chore: format everything

2024-11-26 13:34:55 +01:00 · 2024-11-26 13:34:55 +01:00 · 7ccd7856ee
commit 7ccd7856ee
parent deca311c68
162 changed files with 4750 additions and 3718 deletions
--- a/nix/extra-builtins.nix
+++ b/nix/extra-builtins.nix
@ -14,19 +14,32 @@
 #   '';
 # }
 # ```
-{exec, ...}: let
+{ exec, ... }:
+let
  assertMsg = pred: msg: pred || builtins.throw msg;
-  hasSuffix = suffix: content: let
-    lenContent = builtins.stringLength content;
-    lenSuffix = builtins.stringLength suffix;
-  in
+  hasSuffix =
+    suffix: content:
+    let
+      lenContent = builtins.stringLength content;
+      lenSuffix = builtins.stringLength suffix;
+    in
    lenContent >= lenSuffix && builtins.substring (lenContent - lenSuffix) lenContent content == suffix;
-in {
+in
+{
  # Instead of calling rage directly here, we call a wrapper script that will cache the output
  # in a predictable path in /tmp, which allows us to only require the password for each encrypted
  # file once.
-  rageImportEncrypted = identities: nixFile:
-    assert assertMsg (builtins.isPath nixFile) "The file to decrypt must be given as a path to prevent impurity.";
-    assert assertMsg (hasSuffix ".nix.age" nixFile) "The content of the decrypted file must be a nix expression and should therefore end in .nix.age";
-      exec ([./rage-decrypt-and-cache.sh nixFile] ++ identities);
+  rageImportEncrypted =
+    identities: nixFile:
+    assert assertMsg (builtins.isPath nixFile)
+      "The file to decrypt must be given as a path to prevent impurity.";
+    assert assertMsg (hasSuffix ".nix.age" nixFile)
+      "The content of the decrypted file must be a nix expression and should therefore end in .nix.age";
+    exec (
+      [
+        ./rage-decrypt-and-cache.sh
+        nixFile
+      ]
+      ++ identities
+    );
 }