vibe nixpak sandbox wip

Author: functora

nix/configuration.nix

@@ -776,26 +776,19 @@ in {
         ccrypt
         libreoffice
         tor-browser-bundle-bin
-        kooha
         mpv
         # cura
         git-lfs
         lesspass-cli
-        # mkdir -p ~/macos/Public
-        # cd ~/macos
-        # chmod 777 ./Public
-        # quickget macos monterey
-        # quickemu --vm macos-monterey.conf --public-dir ./Public --extra_args "-cpu host,+vmx"
-        quickemu
         usbutils
         simple-scan
         system-config-printer
         pulsemixer
+        neovim
         (import ./vidmaker.nix)
         (import ./clipmaker.nix)
-        neovim
-        (import ./zed.nix {inherit pkgs;})
         (import ./bar.nix {inherit pkgs;})
+        (import ./vibe.nix {inherit pkgs;})
       ];
       programs.git = {
         enable = true;
@@ -1104,8 +1097,9 @@ in {
     # AI
     #
     services.llama-cpp.port = 11434;
-    services.llama-cpp.package = pkgs.llama-cpp.override {vulkanSupport = true;};
-    services.llama-cpp.model = ../../llms/microsoft_Phi-4-reasoning-plus-Q5_K_M.gguf;
+    services.llama-cpp.package = unst.llama-cpp.override {vulkanSupport = true;};
+    services.llama-cpp.model = ../../llms/google_gemma-3-270m-it-qat-Q5_K_M.gguf;
+    services.llama-cpp.extraFlags = ["-c" "32000"];
     #
     # Fonts
     #

nix/shell.nix

@@ -16,19 +16,14 @@ in
     buildInputs =
       [
         pkgs.hlint
-        pkgs.gleam
-        pkgs.erlang
-        pkgs.elixir
         pkgs.libwebp
         newpkgs.litecli
-        misc.nix-bundle
         bak.bak-status
         bak.bak-commit
         bak.bak-encrypt
         # bak.bak-decrypt
       ]
       ++ (import ./tools.nix)
-      ++ (import ./../pub/dazzle/nix/tools.nix)
       ++ (import ./../pub/functora-hakyll/nix/tools.nix)
       ++ (import ./../pub/functora/nix/tools.nix)
       ++ (import ./../pub/bfx/nix/tools.nix)

nix/sources.json

@@ -65,10 +65,10 @@
         "homepage": "",
         "owner": "NixOS",
         "repo": "nixpkgs",
-        "rev": "cab778239e705082fe97bb4990e0d24c50924c04",
-        "sha256": "119yw3dqvq6c9kvvk8x1829a3symy6g0cbzjpskx9xhbak4r82cn",
+        "rev": "32f313e49e42f715491e1ea7b306a87c16fe0388",
+        "sha256": "1z4ga87qla5300qwib3dnjnkaywwh8y1qqsb8w2mrsrw78k9xmlw",
         "type": "tarball",
-        "url": "https://github.com/NixOS/nixpkgs/archive/cab778239e705082fe97bb4990e0d24c50924c04.tar.gz",
+        "url": "https://github.com/NixOS/nixpkgs/archive/32f313e49e42f715491e1ea7b306a87c16fe0388.tar.gz",
         "url_template": "https://github.com/<owner>/<repo>/archive/<rev>.tar.gz"
     }
 }

nix/vibe.nix

@@ -0,0 +1,57 @@
+{pkgs ? import <nixpkgs> {}}: let
+  nixpak = import ./nixpak.nix;
+  mkNixPak = nixpak.lib.nixpak {
+    inherit (pkgs) lib;
+    inherit pkgs;
+  };
+  app = pkgs.writeShellApplication {
+    name = "vibe";
+    text = "alacritty";
+    runtimeInputs = with pkgs; [
+      (import ./../pub/vi/nix/default.nix {})
+      busybox
+      curl
+      wget
+      git
+      alacritty
+      tmux
+      nix
+    ];
+  };
+  sandbox = mkNixPak {
+    config = {sloth, ...}: {
+      app.package = app;
+      gpu.enable = true;
+      gpu.provider = "bundle";
+      fonts.enable = true;
+      locale.enable = true;
+      etc.sslCertificates.enable = true;
+      bubblewrap = {
+        network = true;
+        sockets.pulse = true;
+        sockets.wayland = true;
+        bind.ro = [
+          "/bin/sh"
+          "/run/current-system/sw/bin/bash"
+          "/run/current-system/sw/bin/less"
+          (sloth.concat' sloth.homeDir "/.config/tmux")
+          (sloth.concat' sloth.homeDir "/.config/alacritty")
+          (sloth.concat' sloth.homeDir "/.config/nvim/coc-settings.json")
+        ];
+        bind.rw = [
+          [
+            (sloth.mkdir (sloth.concat' sloth.homeDir "/vibe"))
+            sloth.homeDir
+          ]
+        ];
+        tmpfs = [
+          "/tmp"
+        ];
+        env.NIX_CONFIG = ''
+          experimental-features = nix-command flakes
+        '';
+      };
+    };
+  };
+in
+  sandbox.config.env