diff --git a/nixos/doc/manual/from_md/release-notes/rl-2211.section.xml b/nixos/doc/manual/from_md/release-notes/rl-2211.section.xml
index 6689d2389eb2..2c64ea535c7e 100644
--- a/nixos/doc/manual/from_md/release-notes/rl-2211.section.xml
+++ b/nixos/doc/manual/from_md/release-notes/rl-2211.section.xml
@@ -2,7 +2,7 @@
Release 22.11 (“Raccoon”, 2022.11/??)
The NixOS release team is happy to announce a new version of NixOS
- 22.11. NixOS is both a linux distribution, and a set of packages
+ 22.11. NixOS is both a Linux distribution, and a set of packages
usable on other Linux systems and macOS.
@@ -190,9 +190,10 @@
For cross-compilation targets that can also run on the
- building machine, we also enabled running tests now. This is
- for example the case for the pkgsStatic and pkgsLLVm package
- sets or i686 packages on x86_64 machine.
+ building machine, we now run tests. This, for example, is the
+ case for the pkgsStatic and
+ pkgsLLVM package sets or i686 packages on
+ x86_64 machines.
@@ -242,9 +243,12 @@
- Nix has been upgraded from
- v2.8.1
- to v2.11.0
+ Nix has been upgraded from v2.8.1 to v2.11.0. For more
+ information, please see the release notes for
+ 2.9,
+ 2.10
+ and
+ 2.11.
@@ -254,9 +258,9 @@
- GNOME has been upgraded to version 43. Please take a look at
- their Release
- Notes for details.
+ GNOME has been upgraded to version 43. Please see the
+ release
+ notes for details.
@@ -290,7 +294,7 @@
- Python now defalts to 3.10, updated from 3.9.
+ Python now defaults to 3.10, updated from 3.9.
@@ -393,7 +397,7 @@
checkouts via the sparseCheckout option.
This used to accept a multi-line string with
directories/patterns to check out, but now requires a list of
- strings
+ strings.
@@ -403,7 +407,7 @@
ssh-keygen -A as they are insecure. Also,
SetEnv directives in
ssh_config and
- sshd_config are now first-match-wins
+ sshd_config are now first-match-wins.
@@ -511,7 +515,7 @@
kanidm has been updated to 1.1.0-alpha.10
and now requires a TLS certificate and key. It will always
start https and-–-if enabled-–-an LDAPS
- server and no HTTP and LDAP server anymore
+ server and no HTTP and LDAP server anymore.
@@ -1527,6 +1531,13 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
New Services
+
+
+ alps,
+ a simple and extensible webmail. Available as
+ services.alps.
+
+
appvm,
@@ -1534,6 +1545,14 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
virtualisation.appvm.
+
+
+ AusweisApp2,
+ the authentication software for the German ID card. Available
+ as
+ programs.ausweisapp.
+
+
automatic-timezoned.
@@ -1544,18 +1563,10 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
- [xray] (https://github.com/XTLS/Xray-core), a fully compatible
- v2ray-core replacement. Features XTLS, which when enabled on
- server and client, brings UDP FullCone NAT to proxy setups.
- Available as
- services.xray.
-
-
-
-
- syncstorage-rs,
- a self-hostable sync server for Firefox. Available as
- services.firefox-syncserver.
+ Dolibarr,
+ an enterprise resource planning and customer relationship
+ manager. Enable using
+ services.dolibarr.
@@ -1567,39 +1578,16 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
- Komga, a free and
- open source comics/mangas media server. Available as
- services.komga.
+ endlessh-go,
+ an SSH tarpit that exposes Prometheus metrics. Available as
+ services.endlessh-go.
- Tandoor Recipes,
- a self-hosted multi-tenant recipe collection. Available as
- services.tandoor-recipes.
-
-
-
-
- HBase
- cluster, a distributed, scalable, big data store.
- Available as
- services.hadoop.hbase.
-
-
-
-
- Please,
- a Sudo clone written in Rust. Available as
- security.please
-
-
-
-
- Sachet,
- an SMS alerting tool for the Prometheus Alertmanager.
- Available as
- services.prometheus.sachet.
