a
programs: enable go2tv
2023-12-14 10:39:33 +00:00
ac22e07388
sxmo: bring wob service in-house
2023-12-14 10:33:33 +00:00
cb0d9e077b
programs: enable catt
2023-12-14 08:41:16 +00:00
58105e9b62
fix open-in-mpv extension
2023-12-14 07:26:50 +00:00
32fb79d43d
dino: auto-start
2023-12-14 01:57:32 +00:00
f129afdae8
flare-signal: document linking/registration issue
2023-12-14 01:56:54 +00:00
29cde5e724
firefox: support Element and Nheko URIs
2023-12-13 23:14:04 +00:00
540b3e4af2
firefox: auto-dispatch mpv:// URI handlers
2023-12-13 21:41:06 +00:00
e0211646b2
firefox: extraNativeMessagingHosts -> nativeMessagingHosts
2023-12-13 21:34:59 +00:00
94dcb0f08a
firefox: ship open-in-mpv extension
2023-12-13 21:34:34 +00:00
0b38ed2f2a
firefox: docs: clarify fxCast behavior
2023-12-13 20:58:45 +00:00
15622251ef
firefox: define the fx_cast addon
2023-12-13 20:51:57 +00:00
508257da87
newsflash: enable podcasts/videos; document
2023-12-13 03:45:07 +00:00
fadcf7d7c1
mpv: youtube: associate with another URL variant
2023-12-13 03:44:57 +00:00
7f43360120
newsflash: enable
2023-12-13 03:06:08 +00:00
1119726c64
docs: koreader: dictionary installation
2023-12-12 20:56:46 +00:00
d2012b4e40
notejot: fix store typo
2023-12-12 07:55:18 +00:00
a669c9c88b
gui: add Loupe image viewer specialization
2023-12-12 07:36:21 +00:00
8391e500c9
gui: handheld: ship notejot
2023-12-12 07:31:00 +00:00
688b4edf13
mpv: handle shorthand youtu.be URLs too
2023-12-11 16:19:51 +00:00
ad82bb2630
mimeo: fix infinite loop when dispatching non-specialized http/s URLs
2023-12-11 04:52:49 +00:00
008a6192d4
mpv: associate with https://youtube.com/ ...
2023-12-11 04:52:49 +00:00
9e2c0a7112
megapixels: simplify zbar fix
2023-12-11 03:27:29 +00:00
abbd28a634
git: add an "amend" alias
2023-12-10 17:01:58 +00:00
255da2b976
docs: gtkcord4: explain how to disable notif sounds
2023-12-10 16:26:26 +00:00
8cdb4aa53d
docs: feedbackd: show how to trigger a sound
2023-12-10 16:25:13 +00:00
4d5b462b2c
swaync: add rules to help with debugging
2023-12-10 16:18:55 +00:00
e0d9a59d10
nixpkgs: 2023-12-09 -> 2023-12-10
...
```
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/61b691834e5ce9590c44690e73392ee7e001d45a' (2023-12-09)
→ 'github:nixos/nixpkgs/852e0ea0e8e1bd174bf1af9706f6b855319a5f1d' (2023-12-10)
```
2023-12-10 02:13:59 +00:00
7ce3cb79c9
switch from abaddon -> gtkcord4 as default discord client
2023-12-09 16:45:40 +00:00
4c553b1525
gtkcord4: fix to Default_keyring instead of login.keyring
2023-12-09 16:42:27 +00:00
366a9cea0d
fractal: ship optimized build
2023-12-07 16:39:36 +00:00
9704dcc997
feeds: add support for video; subscribe to videos in gpodder
2023-12-06 15:36:05 +00:00
7ff259073e
swaync: decrease mpris icon size 64 -> 48px
2023-12-05 17:01:57 +00:00
2bf10c60ee
swaynotificationcenter: fix mpris icon height even when it fails to load an icon
2023-12-05 16:57:24 +00:00
b061aff76e
IOCTL_... errrors: track mesa 23.3.1 PR which SHOULD fix them?
