refactor: comprehensive repository cleanup (Phases 1-7) #35

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open

sygint wants to merge 15 commits into main from cleanup/phases-1-7

DOCS.md

            
                      Original file line number
                      Diff line number
                      Diff line change
                  
    @@ -7,7 +7,7 @@ Complete guide to this NixOS configuration. Start here for navigation.
  
    **New to this config?** Start here:

    1. Read [README.md](README.md) - Project overview and quick start

    2. Check [FLEET-MANAGEMENT.md](FLEET-MANAGEMENT.md) - How to deploy systems

    3. Review [docs/SECURITY.md](docs/SECURITY.md) - Security baseline

    3. Review [docs/security/SECURITY.md](docs/security/SECURITY.md) - Security baseline

    ## 📚 Core Documentation

    @@ -19,7 +19,7 @@ Complete guide to this NixOS configuration. Start here for navigation.
  
    | [FLEET-MANAGEMENT.md](FLEET-MANAGEMENT.md) | Deploy and manage multiple NixOS systems | Initial deployment, routine updates |

    | [docs/BOOTSTRAP.md](docs/BOOTSTRAP.md) | Bootstrap new NixOS systems from scratch | Installing NixOS on new hardware |

    | [systems/cortex/AI-SERVICES.md](systems/cortex/AI-SERVICES.md) | AI/LLM infrastructure on Cortex (Ollama, NVIDIA) | Using AI services, GPU troubleshooting |

    | [docs/SECURITY.md](docs/SECURITY.md) | Security configuration (fail2ban, auditd, SSH) | Hardening systems, security audit |

    | [docs/security/SECURITY.md](docs/security/SECURITY.md) | Security configuration (fail2ban, auditd, SSH) | Hardening systems, security audit |

    | [SECRETS.md](SECRETS.md) | Complete secrets management guide with sops-nix | Managing passwords, API keys, certificates |

    ## � Planning & Implementation

    @@ -29,7 +29,7 @@ Complete guide to this NixOS configuration. Start here for navigation.
  
    | [docs/PROJECT-OVERVIEW.md](docs/PROJECT-OVERVIEW.md) | Architecture, philosophy, system details | Understanding design decisions |

    | [docs/ROADMAP.md](docs/ROADMAP.md) | Implementation roadmap and timeline | Planning next features |

    | [docs/IMPLEMENTATION-GUIDE.md](docs/IMPLEMENTATION-GUIDE.md) | Step-by-step implementation guides | Adding new features |

    | [docs/TODO-CHECKLIST.md](docs/TODO-CHECKLIST.md) | Progress tracking and status | Tracking what's done |

    | [docs/planning/TODO-CHECKLIST.md](docs/planning/TODO-CHECKLIST.md) | Progress tracking and status | Tracking what's done |

    ## �🛠️ Troubleshooting & Reference

    @@ -95,11 +95,18 @@ When updating documentation:
  
    │   ├── PROJECT-OVERVIEW.md       # Architecture & philosophy

    │   ├── ROADMAP.md                # Implementation timeline

    │   ├── IMPLEMENTATION-GUIDE.md   # Step-by-step guides

    │   ├── TODO-CHECKLIST.md         # Progress tracking

    │   ├── ARCHITECTURE.md           # Module system docs

    │   ├── SECURITY.md               # Security configuration

    │   ├── BOOTSTRAP.md              # Bootstrap new systems

    │   ├── FLEET-FUTURE.md           # Future fleet tools (Colmena)

    │   ├── planning/                 # Planning & tracking docs

    │   │   ├── TODO-CHECKLIST.md     # Progress tracking

    │   │   ├── CLEANUP-PRD.md        # Cleanup project details

    │   │   └── CLEANUP-CHECKLIST.md  # Cleanup tasks

    │   ├── security/                 # Security documentation

    │   │   ├── SECURITY.md           # Security configuration

    │   │   ├── SECURITY-ROADMAP.md   # Security roadmap

    │   │   ├── SECURITY-SCANNING.md  # Secret scanning

    │   │   └── CORTEX-SECURITY.md    # Cortex hardening

    │   ├── troubleshooting/          # Specific issue guides

    │   └── blog/                     # Learning journey posts

    └── systems/

ISSUES.md

            
                      Original file line number
                      Diff line number
                      Diff line change
                  
    @@ -143,7 +143,7 @@
  
      - Options: `nixos-rebuild build-vm`, `machinectl`, Proxmox VMs

      - Related: `machines` NixOS feature, `systemd-nspawn`

      - Tags: `testing`, `vms`, `dev-environment`

      - See: [TODO-CHECKLIST.md](./docs/TODO-CHECKLIST.md) - Testing & Validation section

      - See: [TODO-CHECKLIST.md](./docs/planning/TODO-CHECKLIST.md) - Testing & Validation section

    ### Security Tooling

    @@ -162,7 +162,7 @@
  
      - Impact: Deep historical secret detection in git history

      - Solution: Available in devenv (v3.90.9), convenience script created

      - Usage: `./scripts/security-scan.sh [quick|full|history]`

      - Documentation: `docs/SECURITY-SCANNING.md`

      - Documentation: `docs/security/SECURITY-SCANNING.md`

      - Location: `devenv.nix`, `scripts/security-scan.sh`

      - Tags: `security`, `git`, `secrets`

    @@ -255,7 +255,7 @@
  
      - Solution: Pre-commit hooks active, convenience script created, comprehensive documentation