+ endlessh,
+ an SSH tarpit. Available as
+ services.endlessh.
@@ -1614,17 +1602,53 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
- infnoise,
- a hardware True Random Number Generator dongle. Available as
- services.infnoise.
+ expressvpn,
+ the CLI client for ExpressVPN. Available as
+ services.expressvpn.
- kthxbye,
- an alert acknowledgement management daemon for Prometheus
- Alertmanager. Available as
- services.kthxbye
+ FreshRSS, a
+ free, self-hostable RSS feed aggregator. Available as
+ services.freshrss.
+
+
+
+
+ Garage,
+ a simple object storage server for geodistributed deployments,
+ alternative to MinIO. Available as
+ services.garage.
+
+
+
+
+ go-autoconfig,
+ IMAP/SMTP autodiscover server. Available as
+ services.go-autoconfig.
+
+
+
+
+ Grafana
+ Tempo, a distributed tracing store. Available as
+ services.tempo.
+
+
+
+
+ HBase
+ cluster, a distributed, scalable, big data store.
+ Available as
+ services.hadoop.hbase.
+
+
+
+
+ infnoise,
+ a hardware True Random Number Generator dongle. Available as
+ services.infnoise.
@@ -1642,6 +1666,21 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
services.karma
+
+
+ Komga, a free and
+ open source comics/mangas media server. Available as
+ services.komga.
+
+
+
+
+ kthxbye,
+ an alert acknowledgement management daemon for Prometheus
+ Alertmanager. Available as
+ services.kthxbye
+
+
languagetool,
@@ -1649,6 +1688,42 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
services.languagetool.
+
+
+ Listmonk, a
+ self-hosted newsletter manager. Enable using
+ services.listmonk.
+
+
+
+
+ Mepo, a
+ fast, simple, hackable OSM map viewer for mobile and desktop
+ Linux. Available as
+ programs.mepo.enable.
+
+
+
+
+ merecat,
+ a small and easy HTTP server based on thttpd. Available as
+ services.merecat
+
+
+
+
+ netbird, a zero
+ configuration VPN. Available as
+ services.netbird.
+
+
+
+
+ ntfy.sh, a push
+ notification service. Available as
+ services.ntfy-sh
+
+
OpenRGB,
@@ -1665,45 +1740,10 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
- ntfy.sh, a push
- notification service. Available as
- services.ntfy-sh
-
-
-
-
- alps,
- a simple and extensible webmail. Available as
- services.alps.
-
-
-
-
- endlessh,
- an SSH tarpit. Available as
- services.endlessh.
-
-
-
-
- endlessh-go,
- an SSH tarpit that exposes Prometheus metrics. Available as
- services.endlessh-go.
-
-
-
-
- Garage,
- a simple object storage server for geodistributed deployments,
- alternative to MinIO. Available as
- services.garage.
-
-
-
-
- netbird, a zero
- configuration VPN. Available as
- services.netbird.
+ Patroni,
+ a template for PostgreSQL HA with ZooKeeper, etcd or Consul.
+ Available as
+ services.patroni.
@@ -1715,6 +1755,29 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
services.persistent-evdev.
+
+
+ Please,
+ a Sudo clone written in Rust. Available as
+ security.please.
+
+
+
+
+ Prometheus
+ IPMI exporter, an IPMI exporter for Prometheus.
+ Available as
+ services.prometheus.exporters.ipmi.
+
+
+
+
+ Sachet,
+ an SMS alerting tool for the Prometheus Alertmanager.
+ Available as
+ services.prometheus.sachet.
+
+
schleuder, a
@@ -1724,38 +1787,16 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
- Dolibarr,
- an enterprise resource planning and customer relationship
- manager. Enable using
- services.dolibarr.
+ syncstorage-rs,
+ a self-hostable sync server for Firefox. Available as
+ services.firefox-syncserver.
- FreshRSS, a
- free, self-hostable RSS feed aggregator. Available as
- services.freshrss.
-
-
-
-
- expressvpn,
- the CLI client for ExpressVPN. Available as
- services.expressvpn.
-
-
-
-
- merecat,
- a small and easy HTTP server based on thttpd. Available as
- services.merecat
-
-
-
-
- go-autoconfig,
- IMAP/SMTP autodiscover server. Available as
- services.go-autoconfig.