2023-12-04 11:07:59 +00:00
aa46c4cb8f
chatty: remove redundant evolution-data-server override: its done in overlays/preferences.nix
2023-12-04 02:09:52 +00:00
9e51d7f150
sane-wipe-*: consolidate into one sane-wipe binary
2023-12-03 14:25:35 +00:00
0c0e7881b1
signal-desktop: document a known bug
2023-12-03 13:58:30 +00:00
c687d059c5
signal-desktop: support wayland even when running as a service
2023-12-03 13:00:29 +00:00
8772aaec65
zfs: dont ship on moby
2023-12-03 00:58:49 +00:00
a9f932408c
servo: add zfs dataset
2023-12-02 17:38:00 +00:00
936118b8cb
sane-tag-music: init
2023-11-29 12:29:58 +00:00
c100f55f1c
mpv: associate with opus mimetype
2023-11-29 01:14:15 +00:00
8eb83bb283
sane-ssl-dump: remove
...
i never used it
2023-11-28 09:12:39 +00:00
4d2fecec13
geary: add my other email account
2023-11-27 07:56:26 +00:00
dcb74234a6
wine: persist pb powerbomber
2023-11-26 12:18:08 +00:00
5528b6d87d
games: ship wine
...
launch games with `wine some-game.exe`
2023-11-26 09:20:48 +00:00
1d38aa62de
fractal: persist the new(est) state dir
...
hope it stops moving around soon lol
2023-11-25 08:57:50 +00:00
4c4a8a0897
neovim: port to wrapNeovimUnstable
2023-11-25 05:02:48 +00:00
10aea555dd
neovim: simplify implementation
2023-11-25 04:46:24 +00:00
8f526cd2b5
tuba: remove workaround (fixed via gnome 45 update)
2023-11-24 21:41:07 +00:00
6382ac22cb
zsh: new alias to aid cloning an OS package
2023-11-24 21:40:16 +00:00
e1845d37da
zsh: order aliases alphabetically
2023-11-24 21:39:52 +00:00
9ccbfd8bf0
sane-clone: init
...
script to "git clone" a nix packages source code
2023-11-24 21:29:15 +00:00
9343447c03
nixpkgs: 2023-11-19 -> 2023-11-21
...
switch to `master` branch for the GNOME changes
```
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/e4ad989506ec7d71f7302cc3067abd82730a4beb' (2023-11-19)
→ 'github:nixos/nixpkgs/72edcc748a92377d0568c9536ece114dbabb948c' (2023-11-21)
```
2023-11-22 00:00:52 +00:00
fc2bf35588
sway-autoscaler: tune gnome-maps scale
2023-11-21 08:59:34 +00:00
fdc9df6b91
sway-autoscaler: cleanup
2023-11-21 08:25:01 +00:00
d294be9f35
sxmo: auto-scale the environment to accomodate non-mobile-friendly apps
...
this is hacky, but it hopefully makes gnome-maps usable, quickly.
an alternative fix would be to theme gnome-maps.
it's likely also that it becomes more mobile-friendly in the gnome 45
release.
2023-11-21 08:14:52 +00:00
98ea4d2dfe
abaddon: depend on gnome-keyring
2023-11-21 06:05:52 +00:00
6a950b4e97
abaddon: integrate with swaync services buttons
2023-11-21 03:32:59 +00:00
70292e4f8e
abaddon: dont show the "view members" pane, by default
2023-11-21 03:06:58 +00:00
61d5b9f048
abaddon: disable platform override (upstream has merged support for aarch64)
2023-11-21 00:37:02 +00:00
c5c86c3964
abaddon: configure for autoconnect
2023-11-21 00:36:43 +00:00
f8899aada0
sane.programs.animatch: move to own file
2023-11-19 23:58:00 +00:00
256c85ba5c
abaddon: refer to upstream PR for platforms fix
2023-11-19 03:24:46 +00:00
5e484719c2
swaync: sound alerts for abaddon (discord)
2023-11-19 03:14:22 +00:00
1f8886684f
ship abaddon discord client
2023-11-19 02:37:51 +00:00
97ec517a1e
conky: battery_estimate: fix formatting
2023-11-19 01:51:15 +00:00
2fccaf684c
conky: show battery on lappy, and not on desko
2023-11-19 01:50:14 +00:00
7a1af6ee5c
firefox: mark as *not* slow to build
...
