From 1c52bd6f99eaed79573d20b04f857e96302136db Mon Sep 17 00:00:00 2001
From: Lauren Lagarde <lauren@lagarde.dev>
Date: Sun, 10 Aug 2025 13:18:25 -0500
Subject: [PATCH] Initial redoubt in-situ fixes

---
 .sops.yaml                        |   1 +
 flake.nix                         |  20 +++++++++---
 sdcard.sh                         |   6 ++++
 secrets.tar.zst.gpg               | Bin 7321 -> 6318 bytes
 systems/redoubt/.sops.yaml        |  12 +++++++
 systems/redoubt/configuration.nix |  10 +++---
 systems/redoubt/secrets.yaml      |  51 ++++++++++++++++++++++++++++++
 7 files changed, 91 insertions(+), 9 deletions(-)
 create mode 100755 sdcard.sh
 create mode 100644 systems/redoubt/.sops.yaml
 create mode 100644 systems/redoubt/secrets.yaml

diff --git a/.sops.yaml b/.sops.yaml
index e67868a..b0301ff 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -6,6 +6,7 @@
 #   nix-shell -p ssh-to-age --run 'ssh-to-age -i ~/.ssh/id_ed25519.pub'
 keys:
   - &system_bastion age1up8uth9hwtd9gup3v32l8dypdarj77s2lysm8js8w8mwa80rk4ds76ke6d
+  - &system_redoubt age1ftcr6legvdxc2yn2zedqqsxaax3wedxqw5ad2k2f0m4vprfc3u9sgxty7t
   - &system_fortress age1fraz2lnnqtcxnu6tnjy4f7y9tuc0fnqekzmdynnhtt0h8a230v5qddpxdu
   - &system_blockhouse age14j6ns297c49wx5d8jddctfmek0kvn8rvw3y03nw3pankc03dlpuqhvvy7c
   - &system_living_room age1kmt2khucyvscmwvrjnt0v90zggttuap9utx7rw54g9amhtrkzdlq94fe4j
diff --git a/flake.nix b/flake.nix
index 5015109..d50da4f 100644
--- a/flake.nix
+++ b/flake.nix
@@ -57,9 +57,20 @@
         "profiles/base.nix"
       ];
 
-      # Allows for remote deployment via
-      # nixos-rebuild -L switch --flake .?submodules=1#HOSTNAME --target-host USER@HOSTNAME
-      #nix.settings.require-sigs = false;
+      boot.loader.grub.enable = false;
+      boot.loader.generic-extlinux-compatible.enable = true;
+
+      fileSystems = {
+        "/" = {
+          device = "/dev/disk/by-label/NIXOS_SD";
+          fsType = "ext4";
+        };
+
+        "/boot/firmware" = {
+          device = "/dev/disk/by-label/FIRMWARE";
+          fsType = "vfat";
+        };
+      };
     }];
 
     # TODO: Surely a better way, no?
@@ -290,8 +301,7 @@
             sops.defaultSopsFile = ./secrets.yaml;
           }
 
-          ./nixos/features/openssh-server.nix
-          ./users/lauren_lagarde/lauren_lagarde.nix
+          ./systems/redoubt/configuration.nix
 
           sops-nix.nixosModules.sops
           home-manager.nixosModules.home-manager
diff --git a/sdcard.sh b/sdcard.sh
new file mode 100755
index 0000000..95d0f5b
--- /dev/null
+++ b/sdcard.sh
@@ -0,0 +1,6 @@
+if [[ -z "$1" ]]; then
+  echo "You must specify a nixosConfigurations target!"