+ Tandoor Recipes,
+ a self-hosted multi-tenant recipe collection. Available as
+ services.tandoor-recipes.
@@ -1769,33 +1810,9 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
- Grafana
- Tempo, a distributed tracing store. Available as
- services.tempo.
-
-
-
-
- AusweisApp2,
- the authentication software for the German ID card. Available
- as
- programs.ausweisapp.
-
-
-
-
- Patroni,
- a template for PostgreSQL HA with ZooKeeper, etcd or Consul.
- Available as
- services.patroni.
-
-
-
-
- Prometheus
- IPMI exporter, an IPMI exporter for Prometheus.
- Available as
- services.prometheus.exporters.ipmi.
+ Uptime
+ Kuma, a fancy self-hosted monitoring tool. Available as
+ services.uptime-kuma.
@@ -1808,24 +1825,11 @@ services.github-runner.serviceOverrides.SupplementaryGroups = [
- Listmonk, a
- self-hosted newsletter manager. Enable using
- services.listmonk.
-
-
-
-
- Uptime
- Kuma, a fancy self-hosted monitoring tool. Available as
- services.uptime-kuma.
-
-
-
-
- Mepo, a
- fast, simple, hackable OSM map viewer for mobile and desktop
- Linux. Available as
- programs.mepo.enable.
+ [xray] (https://github.com/XTLS/Xray-core), a fully compatible
+ v2ray-core replacement. Features XTLS, which when enabled on
+ server and client, brings UDP FullCone NAT to proxy setups.
+ Available as
+ services.xray.
diff --git a/nixos/doc/manual/release-notes/rl-2211.section.md b/nixos/doc/manual/release-notes/rl-2211.section.md
index 3ba03a3fd5e0..d52b27c1a840 100644
--- a/nixos/doc/manual/release-notes/rl-2211.section.md
+++ b/nixos/doc/manual/release-notes/rl-2211.section.md
@@ -1,6 +1,6 @@
# Release 22.11 (“Raccoon”, 2022.11/??) {#sec-release-22.11}
-The NixOS release team is happy to announce a new version of NixOS 22.11. NixOS is both a linux distribution, and a set of packages usable on other Linux systems and macOS.
+The NixOS release team is happy to announce a new version of NixOS 22.11. NixOS is both a Linux distribution, and a set of packages usable on other Linux systems and macOS.
This release is supported until the end of June 2023, handing over to NixOS 23.05.
@@ -26,9 +26,9 @@ In addition to numerous new and upgraded packages, this release includes the fol
- `nsncd` is now available as a replacement of `nscd`.
`nscd` is responsible for resolving hostnames, users and more in NixOS and has been a long standing source of bugs, such as sporadic network freezes.
-
+
More context in this [issue](https://github.com/NixOS/nixpkgs/issues/135888).
-
+
Help us test the new implementation by setting `services.nscd.enableNsncd` to `true`.
We plan to use `nsncd` by default in NixOS 23.05.
@@ -45,7 +45,7 @@ In addition to numerous new and upgraded packages, this release includes the fol
- Haskell `ghcWithPackages` is now up to 15 times faster to evaluate, thanks to changing `lib.closePropagation` from a quadratic to linear complexity. Please see backward incompatibilities notes below.
-- For cross-compilation targets that can also run on the building machine, we also enabled running tests now. This is for example the case for the pkgsStatic and pkgsLLVm package sets or i686 packages on `x86_64` machine.
+- For cross-compilation targets that can also run on the building machine, we now run tests. This, for example, is the case for the `pkgsStatic` and `pkgsLLVM` package sets or i686 packages on `x86_64` machines.
- To simplify cross-compilation in NixOS, this release introduces the `nixpkgs.hostPlatform` and `nixpkgs.buildPlatform` options. These cover and override the `nixpkgs.{system,localSystem,crossSystem}` options.