this ensures it's always in the base desktop build. otherwise, i never build any browser for desko-light
2023-11-18 23:00:40 +00:00
0893c90c51
refactor how i decide which programs go on which machine (leverage "roles" like pc and handheld)
2023-11-18 22:56:53 +00:00
91c2f6fc95
implement sane.programs.slowToBuild and {moby,desko,lappy}-light targets
...
i'm not sure this is the exact right abstraction, but it's a starting point
2023-11-18 22:06:42 +00:00
3ad6a15f56
firefox: reduce scrollbar size :-(
2023-11-18 22:06:34 +00:00
12adb9f10a
element-desktop: use electron-bin instead of from-source electron
2023-11-18 22:06:30 +00:00
57a47da12c
swaync: audibly notify on gtkcord4 notification
2023-11-18 19:19:33 +00:00
2f320db5e2
gtkcord4: add swaync icon and user service
2023-11-17 09:18:14 +00:00
caf95675d6
packages: persist data for unofficial discord clients
2023-11-17 08:26:36 +00:00
b23281e9dc
swaync: make the service buttons more compact
2023-11-17 04:06:26 +00:00
850354b7d7
integrate Signal into swaync and sway/autostart
2023-11-17 04:05:59 +00:00
d85dbf1d33
animatch: correctly persist progress (?)
2023-11-17 01:24:04 +00:00
93ea668db3
install more desktop games
2023-11-17 00:13:34 +00:00
5f426b3efd
ship vvvvvv game
2023-11-16 20:50:40 +00:00
13dda2e533
programs: ship animatch
2023-11-16 00:36:31 +00:00
bb810ac75a
signal-desktop: fix directory persistence
2023-11-15 23:07:25 +00:00
dfe724ff52
shattered-pixel-dungeon: persist save file
2023-11-15 05:53:14 +00:00
1da78d093f
ship gnome-2048 game
2023-11-14 03:36:15 +00:00
214f24805e
swaync: disable vpn::hn action
2023-11-14 01:31:30 +00:00
37f6c9c3bf
swaync: improve service icons slightly more
2023-11-14 00:46:39 +00:00
c0ba6dc9f5
swaync: change GPS icon to an actual icon
2023-11-14 00:39:24 +00:00
92159f2a3d
dino: simplify service description
2023-11-14 00:39:24 +00:00
3855fb5eb6
geary: integrate with swaync and auto-start
2023-11-14 00:39:24 +00:00
48b6045ba3
gui: ship superTux, superTuxKart
2023-11-14 00:39:24 +00:00
53df000ba6
zsh: increase history size
2023-11-12 22:16:33 +00:00
1f0f84f2f0
programs: add dialect, spot, wike, xq
2023-11-10 19:29:43 +00:00
5630b6d8d7
swaync: fix build (github patch changed)
2023-11-08 21:56:46 +00:00
df9ffcb7b1
zsh: auto-detect guiIntegrations feature
2023-11-08 15:33:15 +00:00
28d4a4b065
persistence: move stores behind a byStore attr to support disabling persistence altogether (for e.g. rescue image)
2023-11-08 15:33:15 +00:00
7c5f5bd604
programs: add nvme, e2fsprogs to sysadminTools
2023-11-08 14:36:27 +00:00
18a7598f62
programs: xdg-terminal-exec: move to gui programs
2023-11-08 11:31:49 +00:00
4d3e482174
zsh: remove vteIntegration from rescue image
2023-11-08 11:26:55 +00:00
e1a8c94ab9
programs: ship ddrescue
2023-11-06 23:57:48 +00:00
f6eadd3696
devPkgs: add requests to python
2023-11-05 20:02:40 +00:00
ed0528fafa
firefox: enable oversized scrollbars
2023-11-01 04:32:59 +00:00
68de71084b
flare-signal: leave more notes; disable
2023-10-31 07:57:30 +00:00
713bbffd7d
new script: sane-wipe-flare
2023-10-31 06:54:53 +00:00
626fe1946d
flare-signal: get a better cross-compiled build (via emulation)
2023-10-31 01:33:42 +00:00
6d8f9edfd0
flare-signal: document problems
