Martin Schwaighofer
@mschwaig.bsky.social
Proving the link between source code and running systems with Nix. ❄
A solid foundation for supply chain security: https://doi.org/10.1145/3689944.3696169
A solid foundation for supply chain security: https://doi.org/10.1145/3689944.3696169
Pinned
Martin Schwaighofer
@mschwaig.bsky.social
· Mar 18
GitHub - mschwaig/laut: verifiable provenance data and SBOMs with Nix
verifiable provenance data and SBOMs with Nix. Contribute to mschwaig/laut development by creating an account on GitHub.
github.com
Yesterday, on day 1, I launched my project github.com/mschwaig/laut which aims to make a credible proposal of a new signature format for Nix,
in line with my first paper.
in line with my first paper.
I've started adding some rust code to laut. I even depend on sinx, the nix implementation written in rust, for nix32 encoding support.
May 9, 2025 at 12:44 AM
I've started adding some rust code to laut. I even depend on sinx, the nix implementation written in rust, for nix32 encoding support.
Reposted by Martin Schwaighofer
Whenever my computer acts up I prepare a Computer Ant with a little expedition pack (headtorch, screwdriver, sandwiches, etc) and drop it into the USB port to go find the problem. It's never worked, not even once, but it's cute and distracting and that's what really matters
May 3, 2025 at 6:00 PM
Whenever my computer acts up I prepare a Computer Ant with a little expedition pack (headtorch, screwdriver, sandwiches, etc) and drop it into the USB port to go find the problem. It's never worked, not even once, but it's cute and distracting and that's what really matters
I won this nice hat today, for best practices in software supply chain security, for how I work on laut, at the Workshop on Supply Chain Security hosted by the CHAINS project at KTH. 🥳
I checked 5 out of 15 boxes on their self-assessment, and basically won by default because nobody else entered.
I checked 5 out of 15 boxes on their self-assessment, and basically won by default because nobody else entered.
April 25, 2025 at 9:32 PM
I won this nice hat today, for best practices in software supply chain security, for how I work on laut, at the Workshop on Supply Chain Security hosted by the CHAINS project at KTH. 🥳
I checked 5 out of 15 boxes on their self-assessment, and basically won by default because nobody else entered.
I checked 5 out of 15 boxes on their self-assessment, and basically won by default because nobody else entered.
Nobody:
UDP:
sessions never meant anything to me
UDP:
sessions never meant anything to me
April 24, 2025 at 2:26 PM
Nobody:
UDP:
sessions never meant anything to me
UDP:
sessions never meant anything to me
The laut dev stream week is over. It was a lot of fun and we made good progress. You can now find the recordings here:
youtube.com/playlist?lis...
I also made an update post on discourse with more details on what we managed to get done:
discourse.nixos.org/t/transitive...
#Nix #NixOS
youtube.com/playlist?lis...
I also made an update post on discourse with more details on what we managed to get done:
discourse.nixos.org/t/transitive...
#Nix #NixOS
laut development stream week - YouTube
These videos were made for the "development stream week" of my open source project laut: https://github.com/mschwaig/laut laut is a project that aims to intr...
youtube.com
April 16, 2025 at 12:07 PM
The laut dev stream week is over. It was a lot of fun and we made good progress. You can now find the recordings here:
youtube.com/playlist?lis...
I also made an update post on discourse with more details on what we managed to get done:
discourse.nixos.org/t/transitive...
#Nix #NixOS
youtube.com/playlist?lis...
I also made an update post on discourse with more details on what we managed to get done:
discourse.nixos.org/t/transitive...
#Nix #NixOS
Going live again at twitch.tv/martin_build... at 14:30 CEST (in 2h 45 min) to work on laut today.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
martin_builds_stuff - Twitch
... working on 📢 laut 📢 to make Sci-Fi security tech a reality with Nix ❄️
twitch.tv
April 10, 2025 at 9:48 AM
Going live again at twitch.tv/martin_build... at 14:30 CEST (in 2h 45 min) to work on laut today.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
I'm gong to stream myself working on laut at twitch.tv/martin_build... tomorrow and the rest of the week.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
martin_builds_stuff - Twitch
... working on 📢 laut 📢 to make Sci-Fi security tech a reality with Nix ❄️
m.twitch.tv
April 6, 2025 at 7:21 PM
I'm gong to stream myself working on laut at twitch.tv/martin_build... tomorrow and the rest of the week.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
Details at: discourse.nixos.org/t/transitive....