@@ -66,11 +66,11 @@ In addition to numerous new and upgraded packages, this release includes the fol
## Notable version updates {#sec-release-22.11-version-updates}
-- Nix has been upgraded from [v2.8.1 to v2.11.0](https://github.com/NixOS/nix/compare/2.8.1...2.11.0)
+- Nix has been upgraded from v2.8.1 to v2.11.0. For more information, please see the release notes for [2.9](https://nixos.org/manual/nix/stable/release-notes/rl-2.9.html), [2.10](https://nixos.org/manual/nix/stable/release-notes/rl-2.10.html) and [2.11](https://nixos.org/manual/nix/stable/release-notes/rl-2.11.html).
- OpenSSL now defaults to OpenSSL 3, updated from 1.1.1.
-- GNOME has been upgraded to version 43. Please take a look at their [Release Notes](https://release.gnome.org/43/) for details.
+- GNOME has been upgraded to version 43. Please see the [release notes](https://release.gnome.org/43/) for details.
- KDE Plasma has been upgraded from v5.24 to v5.26. Please see the release notes for [v5.25](https://kde.org/announcements/plasma/5/5.25.0/) and [v5.26](https://kde.org/announcements/plasma/5/5.26.0/) for more details on the included changes.
@@ -81,7 +81,7 @@ In addition to numerous new and upgraded packages, this release includes the fol
- Perl has been updated to 5.36, and its core module `HTTP::Tiny` was patched to verify SSL/TLS certificates by default.
-- Python now defalts to 3.10, updated from 3.9.
+- Python now defaults to 3.10, updated from 3.9.
## Backward Incompatibilities {#sec-release-22.11-incompatibilities}
@@ -111,9 +111,9 @@ In addition to numerous new and upgraded packages, this release includes the fol
- The `fetchgit` fetcher now uses [cone mode](https://www.git-scm.com/docs/git-sparse-checkout/2.37.0#_internalscone_mode_handling) by default for sparse checkouts. [Non-cone mode](https://www.git-scm.com/docs/git-sparse-checkout/2.37.0#_internalsnon_cone_problems) can be enabled by passing `nonConeMode = true`, but note that non-cone mode is deprecated and this option may be removed alongside a future Git update without notice.
-- The `fetchgit` fetcher supports sparse checkouts via the `sparseCheckout` option. This used to accept a multi-line string with directories/patterns to check out, but now requires a list of strings
+- The `fetchgit` fetcher supports sparse checkouts via the `sparseCheckout` option. This used to accept a multi-line string with directories/patterns to check out, but now requires a list of strings.
-- `openssh` was updated to version 9.1, disabling the generation of DSA keys when using `ssh-keygen -A` as they are insecure. Also, `SetEnv` directives in `ssh_config` and `sshd_config` are now first-match-wins
+- `openssh` was updated to version 9.1, disabling the generation of DSA keys when using `ssh-keygen -A` as they are insecure. Also, `SetEnv` directives in `ssh_config` and `sshd_config` are now first-match-wins.
- `bsp-layout` no longer uses the command `cycle` to switch to other window layouts, as it got replaced by the commands `previous` and `next`.
@@ -149,7 +149,7 @@ In addition to numerous new and upgraded packages, this release includes the fol
- Emacs now uses the Lucid toolkit by default instead of GTK because of stability and compatibility issues.
Users who still wish to remain using GTK can do so by using `emacs-gtk`.
-- `kanidm` has been updated to 1.1.0-alpha.10 and now requires a TLS certificate and key. It will always start `https` and-–-if enabled-–-an LDAPS server and no HTTP and LDAP server anymore
+- `kanidm` has been updated to 1.1.0-alpha.10 and now requires a TLS certificate and key. It will always start `https` and-–-if enabled-–-an LDAPS server and no HTTP and LDAP server anymore.
- riak package removed along with `services.riak` module, due to lack of maintainer to update the package.
@@ -452,89 +452,84 @@ In addition to numerous new and upgraded packages, this release includes the fol
## New Services {#sec-release-22.11-new-services}
+- [alps](https://git.sr.ht/~migadu/alps), a simple and extensible webmail. Available as [services.alps](#opt-services.alps.enable).
+
- [appvm](https://github.com/jollheef/appvm), Nix based app VMs. Available as [virtualisation.appvm](options.html#opt-virtualisation.appvm.enable).
