Skip to content

build06: init #1807

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
zowoq wants to merge 1 commit into from
Closed

build06: init #1807

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9 changes: 9 additions & 0 deletions .sops.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -44,6 +44,15 @@ creation_rules:
- age1jrh8yyq3swjru09s75s4mspu0mphh7h6z54z946raa9wx3pcdegq0x8t4h
- age1m7xhem3qll35d539f364pm6txexvnp6k0tk34d8jxu4ry3pptv7smm0k5n
path_regex: ^hosts/build05/secrets.yaml$
- key_groups:
- age:
- age1rxh5g2ckvgtfwgwsrjxcl6kzx6esqmzkpswc6r3984uzgjj9eg3q9arjzc
- age1dzvjjum2p240qtdt2qcxpm7pl2s5w36mh4fs3q9dhhq0uezvdqaq9vrgfy
- age17n64ahe3wesh8l8lj0zylf4nljdmqn28hvqns2g7hgm9mdkhlsvsjuvkxz
- age1d87z3zqlv6ullnzyng8l722xzxwqr677csacf3zf3l28dau7avfs6pc7ay
- age1jrh8yyq3swjru09s75s4mspu0mphh7h6z54z946raa9wx3pcdegq0x8t4h
- age1m7xhem3qll35d539f364pm6txexvnp6k0tk34d8jxu4ry3pptv7smm0k5n
path_regex: ^hosts/build06/secrets.yaml$
- key_groups:
- age:
- age15dljvnazm0njdt7fh7drlsqnqx35766aex8zsv634zzpecu9cdgssmqv9a
Expand Down
4 changes: 4 additions & 0 deletions dnscontrol/dnsconfig.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,6 +35,10 @@ var hosts = {
ipv4: "65.109.82.88",
ipv6: "2a01:4f9:3051:5066::1"
},
"build06": {
ipv4: "1.2.3.4",
ipv6: "1.2.3.4"
},
"darwin01": {
ipv4: "49.12.162.22",
ipv6: "2a01:4f8:d1:5716::2"
Expand Down
13 changes: 13 additions & 0 deletions docs/infrastructure.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,19 @@
--8<-- "docs/build04.json"
```

#### [`CI builder`](./continuous-integration.md) - `build06`

- Provider: Hetzner
- Instance type: [GEX44](https://www.hetzner.com/dedicated-rootserver/gex44)
- GPU: Nvidia RTX 4000 SFF Ada Generation
- CPU: Intel Core i5-13500 14-Core Processor
- RAM: 64GB DDR4 ECC
- Drives: 2 x 1.92TB NVME

```json
--8<-- "docs/build06.json"
```

#### [`CI builder`](./continuous-integration.md) - `darwin02`

- Provider: OakHost
Expand Down
7 changes: 7 additions & 0 deletions flake.nix
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -82,6 +82,12 @@
{ lib, ... }:
{
nixpkgs = {
config.allowUnfreePredicate =
pkg:
builtins.elem (lib.getName pkg) [
"nvidia-settings"
"nvidia-x11"
];
overlays = [
(final: prev: (import ./dev/packages.nix { inherit final prev inputs; }))
];
Expand All @@ -95,6 +101,7 @@
build03.system = "x86_64-linux";
build04.system = "aarch64-linux";
build05.system = "aarch64-linux";
build06.system = "x86_64-linux";
darwin01.system = "aarch64-darwin";
darwin02.system = "aarch64-darwin";
web02.system = "x86_64-linux";
Expand Down
11 changes: 11 additions & 0 deletions hosts/build06/client.crt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
22 changes: 22 additions & 0 deletions hosts/build06/default.nix
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,22 @@
{ inputs, ... }:
{
imports = [
# currently only works with new hydra-queue-builder, not hercules or buildbot (nix.distributedBuilds)
./nvidia.nix
inputs.self.nixosModules.cgroups
inputs.self.nixosModules.ci-builder
inputs.self.nixosModules.disko-zfs
inputs.srvos.nixosModules.hardware-hetzner-online-intel
];

nixCommunity.hydra-queue-builder-v2 = {
maxJobs = 2;
mandatoryFeatures = [ "cuda" ];
};

nix.settings.max-jobs = 14;
Copy link
Copy Markdown

@ConnorBaker ConnorBaker May 6, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd recommend setting this to two -- both in the case this is used as an actual builder and because running a bunch of GPU tests simultaneously could cause an OOM event.