Let's make #Nix a better tool for supply chain security.
Reposted by Martin Schwaighofer
Finally got around to writing this relatively length post on the state of software development on Fedora Silverblue, and containerized development in general. This might just be well concealed nixposting, read to find out...
anglesideangle.dev/blog/contain...
#nix #devcontainer #fedora
anglesideangle.dev/blog/contain...
#nix #devcontainer #fedora
Cracks in Containerized Development
Nerd rants about developing software in isolation from the home system; toolbx, distrobox, devcontainers, nix, etc
anglesideangle.dev
March 29, 2025 at 8:20 AM
Finally got around to writing this relatively length post on the state of software development on Fedora Silverblue, and containerized development in general. This might just be well concealed nixposting, read to find out...
anglesideangle.dev/blog/contain...
#nix #devcontainer #fedora
anglesideangle.dev/blog/contain...
#nix #devcontainer #fedora
Reposted by Martin Schwaighofer
NixOS could have detected the xz backdoor.
Quite an interesting read. Would recommend.
luj.fr/blog/how-nix...
Quite an interesting read. Would recommend.
luj.fr/blog/how-nix...
How NixOS and reproducible builds could have detected the xz backdoor
for the benefit of allmenu
Julien Malka homepage
luj.fr
March 20, 2025 at 5:57 PM
NixOS could have detected the xz backdoor.
Quite an interesting read. Would recommend.
luj.fr/blog/how-nix...
Quite an interesting read. Would recommend.
luj.fr/blog/how-nix...
Reposted by Martin Schwaighofer
um are you the least used program on my computer in 1998. because you’re a real player
March 19, 2025 at 4:52 AM
um are you the least used program on my computer in 1998. because you’re a real player
Let the record show that I would like 'Freed From Desire' by Gala to become a free software anthem. 🤭
March 19, 2025 at 12:03 AM
Let the record show that I would like 'Freed From Desire' by Gala to become a free software anthem. 🤭
I'm still hyped about the opportunity being part of #OceanSprint this year working on #Nix.
March 18, 2025 at 7:03 PM
I'm still hyped about the opportunity being part of #OceanSprint this year working on #Nix.
I was just at the welcome dinner for #OceanSprint. So many nice people, so many great conversations!
I volunteered to be be the person who makes sure that people switch seats a few times a night, so that they get to know everyone instead of just sticking with the same group of people.
#Nix #NixOS
I volunteered to be be the person who makes sure that people switch seats a few times a night, so that they get to know everyone instead of just sticking with the same group of people.
#Nix #NixOS
March 17, 2025 at 12:36 AM
I was just at the welcome dinner for #OceanSprint. So many nice people, so many great conversations!
I volunteered to be be the person who makes sure that people switch seats a few times a night, so that they get to know everyone instead of just sticking with the same group of people.
#Nix #NixOS
I volunteered to be be the person who makes sure that people switch seats a few times a night, so that they get to know everyone instead of just sticking with the same group of people.
#Nix #NixOS
check out my #NixCon2024 talk about 'rebuilding builders, instead of trusting trust' if you want to hear about how we can turn Nix into a sci-fi supply chain security tool
#Nix #NixCon
www.youtube.com/watch?v=UlJU...
#Nix #NixCon
www.youtube.com/watch?v=UlJU...
NixCon2024 rebuilding builders instead of trusting trust
YouTube video by NixCon
www.youtube.com
March 7, 2025 at 7:46 PM
check out my #NixCon2024 talk about 'rebuilding builders, instead of trusting trust' if you want to hear about how we can turn Nix into a sci-fi supply chain security tool
#Nix #NixCon
www.youtube.com/watch?v=UlJU...
#Nix #NixCon
www.youtube.com/watch?v=UlJU...
numinit talks about building a resilient mesh network setup to distribute the Nix binary cache (and access other network services) though a human-colonized sci-fi galaxy or a conference floor buzzing with of all kinds of hackers at
#PlanetNix #SCaLE20x
www.youtube.com/live/yhfDtRR...
