Based on cachix-deploy-hetzner-dedicated.
Based on Cachix Deploy for nix-darwin.
Make sure to install rosetta: softwareupdate --install-rosetta --agree-to-license
Secrets are managed by sops: https://github.com/Mic92/sops-nix
Add a new secret:
sops secrets.yaml
To add a new key, edit .sops.yaml
, then run:
sops updatekeys secrets.yaml