From 4788c84cd903cfe957a8984c2598bfcf8bf27d27 Mon Sep 17 00:00:00 2001
From: Katherina Walshe-Grey <git@qenya.tel>
Date: Tue, 21 Jan 2025 18:03:35 +0000
Subject: [PATCH 1/2] elucredassa: connect to birdsong

---
 hosts/elucredassa/networking.nix | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/hosts/elucredassa/networking.nix b/hosts/elucredassa/networking.nix
index ec88532..eb12218 100644
--- a/hosts/elucredassa/networking.nix
+++ b/hosts/elucredassa/networking.nix
@@ -12,4 +12,10 @@
     };
     linkConfig.RequiredForOnline = "routable";
   };
+
+  birdsong.peering = {
+    enable = true;
+    privateKeyFile = "/etc/wireguard/privatekey";
+    persistentKeepalive = 29;
+  };
 }

From 261f9f80be301227896e73d09d3e93e7459d31f9 Mon Sep 17 00:00:00 2001
From: Katherina Walshe-Grey <git@qenya.tel>
Date: Tue, 21 Jan 2025 19:51:25 +0000
Subject: [PATCH 2/2] qenya: permit "insecure" electron-31

---
 home/qenya/packages.nix | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/home/qenya/packages.nix b/home/qenya/packages.nix
index c7cbec5..8e44f56 100644
--- a/home/qenya/packages.nix
+++ b/home/qenya/packages.nix
@@ -5,12 +5,21 @@ let
   isGraphical = osConfig.services.xserver.enable;
 in
 {
+  # this is a dependency of feishin. it does not actually have a known vulnerability,
+  # it's just unsuspported because Electron's support cycle is a ludicrously short 6 months.
+  # feishin's dev is going to be rewriting it without Electron (as "audioling").
+  # modern software development was a mistake.
+  nixpkgs.config.permittedInsecurePackages = [
+    "electron-31.7.7"
+  ];
+
   home.packages = with pkgs; [
     eza # like `ls` but fancier
     hexyl # like `xxd` but cooler
     tree # like `ls -R` but nicer
     units
-    zip unzip
+    zip
+    unzip
 
     # Extremely important
     fortune