The Nix build hook mechanism has been marked for removal since 2017, but it still fills an important gap in Nix's distributed build architecture. In...
Improve CVE - Derivation Matching Accuracy, Data Integrity, and Observability in the Nixpkgs Tracker
Darshan Thakare
This project focuses on improving the accuracy, reliability, and observability of the Nixpkgs Security Tracker by addressing key limitations in its...
NixOS vars
prescientmoon
NixOS vars allow declaring secrets that live inside (or outside) the nix store in a declarative manner. Vars already have a WIP implementation over...
Enrich Nixpkgs with correct PURLs for accurate SBOMs
Tanishq Palandurkar
NixOS is uniquely positioned to generate accurate, reproducible Software Bills of Materials (SBOMs) from its declarative build graph, yet current...