Copy link
Copy Markdown
Contributor

@SomeoneSerge SomeoneSerge May 6, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍🏻 this is the place where we suffer very much from lack of a "real" scheduler for Nix, with support for negative affinity and resource constraints like in SLURM. We'll definitely run into issues running things like pytorch or pytorch-lightning test-suites, where you can have matrices of tests run in parallel


systemd.network.networks."10-uplink".networkConfig.Address = "1.2.3.4";

system.stateVersion = "24.11";
}
18 changes: 18 additions & 0 deletions hosts/build06/nvidia.nix
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
{
hardware.graphics = {
enable = true;
};

hardware.nvidia = {
open = true;
};

programs.nix-required-mounts = {
Copy link
Copy Markdown
Contributor

@SomeoneSerge SomeoneSerge May 1, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We'll need to hack around NixOS/nix#9272, my tentative plan was to see if it's enough to ad hoc patch Nix just on the remote side without touching the requesting side

Copy link
Copy Markdown
Contributor Author

@zowoq zowoq May 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We can try that but as long as it can eventually be upstreamed patching both sides is fine.

@Mic92 What do you think a fix for NixOS/nix#9272 would look like?

Copy link
Copy Markdown
Contributor Author

@zowoq zowoq May 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As the only builds that'll run on this machine are the cuda tests could we set the sandbox paths directly instead of using the hook?

Copy link
Copy Markdown
Member

@Mic92 Mic92 May 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What is the issue here? Is this needed for some cachix pre-build hook?

Copy link
Copy Markdown
Contributor Author

@zowoq zowoq May 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What is the issue here? Is this needed for some cachix pre-build hook?

Did you read the issue linked in the previous comments?

Copy link
Copy Markdown
Contributor Author

@zowoq zowoq Jun 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

OTOH do we actually care? These outputs get garbage collected anyway.

Everything built gets pushed to our cachix cache. To avoid that we'd need to have a separate hydra instance just for running the tests. That then has problems, either we'd need to build the non-test derivations twice or have the test derivations on a much slower schedule to ensure that they have already been build on the main hydra (and still have the problem of derivations that failed on the main hydra being attempted a second time on the test hydra).

Adding features to non-test derivations instead of the test derivations is an interesting idea. However, a derivation's system features are part of the derivation struct and affect its hash

Yes. As long as the feature is a nix default (which big-parallel is) and also correct (I think big-parallel does apply for most of them) I don't see an issue?

Copy link
Copy Markdown
Contributor

@SomeoneSerge SomeoneSerge Jun 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Everything built gets pushed to our cachix cache.

What I meant to say is: cachix contents eventually get garbage-collected...

Copy link
Copy Markdown
Contributor

@SomeoneSerge SomeoneSerge Jun 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

a nix default (which big-parallel is) and also correct (I think big-parallel does apply for most of them) I don't see an issue?

Ah, I see. Clever. This should work?

Copy link
Copy Markdown
Contributor Author

@zowoq zowoq Jul 17, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

https://github.com/helsinki-systems/hydra-queue-runner

Using the new queue runner seems like it would address this problem.

Working on this in #1912, not useable yet.

Copy link
Copy Markdown

@hacker1024 hacker1024 Oct 24, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Adding the paths that would have been set by the pre-build-hook to nix.settings.sandbox-paths

This is a little tricky, as the hook performs operations like symlink resolution that cannot be done at evaluation time.

