age
poetry2nix
Our great sponsors
age | poetry2nix | |
---|---|---|
213 | 21 | |
15,133 | 705 | |
- | 6.7% | |
5.5 | 9.7 | |
14 days ago | 2 days ago | |
Go | Nix | |
BSD 3-clause "New" or "Revised" License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
age
-
Joining ChatCraft.org
and echoing the result after converting to an age private key
-
What is the point of a public key fingerprint?
I like that https://github.com/FiloSottile/age has small public keys.
-
OpenPGP Forked into "LibrePGP" by GnuPG's Maintainer Werner Koch
> something fresh
It exists, it's called age..
Some random links
https://github.com/FiloSottile/age
https://www.reddit.com/r/crypto/comments/hr64hr/state_of_age...
https://github.com/FiloSottile/age/discussions/432
> (Acquiring keys, rotating keys, identifying compromised keys, and most importantly either reaches a large enough percentage of emails..
Oh nevermind, age doesn't do any of that. Indeed, it doesn't even do email https://github.com/FiloSottile/age/issues/93
-
An opinionated template for deploying a single k3s cluster with Ansible backed by Flux, SOPS, GitHub Actions, Renovate, Cilium, Cloudflare and more!
Encrypted secrets thanks to SOPS and Age
-
Prettier $20k Bounty was Claimed
I never heard of "Age" before this post. Thank you to share. If others are interested to learn more, here are two other interesting posts about Age:
-
Cosmopolitan Third Edition
of all things I was able to resolve the issue via this github issue: https://github.com/FiloSottile/age/issues/370#issuecomment-1...
-
Would you trust a repository made like this to save your secrets?
Why keep something secret on a public repo? Is that not an oxymoron?
Also, I’m terms of encryption something like age[0] makes it much easier to not shoot yourself in the foot.
-
Looking For Encryption App
Why RSA specifically? For backups, I recommend Tarsnap. But if you really don't want to pay for encrypted cloud hosting, then check out age encryption.
-
OpenSSL and a rookie (me)
I wouldn't use OpenSSL personally. If you just need simple but secure symmetric encryption, checkout the scrypt(1) encryption utility from Tarsnap. If you need support for public keys, check out age(1).
- What encryption program do you use for your vault backup and why?
poetry2nix
-
Things I've learned about building CLI tools in Python
How about converting it to Nix derivation?
-
As if there weren't enough packaging tools already: mitsuhiko/rye: an experimental alternative to poetry/pip/pipenv/venv/virtualenv/pdm/hatch/…
There's a project that does this with using Nix: https://github.com/takeda/nix-cde (this is a wrapper around https://github.com/nix-community/poetry2nix)
-
Setting up Stabe Diffusion on NixOS
A cleaner way might be to use https://github.com/nix-community/poetry2nix which can load poetry.lock inside Nix. I still need to try it for torch, but it does seem like a clean way to use it.
- Ask HN: Is anyone successfully self-hosting Firefox Sync?
-
How do I install dependencies for a python application
The README for poetry2nix (https://github.com/nix-community/poetry2nix) seems to indicate that all extras should be enabled by default.
-
how to install Python packages not yet in the Nix repo?
if it's for a project you're working on, i'd recommend just using poetry2nix
-
Nix: Taming Unix with Functional Programming
There are some sifferent/new tools for adding your own Python packages these days. It's still not truly solved, but one of these new package generation tools might serve your better:
poetry2nix: https://github.com/nix-community/poetry2nix
dream2nix: https://nix-community.github.io/dream2nix/guides/getting-sta...
mach-nix: https://github.com/DavHau/mach-nix
pip2nix: https://github.com/nix-community/pip2nix
pynixify: https://github.com/cript0nauta/pynixify
The tools available to you at the time (pypi2nix and maybe python2nix, if it was a long time ago) have been abandoned in favor of the newer tools, I think chiefly poetry2nix but I'm not sure.
There's still the Nixpkgs buildPythonPackage stuff, I think, if your goal is to upstream a lib into Nixpkgs. But if you just want to build your own Python applications and vendorize the deps (e.g., for work), you might try one of the tools above, which weren't available 3+ years ago. Maybe Nixy Python users and developers can reply with some of their experiences using those tools :)
- Switching from pyenv, rbenv, goenv and nvm to asdf – yujinyuz
-
Show HN: Jupyter kernel using Poetry for reproducible Python package management
Poetry2nix[1] is good for that. A lot of packages unfortunately require overrides to work, but poetry2nix ships with a bunch of these by default.
-
Ditch Your Version Manager
There are multiple ways of doing it. The obvious one (updating nixpkgs) you already mentioned.
Second way is to override[1], in documentation they are showing how to change compilation parameters, but you can also use this to change version of dependencies or source tarball for the package. As you use Nix you will eventually need to do it as sometimes package was not updated, or perhaps you need to use older version, or enable compilation option.
Third way is to use overlay[2]. In previous way an existing package was modified. Overlay allows to completely replace or add a new one.
For example there is a tool called poetry2nix[3], which on the fly translates python poetry lock file to Nix so nix can build them. Nixpkgs includes it and generally is frequently updated, but maybe there was a fix yesterday that hadn't made it there yet and it fixes an important bug. You can fetch that repo independently and attach it to nixpkgs (or you can use it directly).
Nix also has upcoming feature flakes which to my understanding takes this to a new level. So you can easily compose multiple repos like this in your application.
> Theres clearly more to Nix than just setting up language environments, which I'm guessing is where its usefuleness really kicks in. But purely for lang env set up, I'm not sure I see a point over other tooling...
I use it this way and the killer feature for myself is that for a project all I need to have installed is Nix and I can have exact environment the dev used.
It's not mentioned often, but I think a demo of it would be the repo for Nix program[4]. Typically when you want to compile some open source program, after you check out the repo, a hunt starts for the building tools and libraries needed. With nix you just issue build command or enter build shell[5] and things just work with no errors (or at least I did not get them when trying it a while ago. Everything worked on first try).
[1] https://nixos.org/manual/nixpkgs/stable/#chap-overrides
[2] https://nixos.org/manual/nixpkgs/stable/#chap-overlays
[3] https://github.com/nix-community/poetry2nix
[4] https://github.com/nixos/nix
[5] https://hydra.nixos.org/build/153568733/download/1/manual/co...
What are some alternatives?
sops - Simple and flexible tool for managing secrets
mach-nix - Create highly reproducible python environments
Picocrypt - A very small, very simple, yet very secure encryption tool.
rage - A simple, secure and modern file encryption tool (and Rust library) with small explicit keys, no config options, and UNIX-style composability.
age-plugin-yubikey - YubiKey plugin for age
minisign - A dead simple tool to sign files and verify digital signatures.
OpenKeychain - OpenKeychain is an OpenPGP implementation for Android.
flake-utils-plus - Use Nix flakes without any fluff.
git-crypt - Transparent file encryption in git
gopass - The slightly more awesome standard unix password manager for teams
nixos-generators - Collection of image builders [maintainer=@Lassulus]
scrypt - The scrypt key derivation function was originally developed for use in the Tarsnap online backup system and is designed to be far more secure against hardware brute-force attacks than alternative functions such as PBKDF2 or bcrypt.