15f70019d5
feat: integrate rollback sentinel as NixOS module
...
Add rollback-sentinel NixOS module that:
- Deploys sentinel-check.sh (inline) and nixos-rollback.sh (from file) as
system packages
- Runs a boot-time systemd oneshot service after multi-user.target with
configurable delay — checks Tier-1 services, triggers rollback on failure
- Runs a post-rebuild service via activation script after every
nixos-rebuild switch
- Exposes options for tier1Services, tier2Services, tier3InfoServices,
bootDelay, rollbackMode (set-default/rollback-now/dry-run), and
enablePostRebuild
Module wired into flake.nix for lazyworkhorse and enabled in
configuration.nix with standard Tier-1/2 service lists and 120s delay.
2026-05-25 00:08:39 -04:00
e216c8edac
fix: update compose submodule - honcho embedding config fix + deriver in CMD
2026-05-23 18:54:54 -04:00
2b4b2e2216
fix: update compose submodule - honcho config fixes
2026-05-23 16:51:24 -04:00
6be4076372
fix: update compose submodule to fix honcho config corrupted values
2026-05-23 16:43:22 -04:00
690873d0e4
fix: update compose submodule for honcho auth + LLM config
2026-05-23 08:34:46 -04:00
cd817c7fd2
chore: update compose submodule (fix nginx permissions - run as root)
2026-05-23 01:21:31 -04:00
33d1d860fb
chore: update compose submodule (fix nginx permissions)
2026-05-23 00:31:46 -04:00
8d7afecb6e
chore: update compose submodule (merge Honcho+OpenConcho into single container)
2026-05-23 00:00:27 -04:00
6f18071198
chore: update compose submodule (expose Honcho via Traefik + fix VECTOR_STORE_DIMENSIONS)
2026-05-22 23:54:35 -04:00
b43c6794b3
chore: update compose submodule (fix VECTOR_STORE_DIMENSIONS empty value)
2026-05-22 23:52:24 -04:00
8b9a144254
fix: update compose submodule for Matrix bridge deps + persistent venv
...
Updates assets/compose submodule to 8adbbf0 (compose fix/matrix-bridge-deps).
Compose commit adds:
- uv pip install openai mautrix[encryption] to hermes entrypoint
- Persistent venv volume at /opt/hermes/.venv
- Empty-volume first-boot handling (venv recreation)
This ensures Matrix bridge dependencies survive container recreation.
2026-05-20 14:36:42 -04:00
db2bd1d157
feat: add uConsole CM5 host configuration with Reticulum mesh stack
...
- New NixOS host 'uConsole' for ClockworkPi CM5 portable terminal
- flake.nix: add nixos-uconsole and nixos-raspberrypi inputs
- Imports: nixos-uconsole.nixosModules.uconsole-cm5,
nixos-raspberrypi.nixosModules.raspberry-pi-5.base
- Full package list: base tools, HAM radio, SDR/RF, mesh/LoRa,
security tools, GPS/maps
- Reticulum stack (rns 1.2.9, lxmf 0.9.8, nomadnet 1.1.1) built
from PyPI via overlays/reticulum.nix
- systemd services: rnsd (Reticulum daemon), kismet (Wi-Fi IDS)
- Kernel modules for SDR (rtl-sdr, dvb) and USB WiFi
- Follows existing host config conventions (cyt-pi as template)
2026-05-20 14:34:15 -04:00
36359de6aa
Merge pull request 'feat: add Syncthing firewall port and update compose submodule' ( #47 ) from feat/syncthing-org-sync into master
...
Reviewed-on: #47
2026-05-19 00:34:42 +00:00
Robert
10b8565fd6
Merge branch 'master' into feat/syncthing-org-sync
2026-05-18 20:33:29 -04:00
Robert
f672696b8e
Update submodule for syncthing
2026-05-18 20:31:07 -04:00
0980dca455
fix: update compose submodule to Traefik-routed Syncthing
2026-05-14 21:40:12 -04:00
96bc20ab70
feat: add Syncthing firewall port and update compose submodule
2026-05-14 21:36:26 -04:00
670ae4f002
Merge pull request 'fix: update compose submodule — use ln -sf for iptables-nft' ( #46 ) from fix/vpn-iptables-nft-v3 into master
...
Reviewed-on: #46
2026-05-13 17:00:16 +00:00
f785abfd49
fix: update compose submodule — use ln -sf for iptables-nft
2026-05-13 12:59:04 -04:00
6f44aa7f76
Merge pull request 'fix: update compose submodule — remove apk add iptables-nft' ( #45 ) from fix/vpn-iptables-nft-v2 into master
...
