aboutsummaryrefslogtreecommitdiffstatshomepage
Commit message (Expand)AuthorAgeFilesLines
* chore(nix): flake.lock update (home-manager, tuicr)HEADmasterLibravatar sommerfeld2 days1-6/+6
* feat(nix/common): expose run-clang-tidy missing from nixpkgs clang-toolsLibravatar sommerfeld2 days1-1/+21
* refactor(meta/nvidia): drop linux-headers (covered by base kernels)Libravatar sommerfeld2 days1-1/+0
* feat(kernel): swap stock linux for linux-lts as fallback kernelLibravatar sommerfeld2 days5-33/+46
* feat(etc/resolved): forward single-label queries upstreamLibravatar sommerfeld2 days1-0/+8
* refactor(eer): install external-editor-revived via nix on the hostLibravatar sommerfeld2 days4-19/+38
* refactor(flatpak): route mpv and thunderbird via flatpak; drop system pkgsLibravatar sommerfeld2 days10-23/+29
* chore(nix): flake.lock update (tuicr)Libravatar sommerfeld2 days1-3/+3
* chore(thunderbird): switch flatpak app id to org.mozilla.thunderbirdLibravatar sommerfeld2 days8-21/+21
* refactor(suspend): drop SSH session inhibit; AC rule handles itLibravatar sommerfeld2 days1-20/+0
* refactor(suspend): gate suspend on AC, drop bespoke zellij inhibitLibravatar sommerfeld2 days8-126/+33
* fix(suspend): make zellij inhibit watcher resilient to local-only sessionsLibravatar sommerfeld2 days2-15/+59
* feat(suspend): re-enable suspend on s2idle, drop diagnostic scaffoldingLibravatar sommerfeld2 days11-51/+36
* fix(suspend): switch hardened to s2idle, keep console alive, archive pstoreLibravatar sommerfeld2 days2-1/+2
* fix(suspend): load intel_lpss_pci from initramfs (Arch wiki touchpad fix)Libravatar sommerfeld2 days3-6/+5
* feat(suspend): hardened-only init_on_free=0 + hang-detection cmdlineLibravatar sommerfeld2 days4-2/+9
* feat(suspend): disable system suspend until hardened kernel resume issue is f...Libravatar sommerfeld2 days5-21/+47
* fix(suspend): only inhibit for SSH-spawned zellij sessionsLibravatar sommerfeld2 days3-13/+37
* fix(iwd): revert MAC randomization — broke DHCPLibravatar sommerfeld2 days1-23/+0
* feat(suspend): hold inhibit lock while any zellij session existsLibravatar sommerfeld2 days5-5/+65
* feat(zsh): inhibit suspend while an SSH session is activeLibravatar sommerfeld2 days1-0/+17
* feat(suspend): bounce snx-rs around system sleepLibravatar sommerfeld2 days2-0/+48
* feat(podman): switch rootless storage driver to btrfsLibravatar sommerfeld2 days4-4/+19
* fix(hardened): restore podman compatibility on linux-hardenedLibravatar sommerfeld2 days2-0/+8
* docs(bootstrap): also suggest fallback UKI EFI entriesLibravatar sommerfeld2 days1-1/+7
* Revert "refactor(boot): drop linux-hardened-fallback UKI"Libravatar sommerfeld2 days1-1/+4
* refactor(boot): drop linux-hardened-fallback UKILibravatar sommerfeld2 days1-4/+1
* docs(bootstrap): mention optional linux-hardened EFI entryLibravatar sommerfeld2 days1-0/+4
* feat(sandbox): bwrap wrappers for mpv, yt-dlp, streamlinkLibravatar sommerfeld2 days5-0/+75
* feat(boot): add linux-hardened as parallel UKILibravatar sommerfeld2 days2-0/+21
* feat(iwd): per-SSID MAC randomisationLibravatar sommerfeld2 days1-0/+23
* feat(polkit): restrict systemd + udisks system actions to active local sessionsLibravatar sommerfeld2 days2-0/+26
* feat(sysctl): kernel info-disclosure + ICMP/IPv6 RA hardeningLibravatar sommerfeld2 days1-1/+39
* chore(nix): flake.lock update (home-manager, nixpkgs, tuicr)Libravatar sommerfeld2 days1-9/+9
* fix(nix): tuicr switched to packages.${system}.default schemaLibravatar sommerfeld2 days1-3/+1
* fix(nftables): waydroid DHCP/DNS ingress, drop manual NAT tableLibravatar sommerfeld9 days1-19/+9
* fix(sway): disable shortcut inhibitor for waydroid windowsLibravatar sommerfeld9 days1-0/+1
* fix(nftables): add MASQUERADE for waydroid0Libravatar sommerfeld9 days1-3/+19
* Revert "fix(sysctl): enable net.ipv4.ip_forward for NAT bridges"Libravatar sommerfeld9 days1-5/+0
* fix(sysctl): enable net.ipv4.ip_forward for NAT bridgesLibravatar sommerfeld9 days1-0/+5
* fix(net): positive-match physical NICs into bond0Libravatar sommerfeld9 days1-14/+9
* fix(net): keep waydroid0 out of bond0, allow it through nftablesLibravatar sommerfeld9 days2-2/+10
* feat(tuicr): side-by-side diff, mouse, space leaderLibravatar sommerfeld10 days1-0/+3
* feat(tuicr): configure gruvbox-dark themeLibravatar sommerfeld10 days2-0/+4
* fix(ssh): make agent.sock symlink concurrent-connection-safeLibravatar sommerfeld10 days2-13/+32
* feat(zsh): recover Arch site-functions + HELPDIR after removing system zshLibravatar sommerfeld10 days1-3/+18
* fix(nix,zsh): tuicr flake schema + restore XDG_DATA_DIRSLibravatar sommerfeld10 days3-2/+132
* fix(sway): propagate PATH / GPG env into systemd --user + dbusLibravatar sommerfeld10 days1-2/+11
* fix(ssh): stabilise forwarded ssh-agent socket across reconnectsLibravatar sommerfeld10 days2-3/+40
* docs(rules): document nix/vm.nix symlink invariantLibravatar sommerfeld10 days1-0/+11
generated by cgit v1.3.1 (git 2.54.0) at 2026-05-31 22:06:13 +0000