Behold, my solution:

programs.nix-required-mounts.extraWrapperArgs = [
  "--run shift"
  "--add-flag '${builtins.unsafeDiscardOutputDependency (derivation { name = "needs-cuda"; builder = "_"; system = "_"; requiredSystemFeatures = [ "cuda" ]; }).drvPath}'"
];

enable = true;
presets.nvidia-gpu.enable = true;
};

services.xserver.videoDrivers = [ "nvidia" ];

#services.telegraf.extraConfig.inputs.nvidia_smi.bin_path = "/run/current-system/sw/bin/nvidia-smi";
}
61 changes: 61 additions & 0 deletions hosts/build06/secrets.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,61 @@
queue-runner-client-key: ENC[AES256_GCM,data:E9EUEo+qa0ZgRLrPWWJ9ghbb5l4helRyYjl3EtGKEtuFiKDRQLZ2zyN6tyYQr8v5NcoqC/t9vFKZbpRl1P/5LPUS84ZdYDMPvul7cygvlnl9uH2kEpzoYMaWaYdr5UknBOC0znYOp3+ghkcD5Bdkg0fAZyHbXNs=,iv:NmOwnOVN9BELgCWvBONSfvSDpkfvSzOHrO8wikz4shM=,tag:IMpFRvs32hV6MlHx1yUK/A==,type:str]
sops:
age:
- recipient: age1rxh5g2ckvgtfwgwsrjxcl6kzx6esqmzkpswc6r3984uzgjj9eg3q9arjzc
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBIc2lvVnAzdW5EZnFvdnM2
Mkx3bzVXUTVwQlJDVER1WnBrejlWU3gyTnpjCkVUMnhkT1Y2ZWRtZ1hPUUptVGRa
VkduWGVxbTZpRkJGUWpIS1lycnVtVDgKLS0tIEI0bmY3VHdkNTgyVTNnOE9DZkh2
SzlNaHROd2NwMFU0T3F3UEZzY3FwZTAKpy8wPYNKV1QYlgLf+JoTZRR3mHjNmguA
0wbwv3rr+AulWk0/lzm3dErq3WMTOcnDDCK/qG8mBjyuMLwTPRM+pw==
-----END AGE ENCRYPTED FILE-----
- recipient: age1dzvjjum2p240qtdt2qcxpm7pl2s5w36mh4fs3q9dhhq0uezvdqaq9vrgfy
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBpL0tWeVBOZ0Vsb1BPTWNB
UTI4QXRtenltbjU3OHhQYUh0S3NSdnRHNmtNCkZYbW9xZkN0czBQbkdDcHZCWmxC
Y0pVNFIvZ2hxWi9UVFErdHd0Qjk3RjgKLS0tIHU5TytUanBoSWl6LzRzK0Z0YWdF
dmhZcVN1YUo4Z1g0QmdJMEVkVEd0Mk0KGZTTCXpBIJUUeWc1VKCrC2c7hfZiPcMx
r4ZGADYea2x+t+9drFKX4qhk5tLPOhn0LChhmMgttXPnxKha8hoecQ==
-----END AGE ENCRYPTED FILE-----
- recipient: age17n64ahe3wesh8l8lj0zylf4nljdmqn28hvqns2g7hgm9mdkhlsvsjuvkxz
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBpRnhsa0FzWG5vdlRXazNu
VGN2WkhacDF1QzFwY0NxalhPcjNRWENtYmxJCmdodVJMUkh3bk5VSHBWZlZ4NS9n
dzJabEpFVy9ISTlOZnBFS2pVWHFaaXcKLS0tIGRuWG9tQVNmazM4YkV0VDR5TWN6
bXU4TkNvby92OWhiNnk0S1RSZDI0YkkKQOtZ23IQiFeXscTGQXbD7HmBknGwAziM
oaluOn4Gm6rXBkpzyStwC45VsG9H25NKuALm2pfkq58hB9kRdJEk7w==
-----END AGE ENCRYPTED FILE-----
- recipient: age1d87z3zqlv6ullnzyng8l722xzxwqr677csacf3zf3l28dau7avfs6pc7ay
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBhNkk5Q1NyTk84Vjc3bHVi
Q1Bsc0FUSEhJVDVBU1RxaGhvd3NnaXJZbGhJCkFmOXlqR3dNK1lUNWFVa0NxUXJZ
VVBVcGg1Qk1iM1JXNVA4cklSb3JZRTgKLS0tIGEwTDVBWm9DVmg2NmJYbkNyejVj
SnpuckIyN1FCYzdzc2pZVWZtRXp5eWsKrtDJI1bnctBI0FkenWxSOZzSSh+IvkAz
1dIlaEZ/TQpDRHI3sJihZcW8sHRBhs4AYLGZMuAIJi2CUIRuav+Csg==
-----END AGE ENCRYPTED FILE-----
- recipient: age1jrh8yyq3swjru09s75s4mspu0mphh7h6z54z946raa9wx3pcdegq0x8t4h