      - Tools: git-secrets (pre-commit) + TruffleHog v3.90.9 (manual/CI)

      - Scripts: `scripts/security-scan.sh`, `scripts/git-hooks/pre-commit`

      - Documentation: `docs/SECURITY-SCANNING.md`

      - Documentation: `docs/security/SECURITY-SCANNING.md`

      - Impact: Prevents accidental secret commits and enables deep historical scanning

    ---

    @@ -283,15 +283,15 @@
  
    ### Related Documentation

    - [TODO-CHECKLIST.md](./docs/TODO-CHECKLIST.md) - Implementation roadmap

    - [TODO-CHECKLIST.md](./docs/planning/TODO-CHECKLIST.md) - Implementation roadmap

    - [ARCHITECTURE.md](./docs/ARCHITECTURE.md) - System architecture

    - [FLEET-MANAGEMENT.md](./FLEET-MANAGEMENT.md) - Deployment workflows

    - [SECURITY.md](./docs/SECURITY.md) - Security configuration

    - [SECURITY.md](./docs/security/SECURITY.md) - Security configuration

    ---

    **Notes:**

    - Review and update this file weekly

    - Move stale items to backlog or archive

    - Keep critical issues visible at the top

    - Cross-reference with TODO-CHECKLIST.md for implementation tasks

    - Cross-reference with docs/planning/TODO-CHECKLIST.md for implementation tasks

README.md

            
                      Original file line number
                      Diff line number
                      Diff line change
                  
    @@ -16,7 +16,7 @@ Personal NixOS configuration with **unified feature modules** based on the dendr
  
    - **[docs/BOOTSTRAP.md](docs/BOOTSTRAP.md)** - Bootstrap new NixOS systems

    **Security & Secrets:**

    - **[docs/SECURITY.md](docs/SECURITY.md)** - Security configuration

    - **[docs/security/SECURITY.md](docs/security/SECURITY.md)** - Security configuration

    - **[SECRETS.md](SECRETS.md)** - Secrets management (sops-nix + age)

    ## 🚀 Quick Start

    @@ -257,5 +257,5 @@ Some extensions are already configured but commented out. To enable them:
  
    ## 📋 Notes

    - Dotfiles are managed using Home Manager with live-updating symlinks

    - Monitor configuration is stored in `monitors.json`

    - Monitor configuration is stored in `systems/orion/monitors.json`

    - Additional notes in `notes.txt`

build.log

This file was deleted.

docs/BOOTSTRAP.md

            
                      Original file line number
                      Diff line number
                      Diff line change
                  
    @@ -71,10 +71,10 @@ OPTIONAL:
  
    ### Centralized Configuration Pattern

    All host configurations use a centralized network topology defined in `network-config.nix`:

    All host configurations use a centralized network topology defined in `fleet-config.nix`:

    ```nix

    # network-config.nix - Central source of truth for all hosts

    # fleet-config.nix - Central source of truth for all hosts

    {

      hosts = {

        orion = {

    @@ -102,16 +102,16 @@ All host configurations use a centralized network topology defined in `network-c
  
    ### System Variables Pattern

    Each host has a `systems/<hostname>/variables.nix` file that:

    - Imports from centralized `network-config.nix`

    - Imports from centralized `fleet-config.nix`

    - Defines machine-specific settings (user preferences, applications, etc.)

    - Re-exports network config for convenient access

    - Re-exports fleet config for convenient access

    **Example:**

    ```nix

    let

      networkConfig = import ../../network-config.nix;

      thisHost = networkConfig.hosts.orion;

      fleetConfig = import ../../fleet-config.nix;

      thisHost = fleetConfig.hosts.orion;

    in

    {

      system = {

    @@ -389,7 +389,7 @@ The `fleet.sh` script auto-loads host configuration from your Nix config:
  
    ### Wake-on-LAN

    If configured in `network-config.nix`:

    If configured in `fleet-config.nix`:

    ```bash

    # Wake a sleeping host

    @@ -576,7 +576,7 @@ ssh-add -l
  
       - Note the IP address

    2. **Configure the host**

       - Add entry to `network-config.nix`

       - Add entry to `fleet-config.nix`

       - Create `systems/<hostname>/` directory with configuration

       - Create `systems/<hostname>/variables.nix`

       - Create `systems/<hostname>/disk-config.nix`

    @@ -680,6 +680,6 @@ done
  
    ---

    **Last Updated:** October 29, 2025  

    **Last Updated:** January 22, 2026

    **Pattern Source:** EmergentMind's nix-config  

    **Status:** Active deployment method for all fleet systems

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

refactor: comprehensive repository cleanup (Phases 1-7) #35

Uh oh!

Diff view

Diff view

There are no files selected for viewing

Uh oh!

Uh oh!

refactor: comprehensive repository cleanup (Phases 1-7) #35

Are you sure you want to change the base?

Uh oh!

refactor: comprehensive repository cleanup (Phases 1-7) #35

Uh oh!

Uh oh!

Diff view

Diff view

There are no files selected for viewing

Uh oh!

Uh oh!