yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Files
7c11ed1d8d7b81beb6c366afdb2e058199beddf0
clan-core/pkgs/clan-cli
History
lassulus 7c11ed1d8d clan-cli: implement macOS sandboxing for vars generation using sandbox-exec 
Adds macOS sandboxing support similar to Linux bubblewrap implementation:
- Created clan_lib/sandbox_exec module with sandbox profile creation
- Implemented file system isolation allowing only tmpdir and nix store access
- Added network restrictions (deny outbound except localhost)
- Integrated sandbox-exec command into vars generation on macOS
- Added comprehensive test suite for macOS sandbox functionality
- Fixed working directory handling for generators writing to CWD
2025-07-09 13:51:18 +02:00
..
.vscode
formatter.nix: Add prettier
2024-08-02 18:56:53 +02:00
bin
Deleted everything webui
2023-12-14 18:47:14 +01:00
clan_cli
clan-cli: implement macOS sandboxing for vars generation using sandbox-exec
2025-07-09 13:51:18 +02:00
clan_lib
clan-cli: implement macOS sandboxing for vars generation using sandbox-exec
2025-07-09 13:51:18 +02:00
.envrc
add shellcheck hints to all envrc files
2024-07-08 16:24:34 +02:00
api.py
clan_lib: Move load_in_all_api_functions to clan_lib
2025-07-04 14:22:40 +07:00
conftest.py
clan-cli: clan_cli.custom_logger -> clan_lib.custom_logger
2025-05-20 15:08:02 +02:00
default.nix
vars/password-store: replace passBackend option with passPackage
2025-07-06 12:46:39 +02:00
deps-flake.nix
clan-cli: use dependency flake instead of registry
2023-09-06 14:47:28 +02:00
docs.py
clan-cli: Fix regression in ruff linter, where linter rules got overriden by local pyproject.toml
2025-07-08 17:23:32 +07:00
flake-module.nix
api: rename script to openapi.py
2025-07-04 13:40:59 +02:00
openapi.py
openapi: improve spec compat with swagger.io
2025-07-09 09:40:06 +02:00
pyproject.toml
clan-cli: Fix regression in ruff linter, where linter rules got overriden by local pyproject.toml
2025-07-08 17:23:32 +07:00
README.md
docs: misc clean up
2025-05-22 00:01:01 +10:00
shell.nix
clan-app: Implement dynamic groups and array based filtering of logs and groups
2025-07-03 17:49:34 +07:00

README.md

clan-cli

The Clan CLI contains the command line interface.

Hacking on the CLI

We recommend setting up direnv to load the development with Nix. If you do not have it set up you can also use nix develop directly like this:

use flake .#clan-cli --builders ''

After you can use the local bin wrapper to test things in the CLI:

./bin/clan

Run locally single-threaded for debugging

By default tests run in parallel using pytest-parallel. pytest-parallel however breaks breakpoint(). To disable it, use this:

pytest -n0 -s

You can also run a single test like this:

pytest -n0 -s tests/test_secrets_cli.py::test_users

Run tests in nix container

Run all impure checks

nix run .#impure-checks

Run all checks

nix flake check