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBtYUZaSHE5aWEwTDg5Wk9G
S1MrR1dFeWl1N0s4WmdoK1d1R3dWM2s3RndBClpqa0d2VjRnc0JwdFhvVFAvWEVn
WnNsZitqVzZWRWRqU0htSEtFcTEwMm8KLS0tIHJoNzliSkxDNWZaUU81WXNkcUlR
c293UXBHdkp2bWRjZmlhYUF2REZvZXcKpNXsBb0TnyY8BmEHVuIGcu+zElooKW0A
tXTQBPZ2gSZHTZUBk7oUcJPF4XKVpyEVLFlJQsCSZGDZSqsSj/uIBQ==
-----END AGE ENCRYPTED FILE-----
- recipient: age1m7xhem3qll35d539f364pm6txexvnp6k0tk34d8jxu4ry3pptv7smm0k5n
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBoZ1BJLzlZcUgxczFZY0xm
WVdyUXpBb3JGa0d4SW1NVE9CTmhjZU9kUzNZClQrTHhVc0N6WjFWYjJ4eklmS0F3
WHQzVmtYM2c2b29yVXB5SUswenJqQkUKLS0tIHpycWRwWkFOOVBSUEF3VENTc092
V3UyRXJCQmY3bjkvK01EcEk5WGMxZU0KEKUGD9ne9mHjKmRWWeMMnfgw9YrBBGbl
E2Akm7TcYHPkn7SogUUv1TVcyjhz7j11skpgCaMmOpQ29QAPIgNOfQ==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2025-09-02T10:07:51Z"
mac: ENC[AES256_GCM,data:ZcBCFYZCO+HxQhup+lSO1gSK2dWUaPf6KDqFKbobyDdVr/EbrRQW9jaGROqsBhNRPHCwX/P2rQ/jOYrRcO3jkXhH5QrOlzQS84qdCwjS9FZnDQuE41Hn829e2ElWnKsK+qmEt9/EtVmaaDKINBdX65CK6KxPrU8h/zrVkS6N3bs=,iv:/50PalAkRkMuouKTpsSD7hX0oBake7x7c/ubB/OEbv8=,tag:1lQbSTZcImbh6dH7TGpG6A==,type:str]
unencrypted_suffix: _unencrypted
version: 3.10.2
4 changes: 4 additions & 0 deletions modules/shared/known-hosts.nix
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,10 @@
hostNames = [ "build05.nix-community.org" ];
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG9uyfhyli+BRtk64y+niqtb+sKquRGGZ87f4YRc8EE1";
};
build06 = {
hostNames = [ "build06.nix-community.org" ];
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID3oz5qfJVRNHKPLWqgKiaOS97WUx0nUjSdnHKO4ptYe";
};
darwin01 = {
hostNames = [ "darwin01.nix-community.org" ];
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKMHhlcn7fUpUuiOFeIhDqBzBNFsbNqq+NpzuGX3e6zv";
Expand Down
12 changes: 4 additions & 8 deletions secrets.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@ ssh_host_ed25519_key:
build03: ENC[AES256_GCM,data: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,iv:VRAoe3bRpEBDGDAX/dZM+TOM8I6K2oxb1d3Ld+BQKuE=,tag:CIndzn8DJdxJLuFMtpk8Ww==,type:str]
build04: ENC[AES256_GCM,data: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,iv:to8K9ljpumnRFz7lmxi0C6JT6xME3Sukh2jWRYkZlPg=,tag:puIarMsuxMidHOJ18ZO2mQ==,type:str]
build05: ENC[AES256_GCM,data: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,iv:CmdE4wyS9nFOZ/SKumwC6ZUvm/uu3rrmviToBQd4b3E=,tag:dlxH/O53sxCLcJ//gDnO4A==,type:str]
build06: ENC[AES256_GCM,data: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,iv:AGLLW66XxXBgUqpek6zZGlGG3j/P22BqxLkDgzbQWfA=,tag:+6Xw562vs3L7yzms/kYmdw==,type:str]