+- [AusweisApp2](https://www.ausweisapp.bund.de/), the authentication software for the German ID card. Available as [programs.ausweisapp](#opt-programs.ausweisapp.enable).
+
- [automatic-timezoned](https://github.com/maxbrunet/automatic-timezoned). a Linux daemon to automatically update the system timezone based on location. Available as [services.automatic-timezoned](#opt-services.automatic-timezoned.enable).
-- [xray] (https://github.com/XTLS/Xray-core), a fully compatible v2ray-core replacement. Features XTLS, which when enabled on server and client, brings UDP FullCone NAT to proxy setups. Available as [services.xray](options.html#opt-services.xray.enable).
-
-- [syncstorage-rs](https://github.com/mozilla-services/syncstorage-rs), a self-hostable sync server for Firefox. Available as [services.firefox-syncserver](options.html#opt-services.firefox-syncserver.enable).
+- [Dolibarr](https://www.dolibarr.org/), an enterprise resource planning and customer relationship manager. Enable using [services.dolibarr](#opt-services.dolibarr.enable).
- [dragonflydb](https://dragonflydb.io/), a modern replacement for Redis and Memcached. Available as [services.dragonflydb](#opt-services.dragonflydb.enable).
-- [Komga](https://komga.org/), a free and open source comics/mangas media server. Available as [services.komga](#opt-services.komga.enable).
+- [endlessh-go](https://github.com/shizunge/endlessh-go), an SSH tarpit that exposes Prometheus metrics. Available as [services.endlessh-go](#opt-services.endlessh-go.enable).
-- [Tandoor Recipes](https://tandoor.dev), a self-hosted multi-tenant recipe collection. Available as [services.tandoor-recipes](options.html#opt-services.tandoor-recipes.enable).
-
-- [HBase cluster](https://hbase.apache.org/), a distributed, scalable, big data store. Available as [services.hadoop.hbase](options.html#opt-services.hadoop.hbase.enable).
-
-- [Please](https://github.com/edneville/please), a Sudo clone written in Rust. Available as [security.please](#opt-security.please.enable)
-
-- [Sachet](https://github.com/messagebird/sachet/), an SMS alerting tool for the Prometheus Alertmanager. Available as [services.prometheus.sachet](#opt-services.prometheus.sachet.enable).
+- [endlessh](https://github.com/skeeto/endlessh), an SSH tarpit. Available as [services.endlessh](#opt-services.endlessh.enable).
- [EVCC](https://evcc.io) is an EV charge controller with PV integration. It supports a multitude of chargers, meters, vehicle APIs and more and ties that together with a well-tested backend and a lightweight web frontend. Available as [services.evcc](#opt-services.evcc.enable).
-- [infnoise](https://github.com/leetronics/infnoise), a hardware True Random Number Generator dongle.
- Available as [services.infnoise](options.html#opt-services.infnoise.enable).
+- [expressvpn](https://www.expressvpn.com), the CLI client for ExpressVPN. Available as [services.expressvpn](#opt-services.expressvpn.enable).
-- [kthxbye](https://github.com/prymitive/kthxbye), an alert acknowledgement management daemon for Prometheus Alertmanager. Available as [services.kthxbye](options.html#opt-services.kthxbye.enable)
+- [FreshRSS](https://freshrss.org/), a free, self-hostable RSS feed aggregator. Available as [services.freshrss](#opt-services.freshrss.enable).
-- [kanata](https://github.com/jtroo/kanata), a tool to improve keyboard comfort and usability with advanced customization.
- Available as [services.kanata](options.html#opt-services.kanata.enable).
+- [Garage](https://garagehq.deuxfleurs.fr/), a simple object storage server for geodistributed deployments, alternative to MinIO. Available as [services.garage](#opt-services.garage.enable).
+
+- [go-autoconfig](https://github.com/L11R/go-autoconfig), IMAP/SMTP autodiscover server. Available as [services.go-autoconfig](#opt-services.go-autoconfig.enable).
+
+- [Grafana Tempo](https://www.grafana.com/oss/tempo/), a distributed tracing store. Available as [services.tempo](#opt-services.tempo.enable).