#PlanetNix #SCaLE20x
www.youtube.com/live/yhfDtRR...
Room 101 Friday Mar. 07 - SCaLE 22x
YouTube video by Southern California Linux Expo
www.youtube.com
March 7, 2025 at 7:21 PM
numinit talks about building a resilient mesh network setup to distribute the Nix binary cache (and access other network services) though a human-colonized sci-fi galaxy or a conference floor buzzing with of all kinds of hackers at
#PlanetNix #SCaLE20x
www.youtube.com/live/yhfDtRR...
#PlanetNix #SCaLE20x
www.youtube.com/live/yhfDtRR...
@bsky.app When I type "blue sky" into your search on Android, I do not find your account, until I remove that space in the middle. Should it really be like that? 🤔😊
February 19, 2025 at 10:26 AM
@bsky.app When I type "blue sky" into your search on Android, I do not find your account, until I remove that space in the middle. Should it really be like that? 🤔😊
Today is a good day. I have 69 followers on bluesky and my paper has 100 downloads. 😅
Nice. 😁
dl.acm.org/doi/10.1145/...
Nice. 😁
dl.acm.org/doi/10.1145/...
February 18, 2025 at 3:45 PM
Today is a good day. I have 69 followers on bluesky and my paper has 100 downloads. 😅
Nice. 😁
dl.acm.org/doi/10.1145/...
Nice. 😁
dl.acm.org/doi/10.1145/...
Can somebody do a talk or webcast or something about how to navigate the hydra.nixos.org webui?
I always just get lost in there. 😓
#nix #nixos
I always just get lost in there. 😓
#nix #nixos
Hydra - Overview
hydra.nixos.org
February 10, 2025 at 12:11 PM
Can somebody do a talk or webcast or something about how to navigate the hydra.nixos.org webui?
I always just get lost in there. 😓
#nix #nixos
I always just get lost in there. 😓
#nix #nixos
Reposted by Martin Schwaighofer
January 31, 2025 at 9:15 AM
Reposted by Martin Schwaighofer
Signature creation basically looks like this
signed = sign(unsigned, key)
and later somewhere else, verification
isValid, key = verify(signed)
Me looking at verify:
Bro! .. you just ate unsigned! Spit out hash(unsingned) or something!
Why should I keep track of that? You are a computer program!
signed = sign(unsigned, key)
and later somewhere else, verification
isValid, key = verify(signed)
Me looking at verify:
Bro! .. you just ate unsigned! Spit out hash(unsingned) or something!
Why should I keep track of that? You are a computer program!
January 5, 2025 at 2:33 PM
Signature creation basically looks like this
signed = sign(unsigned, key)
and later somewhere else, verification
isValid, key = verify(signed)
Me looking at verify:
Bro! .. you just ate unsigned! Spit out hash(unsingned) or something!
Why should I keep track of that? You are a computer program!
signed = sign(unsigned, key)
and later somewhere else, verification
isValid, key = verify(signed)
Me looking at verify:
Bro! .. you just ate unsigned! Spit out hash(unsingned) or something!
Why should I keep track of that? You are a computer program!
I think in our current age it has become increasingly difficult for people to be part of the same group as somebody that they disagree with.
The internet makes it so easy to find people you agree with, after all, and fight or block whoever you do not. 1/9
The internet makes it so easy to find people you agree with, after all, and fight or block whoever you do not. 1/9
The first (public) decision of the Nix Steering Committee was to opine on the PolyMC packaging controversy: github.com/NixOS/nixpkg...
Package request: polymc · Issue #365781 · NixOS/nixpkgs
Project description PolyMC is a Minecraft client launcher and fork of MultiMC that allows you to easily manage multiple installations of Minecraft at once. Metadata homepage URL: https://polymc.org...
github.com
December 22, 2024 at 11:14 PM
I think in our current age it has become increasingly difficult for people to be part of the same group as somebody that they disagree with.
The internet makes it so easy to find people you agree with, after all, and fight or block whoever you do not. 1/9
The internet makes it so easy to find people you agree with, after all, and fight or block whoever you do not. 1/9
Can we start calling folders with waaay too many files in them 'clown car folders'?
December 21, 2024 at 9:46 AM
Can we start calling folders with waaay too many files in them 'clown car folders'?