+  exit
+fi
+
+nixos-rebuild build-image --image-variant sd-card --flake ".#$1"
diff --git a/secrets.tar.zst.gpg b/secrets.tar.zst.gpg
index 2dbc5443bf00a53958b6358448ac110bbc2770da..dbac6b9249570c0bb7c4028c31d28178173035e7 100644
GIT binary patch
literal 6318
zcmV;f7*Xei0t^GtQPoXEkO}7j5BdX_0dz58q&FO2w3>)*UzdU5RoN?lZY@hwo$~r)
z%(Bmr&F;8T1b~d`<FaIzjBvx0`V$H-S~nm+M{g?t+fn?(Bswbt!}MzsVC(BX0=FjO
zEzncx1DqbVwot;T%IJS#0%}~#^Qa6odnDI7TY$W*Fgi%}H@#30B*gUmJRU1@Uwb;O
zmZ`_3E{QY)&}ra*CzI$N)s1_g-MyhyJ3A_#YI^J4=R0@F2Y`g)k6tS&@09tr;0MX=
z&d#>nio|nXdi48rJjoO&Ww-v#RO$64@)@l$lx&!W`ihl|OVd+A<E|8-33^*4ECJ*q
zW6hqXbiLuISb>?aIA<U|hmWm&8r$3KU|)J3qPrt!u_z<BX6Hen&7ZuW)wdwp%s@1z
zB=1D$cEsKLA7*^-@^lv#!Q00>h`FDEZlNg26td94%pLI?nP0mWRzS>#kr)#{AYrs6
z&co!wf*zQdG#jdrVwZrIx29-`V=@&O+d~_3>KdHi>X^gZBP8wd<DP%;Dpp>*r*o%;
z<p$z_hF)H_qde)G$GT0q@2**^KG*+eVP8vhqTAA8Rm;H6OU!W=b1U$>0%B~5Zqjrk
z-vyD*7Lvk6S5&(@F*#vNY<!-F;>C16`kTE_>W`bJ4@FgD(f4j|(eQ7`k}0!`w^Ndd
z!dRqT!4O;OO??AVn{LwT0aM_hp!t=9A0H=`h8UBmkQO><F>#Q4!dLrdt;@qi3w!V(
z<4|jS=wg;O4>VZj36i9b?u@q&%9ifcfeZjh1<r7^Sj;~gY_i0;*c}#OrDkLNP+j6y
zG%(K@+~+FEFE?Z{A3-wfe)<wodw(?P(&b9yQ8v1UmVU52u8s<rh<>+J6!q9*)H-B<
zpKe)#oCCSE;#}Bt0*?-Qvq0n?X_uIksntwPdMlL&Qc>}Cd}@q;T~6hoGO;n__Dbbe
z=^&5b%m+D0c<w|Q;Pez3*wT<$cLo?UaI&vrHtBpyeia;<`=hwz_3OafY?qXFA#QBJ
zLnjw$ATtB9vXJG6`jHgeK!J~<C8PKM84FBKhxu%tx}c~@Ww$t!Ol-QV&(jK`7G5a4
znjOW0Iu$t2BRvgis4BkZtuEu2>#{S;lU8sHzF!qi=~heAn1MD%E}sn<P2}w9o%<-R
zOm{U3hmX#E1Sh-I1_$E=pI*;ph>5oq_PVRkD%9W;$r#J=D%<vOLWcq5J5N{q$(?n@
z91ziA;i4K*dB=W0sAQJDQ3ob(9q`XftRW<I?AEEXX1wQ913#1G?nWzOm(RyOi29Io
zM+S3^+s6;qs?h2}Kq(Og(pO|u2MO|cUj5B+eCCjnfrh8_U11O#g%=Gd5cFw%IO25o
zJ$}J2zzcB>F`xPt>ZLNJ-o*$SQQH)4sUufS#Jz{PB@rLoM@c}mAR!yTlnVN*y&gQQ
zpXK>^{;C}W9^Ktc6jhrbg`J=%@PU9hld~RuGdwA~a80ppX`c>dYq&4<N_#-<Y{n_X
zRj|`OPf0$0tR)SE2A1&v6W>>?IWeICR9>d22-nOH;fUuo0AuhpL}+Ss#FEBBIrsK#
zG56-isJ88!?mXL$9aP9X=yt+xn<u-DToEa+2N^r}B1IioG91_BjS2b<sEVOsYTw;{
zJUzHs1jr~vqec{+ScyAL1ejoEQ$7?9Mi?j;PpoMO@RLjalx&jaoP4VK*Y~QxW*k2>