+
+- [HBase cluster](https://hbase.apache.org/), a distributed, scalable, big data store. Available as [services.hadoop.hbase](options.html#opt-services.hadoop.hbase.enable).
+
+- [infnoise](https://github.com/leetronics/infnoise), a hardware True Random Number Generator dongle. Available as [services.infnoise](options.html#opt-services.infnoise.enable).
+
+- [kanata](https://github.com/jtroo/kanata), a tool to improve keyboard comfort and usability with advanced customization. Available as [services.kanata](options.html#opt-services.kanata.enable).
- [karma](https://github.com/prymitive/karma), an alert dashboard for Prometheus Alertmanager. Available as [services.karma](options.html#opt-services.karma.enable)
-- [languagetool](https://languagetool.org/), a multilingual grammar, style, and spell checker.
- Available as [services.languagetool](options.html#opt-services.languagetool.enable).
+- [Komga](https://komga.org/), a free and open source comics/mangas media server. Available as [services.komga](#opt-services.komga.enable).
+
+- [kthxbye](https://github.com/prymitive/kthxbye), an alert acknowledgement management daemon for Prometheus Alertmanager. Available as [services.kthxbye](options.html#opt-services.kthxbye.enable)
+
+- [languagetool](https://languagetool.org/), a multilingual grammar, style, and spell checker. Available as [services.languagetool](options.html#opt-services.languagetool.enable).
+
+- [Listmonk](https://listmonk.app), a self-hosted newsletter manager. Enable using [services.listmonk](options.html#opt-services.listmonk.enable).
+
+- [Mepo](https://mepo.milesalan.com), a fast, simple, hackable OSM map viewer for mobile and desktop Linux. Available as [programs.mepo.enable](#opt-programs.mepo.enable).
+
+- [merecat](https://troglobit.com/projects/merecat/), a small and easy HTTP server based on thttpd. Available as [services.merecat](#opt-services.merecat.enable)
+
+- [netbird](https://netbird.io), a zero configuration VPN. Available as [services.netbird](options.html#opt-services.netbird.enable).
+
+- [ntfy.sh](https://ntfy.sh), a push notification service. Available as [services.ntfy-sh](#opt-services.ntfy-sh.enable)
- [OpenRGB](https://gitlab.com/CalcProgrammer1/OpenRGB/-/tree/master), a FOSS tool for controlling RGB lighting. Available as [services.hardware.openrgb.enable](options.html#opt-services.hardware.openrgb.enable).
- [Outline](https://www.getoutline.com/), a wiki and knowledge base similar to Notion. Available as [services.outline](#opt-services.outline.enable).
-- [ntfy.sh](https://ntfy.sh), a push notification service. Available as [services.ntfy-sh](#opt-services.ntfy-sh.enable)
-
-- [alps](https://git.sr.ht/~migadu/alps), a simple and extensible webmail. Available as [services.alps](#opt-services.alps.enable).
-
-- [endlessh](https://github.com/skeeto/endlessh), an SSH tarpit. Available as [services.endlessh](#opt-services.endlessh.enable).
-
-- [endlessh-go](https://github.com/shizunge/endlessh-go), an SSH tarpit that exposes Prometheus metrics. Available as [services.endlessh-go](#opt-services.endlessh-go.enable).
-
-- [Garage](https://garagehq.deuxfleurs.fr/), a simple object storage server for geodistributed deployments, alternative to MinIO. Available as [services.garage](#opt-services.garage.enable).
-
-- [netbird](https://netbird.io), a zero configuration VPN.
- Available as [services.netbird](options.html#opt-services.netbird.enable).
+- [Patroni](https://github.com/zalando/patroni), a template for PostgreSQL HA with ZooKeeper, etcd or Consul. Available as [services.patroni](options.html#opt-services.patroni.enable).
- [persistent-evdev](https://github.com/aiberia/persistent-evdev), a daemon to add virtual proxy devices that mirror a physical input device but persist even if the underlying hardware is hot-plugged. Available as [services.persistent-evdev](#opt-services.persistent-evdev.enable).
-- [schleuder](https://schleuder.org/), a mailing list manager with PGP support. Enable using [services.schleuder](#opt-services.schleuder.enable).
