Revert "fix: update compose submodule — hermes-workspace HOST fix"

This reverts commit 8025607a53.
fix: update compose submodule — hermes-workspace HOST fix
2026-05-20 14:10:11 -04:00 · 2026-05-20 14:08:08 -04:00 · 2026-05-20 14:06:56 -04:00 · 2026-05-20 14:06:32 -04:00 · 2026-05-20 14:05:58 -04:00 · 2026-05-20 14:05:44 -04:00
5 changed files with 8 additions and 2 deletions
--- a/assets/compose
+++ b/assets/compose
--- a/hosts/lazyworkhorse/configuration.nix
+++ b/hosts/lazyworkhorse/configuration.nix
@@ -207,6 +207,7 @@
    ai = {
      path = self + "/assets/compose/ai";
      envFile = config.age.secrets.containers_env.path;
+      ports = [ 22000 ];  # Syncthing TCP sync
    };

    cloudstorage = {
@@ -474,7 +475,7 @@
  services.openssh.settings = {
    PermitRootLogin = "no";
    MaxAuthTries = 3;
-    MaxSessions = 10;
+    MaxSessions = 20;
    LoginGraceTime = 30;
    ClientAliveInterval = 300;
    ClientAliveCountMax = 2;
--- a/lib/keys.nix
+++ b/lib/keys.nix
@@ -9,6 +9,10 @@
    ai-worker = {
      main = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAXeGtPPcsP2IYRQNvII41NVWhJsarEk8c4qxs/a5sXf";
    };
+
+    hermes_agent = {
+      age = "age178ypgaxn3fldh2aeqz37ncpk7jrplaxacrca8kkcycre3ahjef4s2dp3rp";
+    };
  };

  hosts = {
--- a/secrets/containers.env.age
+++ b/secrets/containers.env.age
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -4,6 +4,7 @@ let
    keys.users.gortium.main
    keys.hosts.lazyworkhorse.main
    keys.hosts.lazyworkhorse.bootstrap
+    keys.users.hermes_agent.age
  ];
 in
 {
Author	SHA1	Message	Date
Hermes	ff129019e0	Revert "fix: update compose submodule — hermes-workspace HOST fix" This reverts commit `8025607a53`.	2026-05-20 14:10:11 -04:00
Hermes	8025607a53	fix: update compose submodule — hermes-workspace HOST fix	2026-05-20 14:08:08 -04:00
Hermes	a322ed0884	feat(secrets): add HERMES_WORKSPACE_PASSWORD to containers.env	2026-05-20 14:06:56 -04:00
Hermes	68b7c40a9e	fix(compose): update submodule to fix/hermes-build (dashboard + auth)	2026-05-20 14:06:32 -04:00
Hermes	146c164c91	fix: update compose submodule — hermes-workspace HOST fix and entrypoint improvements	2026-05-20 14:05:58 -04:00
Hermes	8e896e4c0d	Revert "fix(compose): update compose submodule to feat/hermes-workspace-combined (dashboard + auth)" This reverts commit `1898f39d24`.	2026-05-20 14:05:44 -04:00
Hermes	1898f39d24	fix(compose): update compose submodule to feat/hermes-workspace-combined (dashboard + auth)	2026-05-20 14:04:23 -04:00
Hermes	c7a0a4dae4	Revert "feat(hermes): update compose submodule — drop fork overlay for v0.12.0 kanban" This reverts commit `b85513ade2`.	2026-05-19 21:29:53 -04:00
Hermes	b85513ade2	feat(hermes): update compose submodule — drop fork overlay for v0.12.0 kanban	2026-05-19 21:23:13 -04:00
Hermes	d064bfb770	feat: add combined Hermes Workspace image with Swarm support - Update compose submodule to feat/hermes-workspace-combined - New ai/hermes-workspace/ Dockerfile combining our Hermes fork + workspace web UI + tmux (Swarm workers) - Hermes dashboard enabled on port 9119 - Existing hermes/ Dockerfile preserved as fallback	2026-05-19 20:50:15 -04:00
Thierry Pouplier	36359de6aa	Merge pull request 'feat: add Syncthing firewall port and update compose submodule' (#47 ) from feat/syncthing-org-sync into master Reviewed-on: #47	2026-05-19 00:34:42 +00:00
Robert	10b8565fd6	Merge branch 'master' into feat/syncthing-org-sync	2026-05-18 20:33:29 -04:00
Robert	f672696b8e	Update submodule for syncthing	2026-05-18 20:31:07 -04:00
Hermes	0980dca455	fix: update compose submodule to Traefik-routed Syncthing	2026-05-14 21:40:12 -04:00
Hermes	96bc20ab70	feat: add Syncthing firewall port and update compose submodule	2026-05-14 21:36:26 -04:00
Thierry Pouplier	670ae4f002	Merge pull request 'fix: update compose submodule — use ln -sf for iptables-nft' (#46 ) from fix/vpn-iptables-nft-v3 into master Reviewed-on: #46	2026-05-13 17:00:16 +00:00
Hermes	f785abfd49	fix: update compose submodule — use ln -sf for iptables-nft	2026-05-13 12:59:04 -04:00
Thierry Pouplier	6f44aa7f76	Merge pull request 'fix: update compose submodule — remove apk add iptables-nft' (#45 ) from fix/vpn-iptables-nft-v2 into master Reviewed-on: #45	2026-05-13 16:49:39 +00:00
Hermes	8d40f1691f	fix: update compose submodule — remove apk add iptables-nft	2026-05-13 12:49:14 -04:00
Robert	2dd2e64986	Merge remote-tracking branch 'origin/master'	2026-05-13 12:42:54 -04:00
Robert	23fc5e0597	Give a little more ssh room for tramp	2026-05-13 12:41:09 -04:00
Thierry Pouplier	0c9c33d735	Merge pull request 'fix: update wg-easy to official ghcr image with iptables-nft' (#44 ) from fix/vpn-iptables-nft-upstream into master Reviewed-on: #44	2026-05-13 16:39:56 +00:00
Hermes	0bb6890f1c	chore: merge master into branch	2026-05-13 12:39:05 -04:00
Hermes	9d5434425f	fix: update compose submodule for wg-easy iptables-nft fix Updates the assets/compose submodule to point to the fix/vpn-iptables-nft-upstream branch which contains: - Switch FROM weejewel/wg-easy:latest (Alpine 3.11, stale 4yr) to ghcr.io/wg-easy/wg-easy:latest (actively maintained, Alpine krypton) - Use update-alternatives instead of raw ln -sf to flip iptables from legacy to nftables backend - Fix compose build context: ./vpn -> . (Dockerfile is at same level)	2026-05-13 12:30:47 -04:00
Thierry Pouplier	1fb4320dd1	Merge pull request 'feat: update compose submodule for custom tools startup' (#43 ) from feat/update-compose-submodule-custom-tools into master Reviewed-on: #43	2026-05-13 13:58:27 +00:00
Hermes	51e9f47fd4	feat: update compose submodule for custom tools startup	2026-05-13 09:56:24 -04:00
Hermes	06b3eb840f	fix: update compose submodule for wg-easy iptables-nft fix	2026-05-12 16:29:51 -04:00
Thierry Pouplier	28ab52209c	Merge pull request 'Add restricted AI worker access with deployment capabilities' (#1 ) from ai-worker-restricted-access into master Reviewed-on: #1	2026-05-11 00:48:29 +00:00