jcollie.dev / nixos-runner
NixOS-based container for running GitHub actions
0
fork

Configure Feed

Select the types of activity you want to include in your feed.

try to set setuid bit on sudo

Jeffrey C. Ollie d67d72f3 6ea10052

+1 -4
+1 -4
flake.nix
··· 359 359 preferLocalBuild = true; 360 360 } 361 361 '' 362 - env 363 - set -x 364 362 mkdir -p $out/etc 365 363 mkdir -p $out/etc/ssl/certs 366 364 ln -s /nix/var/nix/profiles/default/etc/ssl/certs/ca-bundle.crt $out/etc/ssl/certs ··· 416 414 mkdir -p $out/bin $out/usr/bin 417 415 ln -s ${pkgs.coreutils}/bin/env $out/usr/bin/env 418 416 ln -s ${pkgs.bashInteractive}/bin/bash $out/bin/sh 419 - 420 - 421 417 '' 422 418 + (lib.optionalString (flake-registry != null) '' 423 419 nixCacheDir="/root/.cache/nix" ··· 455 451 # ln --symbolic --force "$(realpath --relative-to=etc etc/group)" etc/group 456 452 ''; 457 453 fakeRootCommands = '' 454 + chmod 4555 sbin/sudo 458 455 chmod 1777 tmp 459 456 chmod 1777 var/tmp 460 457 chown 1001:1001 github