-
-- [Dolibarr](https://www.dolibarr.org/), an enterprise resource planning and customer relationship manager. Enable using [services.dolibarr](#opt-services.dolibarr.enable).
-
-- [FreshRSS](https://freshrss.org/), a free, self-hostable RSS feed aggregator. Available as [services.freshrss](#opt-services.freshrss.enable).
-
-- [expressvpn](https://www.expressvpn.com), the CLI client for ExpressVPN. Available as [services.expressvpn](#opt-services.expressvpn.enable).
-
-- [merecat](https://troglobit.com/projects/merecat/), a small and easy HTTP server based on thttpd. Available as [services.merecat](#opt-services.merecat.enable)
-
-- [go-autoconfig](https://github.com/L11R/go-autoconfig), IMAP/SMTP autodiscover server. Available as [services.go-autoconfig](#opt-services.go-autoconfig.enable).
-
-- [tmate-ssh-server](https://github.com/tmate-io/tmate-ssh-server), server side part of [tmate](https://tmate.io/). Available as [services.tmate-ssh-server](#opt-services.tmate-ssh-server.enable).
-
-- [Grafana Tempo](https://www.grafana.com/oss/tempo/), a distributed tracing store. Available as [services.tempo](#opt-services.tempo.enable).
-
-- [AusweisApp2](https://www.ausweisapp.bund.de/), the authentication software for the German ID card. Available as [programs.ausweisapp](#opt-programs.ausweisapp.enable).
-
-- [Patroni](https://github.com/zalando/patroni), a template for PostgreSQL HA with ZooKeeper, etcd or Consul.
-Available as [services.patroni](options.html#opt-services.patroni.enable).
+- [Please](https://github.com/edneville/please), a Sudo clone written in Rust. Available as [security.please](#opt-security.please.enable).
- [Prometheus IPMI exporter](https://github.com/prometheus-community/ipmi_exporter), an IPMI exporter for Prometheus. Available as [services.prometheus.exporters.ipmi](#opt-services.prometheus.exporters.ipmi.enable).
-- [WriteFreely](https://writefreely.org), a simple blogging platform with ActivityPub support. Available as [services.writefreely](options.html#opt-services.writefreely.enable).
+- [Sachet](https://github.com/messagebird/sachet/), an SMS alerting tool for the Prometheus Alertmanager. Available as [services.prometheus.sachet](#opt-services.prometheus.sachet.enable).
-- [Listmonk](https://listmonk.app), a self-hosted newsletter manager. Enable using [services.listmonk](options.html#opt-services.listmonk.enable).
+- [schleuder](https://schleuder.org/), a mailing list manager with PGP support. Enable using [services.schleuder](#opt-services.schleuder.enable).
+
+- [syncstorage-rs](https://github.com/mozilla-services/syncstorage-rs), a self-hostable sync server for Firefox. Available as [services.firefox-syncserver](options.html#opt-services.firefox-syncserver.enable).
+
+- [Tandoor Recipes](https://tandoor.dev), a self-hosted multi-tenant recipe collection. Available as [services.tandoor-recipes](options.html#opt-services.tandoor-recipes.enable).
+
+- [tmate-ssh-server](https://github.com/tmate-io/tmate-ssh-server), server side part of [tmate](https://tmate.io/). Available as [services.tmate-ssh-server](#opt-services.tmate-ssh-server.enable).
- [Uptime Kuma](https://uptime.kuma.pet/), a fancy self-hosted monitoring tool. Available as [services.uptime-kuma](#opt-services.uptime-kuma.enable).
-- [Mepo](https://mepo.milesalan.com), a fast, simple, hackable OSM map viewer for mobile and desktop Linux. Available as [programs.mepo.enable](#opt-programs.mepo.enable).
+- [WriteFreely](https://writefreely.org), a simple blogging platform with ActivityPub support. Available as [services.writefreely](options.html#opt-services.writefreely.enable).
+
+- [xray] (https://github.com/XTLS/Xray-core), a fully compatible v2ray-core replacement. Features XTLS, which when enabled on server and client, brings UDP FullCone NAT to proxy setups. Available as [services.xray](options.html#opt-services.xray.enable).