zXvD=&tij|Y(BDS(;BnupkRf=_sA);ll9N6JiUQ-eG+bue=<?Nm6Klkh{q?9)uD?RI
z{e*40&vHkB=`ep<BRnhEyv*FS(z0}V;u+3#)W3veBs0mKpmz9Z4Go?9lp544iZ`2F
zjSYbjZD5vIi$Pw-XP&8YH<=NkI2KO-5;TXT)@vtT-XDE{e-BTDb|6ZuqrZmjbG7dd
z+d2`YcV&O{UKuUG1~0};-dipk-aaaxo_x}ouAhQCsCIQ;BY47P%uxl1{8On1cOb-t
zOn1rXL5n*R@1eDx%W{KpMr4y4?Hx-Q9Y%<$y`$Ig@l51)zATtzepd7PKkx@TVV}YH
z>S>|}sCX`;rM>d!S5kQ7{GkCK#fh(^3}X!`K|bz*y%nc-Kc)hv>ATaiEB~auNWZoR
z7Nk4apiNYuT-H$w#>(~lx!$$Pm?BOb?Ngi9m=bS+!GDb`P`IKH%lb?U4DwaJNNDPO
zF71{5B<xWRb?7xHgvtcfj4Q|_qP0aoI5j-@wK|`3eY)tkx;KEOCOL9+f%25w(d4VW
zUyA@0&%5QUGj9sdUdZvFJ<@~wNczz}L%7ze0Z+=y_9smmh=UDH_Z$b`xQoUp1DQa|
zfliuIPK$=*kPk2hB)H+IXIYm8ZrapQKFB?l-y_2w4+FmFmT_KPA(m_3ct6=J)lEFt
z^A@QuDOU)>UgJ$)oh$RSeNiVvPkG!1#qK$p=+3ghW6Q$E+c_5gBzF=XLk*m#BQ>Do
zLT#1Vj0oL@i=usC4K(M-THh+&?eBTGUbj7{$y|Z2HvSTlZRu-EMrpQuH{B6u$K_O{
z_;5We@yYH|U9cj!XAMXObc^PGJN_9q)hR!kK}JUI{jk@*nF_GnD4wi+>f|T0;{ueh
zcY7vp42~-gi^`;U2(EAL^S&PC?pfe%372jRJbhuu;_$;TP)*;7_90}C$JU>Yc*4XT
zoHRKw%j9FeD1Mr_oto}r#7FuD&If4{k7f*nn(~uAgGJ?2z4&~71(Gs_^-13?m>zk`
zu~6KqgeGL%RSab75~QbrN6+frwK2@P+&kOF29+%iy}A7+yoE1n=ns)F^@hHk6K!Io
zH3ObipDkq9jmt)Mwm}i~D`s<kIg!CLe-n(Wy0tmY)EyF|&dR#n@uN<Tw!~q8LwJ{s
zDz|ida3I^L2TJjWWc>C+s}nZ%Df^RmmXp+^UWA)=rNJc8l~Ito0>NgfL0f{U<UUHu
z*nav<xV8cij?rHGY<tjQWD#ZV;7bV$etoe-g8w374SBC8?xxQEPc|0e9f=rf_uWrF
zjgtj<On^=~;`ONKZ>SBH>yYS3qR`<$jF5g<uLUNz$80(@ULE_cAzDFxak^8HZKh8$
z%dLiNBy`Kr^jRkQ4Yq_Y5d}JpxOvf32G>cLn5$Jp;N0j#zX~FNOe}?tvmvHn&&2*i
zXDejJj?#tlY`rW6$uq`{X9N62GAY8EY%J(oQwE5h80U<zijRd96J7l71l-Y!nclZz
z1lN}C#ftZ}=1H~&N-c1>RDCbmv~720KIA^hnMEdf;Aw#7RaOa_JIE*UgM46>+iVuQ
zejCUU^eC2&`~VT$#$|K}N-HnJ1#6hF(Iqvqk-Hg>8QX};<w4gWpBf?>N}4B0HlAdU
zmA7oys9iaZC9J1J-6Hm0h`Y&)vD;B4cO@we3LD04^cKE66Y2xEig8sz8-~KOj(y^@
zem&I1@d#bgRW^PN0}k8ojolw?h6l+Bb}q7zUGT0sG^v{&uIt8U1UWe1jALWBF3xu1
zc?ShubG&0z9T|(Egyjn%mSGtk@SHBoXDF4XcdN6H>zv9X{a)KEd}%!@&v7AEes=|^
zo85OoqgOMN&0*(5ywABH&n!uO11Z5ef6l`xXoJTjqL>b}x7FfyWY%MN7)LId37iiT