2023-10-30 14:02:24 +00:00
745362e05e
ship flare-signal on all GUI platforms
2023-10-30 11:02:51 +00:00
55680b68b2
configure new program: flare (Signal GTK4 client)
2023-10-30 04:40:55 +00:00
b3f5bf4e80
koreader: disable isConnected patch
2023-10-30 01:52:47 +00:00
462f9d3ab3
swaync: tune style and add 5g toggle to moby
2023-10-28 11:43:26 +00:00
85421f82c1
koreader: add a symlink for easier RSS browsing
2023-10-28 01:49:16 +00:00
84ad85a81e
mpv: types.string -> types.str
2023-10-24 13:07:16 +00:00
30486f4b4e
geary: fix a typo
2023-10-24 10:29:40 +00:00
69ac75131c
apps: add geary
2023-10-24 04:50:31 +00:00
501e79006c
new script: sane-wipe-fractal
2023-10-24 00:41:05 +00:00
a225b7e5f5
mpv: switch to wlshm vo backend on moby; default for desko
2023-10-23 08:36:43 +00:00
e7768572e5
fractal: update docs for fixing broken cache
2023-10-22 23:21:35 +00:00
5607bae49b
devPkgs: add lua
2023-10-20 23:07:02 +00:00
f58bfb3c42
fractal: document a state corruption bug/fix
2023-10-18 22:16:28 +00:00
8dc7eff545
epiphany: mention WEBKIT_USE_SINGLE_WEB_PROCESS envvar
2023-10-17 22:42:15 +00:00
8859b4cf8a
programs: persist data better for spotify, brave, tor
2023-10-16 19:18:47 +00:00
233faaadac
zsh: better l/ll aliases with eza
2023-10-12 22:11:05 +00:00
aaf9dbac1e
ship gdb, mercurial
2023-10-12 01:59:28 +00:00
8dc1cbbbd2
programs: ship binutils-unwrapped instead of binutils
...
it has better cross compilation properties
2023-10-11 22:15:28 +00:00
8b4a0a916b
noop: test but dont actually enable pre-emption
2023-10-11 10:08:11 +00:00
28a2042664
gPodder: store data in ~/.local/share/gPodder, not ~/gPodder
2023-10-11 05:14:20 +00:00
9a69d8bd0d
ship eza (ls substitute)
2023-10-10 22:08:58 +00:00
1ffaa232d8
sxmo: bemenu: configure via package override, not profile
...
this is just easier to integrate, rather than ensuring everywhere gets
the env var
2023-10-09 00:25:03 +00:00
1f73573fe3
stepmania: include link to nix definition in the game dir
2023-10-08 02:41:00 +00:00
4a498ef1a9
dino: docs: leave myself a TODO about niceness/priority
2023-10-07 08:27:35 +00:00
7a75cad65f
Dino: bump input latency to 20ms
2023-10-07 08:09:50 +00:00
168fcce157
stepmania: configure directories
2023-10-07 05:50:58 +00:00
56838a4867
swaync: don't show GPS on non-gps-enabled devices (i.e. desktop/laptop)
2023-10-07 04:14:42 +00:00
d35fe126e3
doc: dino: document findings in adjusting Dino mic buffer
2023-10-07 01:30:45 +00:00
98a6671e95
moby: decrease the amount of samples Dino drops while in a call
2023-10-07 00:58:11 +00:00
2de6c01262
fractal: launch on boot
2023-10-02 06:12:24 +00:00
290d6a8da5
gnome-maps: ship on lappy/desko/moby
2023-10-02 04:07:21 +00:00
bc7dee6a80
swaync: enable audible notifications for Fractal Matrix client
2023-10-02 03:48:20 +00:00
cc16fe85b0
fractal: ship the nixified build by default
2023-10-02 03:20:55 +00:00
97dd84ed71
tuba: document an alternative fix
2023-10-01 18:47:47 +00:00
b9f31c6f4b
devPkgs: add cargo, rustc
2023-10-01 03:47:45 +00:00
cb3cf57465
cargo: when enabled, persist ~/.cargo
2023-09-30 02:57:30 +00:00
d3818b5e44
fractal: enable, and persist the right directories
2023-09-29 22:08:13 +00:00
d2890ecbba
ntfy-sh: dont autostart except on moby
...