Reviewed-on: #45
2026-05-13 16:49:39 +00:00
8d40f1691f
fix: update compose submodule — remove apk add iptables-nft
2026-05-13 12:49:14 -04:00
Robert
2dd2e64986
Merge remote-tracking branch 'origin/master'
2026-05-13 12:42:54 -04:00
Robert
23fc5e0597
Give a little more ssh room for tramp
2026-05-13 12:41:09 -04:00
0c9c33d735
Merge pull request 'fix: update wg-easy to official ghcr image with iptables-nft' ( #44 ) from fix/vpn-iptables-nft-upstream into master
...
Reviewed-on: #44
2026-05-13 16:39:56 +00:00
0bb6890f1c
chore: merge master into branch
2026-05-13 12:39:05 -04:00
9d5434425f
fix: update compose submodule for wg-easy iptables-nft fix
...
Updates the assets/compose submodule to point to the fix/vpn-iptables-nft-upstream
branch which contains:
- Switch FROM weejewel/wg-easy:latest (Alpine 3.11, stale 4yr) to
ghcr.io/wg-easy/wg-easy:latest (actively maintained, Alpine krypton)
- Use update-alternatives instead of raw ln -sf to flip iptables
from legacy to nftables backend
- Fix compose build context: ./vpn -> . (Dockerfile is at same level)
2026-05-13 12:30:47 -04:00
1fb4320dd1
Merge pull request 'feat: update compose submodule for custom tools startup' ( #43 ) from feat/update-compose-submodule-custom-tools into master
...
Reviewed-on: #43
2026-05-13 13:58:27 +00:00
51e9f47fd4
feat: update compose submodule for custom tools startup
2026-05-13 09:56:24 -04:00
06b3eb840f
fix: update compose submodule for wg-easy iptables-nft fix
2026-05-12 16:29:51 -04:00
28ab52209c
Merge pull request 'Add restricted AI worker access with deployment capabilities' ( #1 ) from ai-worker-restricted-access into master
...
Reviewed-on: #1
2026-05-11 00:48:29 +00:00
Robert
e6f7f0c263
Merge branch 'ai-worker-restricted-access' of ssh://code.lazyworkhorse.net:2222/gortium/infra into ai-worker-restricted-access
2026-05-10 18:06:46 -04:00
Robert
5c136e0765
Merge remote-tracking branch 'origin/master' into ai-worker-restricted-access
2026-05-10 17:06:58 -04:00
Robert
f722af7803
New ollama model creator module version
2026-05-10 16:56:09 -04:00
Robert
c07debf088
Added wireguard keys
2026-05-10 16:51:32 -04:00
6806898f04
feat: update compose submodule for ollama-gfx906 (v0.23.2) + add ollama Dockerfile
2026-05-10 10:12:34 -04:00
96e77c5ef2
Revert "feat: add ai-optimizer benchmark plan and state tracking for ollama GPU benchmarking"
...
This reverts commit ff7303cf6a
2026-05-09 20:19:26 +00:00
ff7303cf6a
feat: add ai-optimizer benchmark plan and state tracking for ollama GPU benchmarking
2026-05-09 20:13:08 +00:00
9e42f5d2cc
Merge pull request 'feat(hermes): update compose submodule for Piper TTS' ( #34 ) from feat/voice-support-v2 into master
...
Reviewed-on: #34
2026-05-09 19:40:05 +00:00
614883f3c3
fix: update compose submodule - startup permission fix for data volume
2026-05-09 16:04:39 +00:00
374d022593
fix: update compose submodule - permission fix for atomic writes
2026-05-09 15:50:42 +00:00
9679846cdb
feat: update compose submodule - Ryan high voice
2026-05-09 15:21:59 +00:00
4056f91ec6
fix: update compose submodule - remove patch step
2026-05-09 14:28:44 +00:00
1ba7d31d2f
fix: update compose submodule - patch path fix
2026-05-09 14:27:16 +00:00
c7e9f8a1e0
feat: update compose submodule for Norman voice
2026-05-09 14:20:55 +00:00
bbe1a4a850
fix: update compose submodule - ca-certificates
2026-05-09 14:15:01 +00:00
2b8316060c
fix: update compose submodule - COPY path fix
2026-05-09 14:12:15 +00:00
cc2c62faf7
fix: update compose submodule - Dockerfile heredoc fix
2026-05-09 14:09:59 +00:00
47f1ba6cf2
fix: update compose submodule - clean patch script
2026-05-09 13:59:17 +00:00
db89881d75
fix: update compose submodule for full OPENROUTER_API_KEY
2026-05-09 13:55:47 +00:00
0bb0a270e6
fix: update compose submodule for clean Piper Dockerfile
2026-05-09 13:42:02 +00:00