web02: ENC[AES256_GCM,data:KR3sChbsD8B2OPyWgrUXsXcOZa5GgYrP819LuIQt9kmd83KIidG0AzuPbHjnpB4gLRgLzMUEGXzretmITHr8llIlFzzehLXulLsdBNT4FiyD80CjzUUxT/L1TadSWCqf8DMn581t6CwdpYaOPfrAesxD4ZJE0O/6oa6/pUG6AYAgFui56PAfUb1A04O8/hYZu5M9o+OxYeX7Ep3w3Fn0815Oe2qeILdjmIgecaKmc+rscJL8CrDanX5qYdAnzBEL0U8uWhDalVtHmgvTUcITeyjDNeVR0Zb76Xfl6HJb9HOpXS6DfPugONAEGyigte3PHd8lQbGArtR3UxVl95z2gQRcDIEHiYPnR1CHs1HEmLjCGot0jOnC9mHC/NAb6EYrnmRNxgu0elR3O6PNwf89Nu3Jq87GPlVTbggMg4bW8/d+ZnsOPUDSfB6F9HMDjKqu0qJdRt9D6VV/OfH537vw+XPgw/9Evdhb4tL5qX3FVjyxDSU1v5thnzum4mGoZI0S2EReRO/MO11orpIBeNOw4bwzPl7ftD6Emb0v,iv:qcewvFVbCppM0063eAVE2qkl348X3Pocm3dd+H/9Hko=,tag:QlXb7KkWV6tztq6kAbIhlw==,type:str]
darwin01:
customer: ENC[AES256_GCM,data:Ygqt1vjB9S95ME5S,iv:Rxjskp16qkiIP5+yqmQK76pGKL0Uu4qrDSOQRaQMlIU=,tag:A4aDNEWRDDnRrQr2/WwEvg==,type:str]
Expand Down Expand Up @@ -63,10 +64,6 @@ oakhost.net:
User: ENC[AES256_GCM,data:JNVMeER82FTMcnVpTrxtYuwHhPCm1Y63Fw==,iv:spBmD+xXCd39F6TCwLyARyGcBFfV/2yopkRSSCKXhDw=,tag:ENifQJTQCmgevZJEqjxDHw==,type:str]
Pass: ENC[AES256_GCM,data:fJULbD1uiLei5e5O,iv:lTleh+6ElGMuK9V4qgomovP0qvbbQUcEpK73oLX1LU0=,tag:6K8zQZRm4srHFUa3PfzyrQ==,type:str]
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age17n64ahe3wesh8l8lj0zylf4nljdmqn28hvqns2g7hgm9mdkhlsvsjuvkxz
enc: |
Expand Down Expand Up @@ -113,8 +110,7 @@ sops:
MkcvL1JyVFBJV0Y5RFFCMGN1OUFXdU0Kdx1wy6ZOOTg1a6VKaq52SMBvC26lMsW/
oMP+hmXc2WtoqZp+jZ9rrXz6cZW6/dO7CPqxl3aUEKg6BkXIwgyKeg==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2025-02-01T21:49:38Z"
mac: ENC[AES256_GCM,data:ma8JFAf22BJvviL9d58aQ4T2Dv6M20w1cA+8bX/KHsCJKDOdIM8Od/qWxsJWFHh7ttgAU0R/HxcgD8ji3Rxv46jiWKIYNTby7QvwARSmai9LbxlLhYq2tgi73DoKpV9Mu/VEt7NHzuZR+0dQiKyNSWfa/nKfcFku7Oly1Z6oVfI=,iv:zS7uJEm/dRFcN9k2HOtO6cjAOlurqBdhqPN1P+V9h44=,tag:p5KgPGPSL5nd1sOdkzFEzA==,type:str]
pgp: []
lastmodified: "2025-05-01T00:21:29Z"
mac: ENC[AES256_GCM,data:y7mcOLihPx7VB5dyThcLc7D/wzmCj9gUgaSf38VSSEDnfx3fS2+etckzGZd7PWKFQ+c3zvvJEHfJuDapiGzRCk3EQaswMhlibaGM2Oo9OeRWpk+fZeP8DLBH83rA9UwCeXyBmQufieIia1AXn/ZxTw3wq+TeY30edPnHMtYrB8g=,iv:FUPo0++p//CeGhMl7rm0B33VVHXsIwJCnAIRplnQAwM=,tag:TiKkciDZTJKFxvpODQl0Fw==,type:str]
unencrypted_suffix: _unencrypted
version: 3.9.4
version: 3.10.2
1 change: 1 addition & 0 deletions sops.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@
"build03": "age1qg7tfjwzp6dxwkw9vej6knkhdvqre3fu7ryzsdk5ggvtdx854ycqevlwnq",
"build04": "age1r464z5e2shvnh9ekzapgghevr9wy7spd4d7pt5a89ucdk6kr6yhqzv5gkj",
"build05": "age1kmz80s96paknelzqlz59ezctl7teejdvsm5f48f2udj5sp5m6qaszuauw7",
"build06": "age1rxh5g2ckvgtfwgwsrjxcl6kzx6esqmzkpswc6r3984uzgjj9eg3q9arjzc",
"darwin01": "age15dljvnazm0njdt7fh7drlsqnqx35766aex8zsv634zzpecu9cdgssmqv9a",
"darwin02": "age1xpzexnaulzdjtnwstvgvtq2ar7nkk2lj46u96ewjvtgt7g47jsxs0mhag3",
"web02": "age158v8dpppnw3yt2kqgqekwamaxpst5alfrnvvt7z36wfdk4veydrsqxc2tl"
Expand Down