it's easier to troubleshoot when there's only one subscriber...
2023-09-26 14:48:54 +00:00
36d8158414
zsh: alias annoying lsof/tcpdump defaults
2023-09-26 14:38:06 +00:00
642afd6f34
ntfy: subscribe to the non-443 port
2023-09-26 13:52:10 +00:00
8821c4edd7
sxmo-timer: connect to swaync so that it alerts on completion
2023-09-25 20:56:22 +00:00
14bc8a1732
ship a trivial service which subscribes to push notifications (ntfy-sh)
2023-09-25 16:56:41 +00:00
2600d6223c
tuba: fix FileDialog
2023-09-24 23:36:05 +00:00
1ed1d8403d
tuba: ship a friendly alias
2023-09-24 21:38:20 +00:00
9f47a29b43
mpv: update watch_later dir
...
see: <https://github.com/mpv-player/mpv/pull/10838 >
2023-09-24 13:15:45 +00:00
08acd9714f
swaync: fix perms for jingle toggle
2023-09-22 23:10:50 +00:00
e28cf3ebb5
swaync: fix SIP/jingle indicators to use systemctl --user
2023-09-21 20:37:11 +00:00
4ea0256c56
swaync: ignore "Modem crashed!" notifications/warnings
2023-09-21 20:21:38 +00:00
6de9b87f16
swaync: add entry for SIP/jingle call receiving
2023-09-21 19:53:02 +00:00
2b48adfbef
gnome-calls: don't auto-start
2023-09-21 19:44:11 +00:00
7f944ad4a1
dino: autostart (on moby)
2023-09-21 19:40:12 +00:00
b98934693c
programs: ship binutils (for "strings")
2023-09-20 06:42:23 +00:00
dfbe5c5210
swaync: add a button to toggle VPN
2023-09-19 16:25:17 +00:00
3a30b891be
sane-vpn-{up,down}: consolidate
2023-09-19 15:41:54 +00:00
072506c5d9
ship ethtool
2023-09-19 10:09:24 +00:00
0342594728
programs: ship iw
2023-09-19 10:09:24 +00:00
f4c0e06b62
docs: gnome-calls: mention ~/.cache/folks dir
2023-09-17 05:57:21 +00:00
b4d748d87f
gnome-calls: run as daemon after log-on
2023-09-17 05:53:05 +00:00
107c07915e
ship gnome-calls
2023-09-17 05:00:15 +00:00
61428a5c8b
unify fonts across sway and sxmo
2023-09-16 14:59:12 +00:00
a79d021123
font-manager: build without webkit
2023-09-16 12:44:09 +00:00
09cee559eb
mpv: improve MIME priority; re-enable youtube support
2023-09-16 08:36:08 +00:00
f64af6675b
p10k/powerlevel10k: remove (unused)
...
i use starship now
2023-09-16 08:33:02 +00:00
9d71a08841
kitty: remove configs (unused)
...
i use alacritty now
2023-09-16 08:26:39 +00:00
81c16ec479
swaync/feedbackd: activate ringer on incoming dino call
2023-09-16 05:06:41 +00:00