z*Mh<2lcE7*82V%a;NpvVV918(_5U6)w{G5InBQ;9m)d4Yx<am4S^;?^^k}a>sxE@L
zSfW({<vPAZQ?Uv8cFI_yQ4LS?B6+o^5G4x42mG(xpu2j$Cf=^3BmN$k!6b9w@1{&a
zRbLM{`(s>DvYb<MSbSRi{$@da`aHjGPzV%GmkcXBNw9w}u?id2QLZcbvAAur669zD
zEg`Y<l5g>_-qZm`K_j12V7TZ&;UmORZEOj!ixDIy3odqn@<INUe{g&@??``8h(-Cz
zOMlj}bF@}9GX2r(c@^;0n+eGx%+>rT`Elhl{%5KvYIUP_yBt)naL*zHIaA1mJv{=6
zQTm4tON_c(Fv;uw2{5-<QIT_V2(dK$-byhp;Ka5k%jUsPS?=R7b2%sYCVGYCBZiaf
z9}=bCN6jq{77PeQKpG%^v!PkJbQRr5BLKxyrPaA;b6-W|ZZDNcXVgp;WRAC>dKWl3
zdnij_5g|%|EBfbxdZD3EV@ZE>81ofJGUKAw=D%Tm(ev3g++w7l+YTkJt_}wzHT?Jt
zp@0{lESu1}U+K5$R0C<J4S%84fNK2ICSFv<jmzc#G~laTD&4no8VFuI<dR@(vkxKY
zC_}8$KQ%c&QO=#9tO%P9xReNiHE6JqzhPl;>TFadWNvf2(Z{c8OXtK{Y866ZuNmtT
z?A_$h(t{0_C2jGea`g1Q{uJPs+wi}xx~%R)i9+09ZKX7?N2e;2le5UUvq+%fnx`0Q
z6%sJFP?9TY4|b~HPx9Cm$l5fKrfD?BtoUG6!Dxa2nV4Y}HP~x9xKAlhOF2ng3pCib
z2ni@d>hPiegp!#t;i%kcW2SY3ZE2nXN^OQ%xa{jWJ9br6&;(<52(}%pCy*kH<|B2-
zwD6eM6v4Z#>lJ$kTEgjkasQfS^4TOd67+5<yH{a}QZWfZGVVm;VDH!>9VQxL1QsjR
zzkgZZ(FVJm%_rSrQ07W(@LoGMgpio{M9*V(lZR+ab2k}5csk}Cm4V1%)JrZ%J03Qk
zz_cH8L@axtN!L*bg%%kcPi}r1pj!4!Ok0t*%1HRYF<|pob{##fFl~b~T}pA+;8*Oz
zrW`-D<+~WOzTmzjdRZml^_XXm=!fgt`WoT;ABZJ#)N2ybovo$Ku+8Z-5GeAB$~n?k
zB;^SGAufycO<`wiKlI*`*}fr6zv3JrncrU?=zHhxX~Lr!bA%^w#i8>~tI9H+IKmmR
zUM+p4eGn=EO;~r{3y~#&C*0bS5GnraH8aIiy_UMu$E&mjYw4_10p%TNdP#3BtQ5=;
zXf=yXYnH@y(-1@ZCXD{RT`~sevp0tOhM1U()a8_C3Nv!2Kc9W;Qc><2_zh9|16>Q=
zwTJ0iD)9*S-j<&-*XTVJ2EZNh_;}@hhAm{h5?!)I)$L&x93FQM0x|h2^kte7#O`R#
z`8*mx5(=Fl4^Ew;h;A}hs9sQhJhNq+?qkY>&&PGMNsYBnO+ESGtZBV9OWWYUT#&GY
zb_`qyUhoe|wnX;^vzdL{0c3Bh>7O0%bLh<1Cv6^E0uMkbIX#FRESOef9$ec3M_vt9
z%E_#VYzKhcTIc&^O}#eMKIRSVORR>CyY!Hv4#ImG&A?CQC5LUcQ`%g@LN%GfSq3J{
zM#u}*M!U>28#hvb%aAFNH>H32=_;}XKY|w`hvSXpubNIxGC<L|sM>YXHK#Yni`i(b
z6+&e(@3A*k^FOg0nWT?Pz-C1={5BQj;?qzYrbT?wQc}h15eZ=|eA^y4t(UTq>UN?G
zfnn@i(-Hi^<R~ReJwxerCG23<_53PLP(2CMFU3!}1BvE~42*sA_1{@vX?c4K4t)B8
z$u{ti${jcf?!FLo=`=$n$;rrh0CAQKxM?A)9Tc4Nk*7>`XY6b{s2;6k$+U9M2(vhB
zKl#nty|-2+7yx<@!tVe1F=a66c=m$9b}8?6uri9Z$6=q}w#@Y-<j*TZ`RK$>!~$4R
zWZ`@{N)ASBm;gWfhddzFg-Y^W(_lho84+YE_U57}F3mELlW4vWSV~T*s?b-aHO6=T
z?Rt`U9{pPeUj-FgSQ*+;f%pu_CPS`yyWNZ?5?r}L8V1}%RB3vhw)CcG^-J-ggO70H
zryMboM6g#n*bClvxM$$PX$w*YS%@lOJ_=76Z6sJ46Q3B)Zm)tS_E?#%<V(0ybH6Jw
zip=?vUWcFkd%@V<Of6C^-w;4izaS5}gDZ<U5~ckCM`{URff@vZBxhNKjZ$_AuKigK
zY)M>AO<|mZoQuz|rL<7&ahDlz^X|T2I~>Wro@LJ1N7oXLUq`d0nVGl;Q+F{Hjzj=K
zsJF-&O|?Pm-TwLah_SwO?Iir*$Ke2pQwDVXH4Z8bRIZqeeHsNy;)YNn0Ydf?4*jJi
zp*-j=j#eT8(Xf!lvzvd^7+}OiuC9qVl0Qi<GHZJSz$JO?ub_D8q?}=GT1aX?Um}di
zTt)6#NbagD&ox|bY80KyEd#$M7HB(G8G3@$Vex?cU=m2ACh0`B(&#Q9MnaAL*L99~
zY$ulmu)Kbdl2YoVGLKEa@d*9PSTT^wFY9*)$@K;=I)~%|e_#L;&8a!)VS%g)mQEBw
zhp@th?BxXR)Cv5f2cNdGdj#4==*-lTSVdEs4JK9xsDJBxG3i<5$jw+dx`0H4G1C{}
z&q(vfv-FLzObxB>88pq&526WyzO-mtk<^2QJNuy-?v)FOXo(8SPV24rr07w#S$bE;
zclo?mZ)phe!w^2}Y<ECS&!pboS6`bd2A~+LY<>B6!*a9HKvnSLFpu6#PLxawUp$oh
z727INQJ>4(TYCf%^i&2s#Zv<;7)TtA+zM;7glpGOF~pD>SvknOH{B;!>O{wmBS-yb
z3F|H_x1w$po;Lo%jzB7F*<S50X<vj2gaI_<Ndn0$?u}91V@7~n>)>aQ+&jz<We@pq
z_|O${%`F|P&q&&FyhR7#1W@*GT>RIJZv`ZyP=Vt{!+a0(R~RDVC4kG{*j9iIKC=+?
z&&xy(x2VICT<wDHn#^h?fUP^pqF&{w!0X&&Y12&bg<oCz%U;2(jS%uKgt%}SFRup&
zc%?R)+C9}AwO6AzU<0o;2e)-kpVHKOwAc`Vz`@z-vJGb>XsM!bW<L(4ZM3*Znr6BU
zqU>2==6ph^u9m{KmtmieZY}{tyvTcmB!FDIE%N$9Ac?s@{BB4A1paD?1Xy4m`!ICh
z>})vndb5Pu0%ek~IqHYA$Oqd%fI`LcA4_$_IR91n?vs4<5jPG9nbX&ipOT~2MS)}Q
zBGeNoc*#ZLrEno$aHliFtYTJ(FK&eo;_E%8$H6B-xt#K+H~38`_9PqOiF)qHQ&gT+
zsiRN1T#&^SN-<@#xzrjn*6=;`00P>1BW5si6N}FWDf4N<nmR2=aptQXi%nd;yKEys
zt@nMTrtv1@8f*Ip8cr?`8-Ln4$ua^%%iIjyWkWk8b_SONNn@J*B5nlatp2c_!Z&}R
zg>8Q7Td+K`T8B9;hXD;ELiqqyRibb_4<viVra0&_6W5g)@*HdbGuXiKd=$UQC=jXx
zcP^BbhpKcCM5?DTz%9un&R7(<x=>L&Z9~pIv8NKY&zX#@niiD{9M%Io49~F*+5iUn
zKrrUX;-ilUxy1yq9%l`dzQ}WE=Y*TnK7+g_V^~Q1-+Xp&oTqlh)7jTsr@raGf_N8N
z&O^2`^`X@^W_j^SAy}c`WLd@ayiw!8I8E_mQLe-GV+Jz7)e@zwz=zT(&e?0n+usE8
z<D5HsE?Ozt4McOq7<4MIhbWlLx93C(M!4IbuPa3qGUpK#AscUEbhpsyo_Lb=KE55`
z6^+T+MewuVVpn?%)<wft@QX8!^cRuAe~{t}xMdwSaQ8nP6iuk_Kx%G>6x9A^In&s(
zCdAiono2!G8QuJG7O>l=P(VFSW?(v_9La1z36V{{5=%zOPIt^xOfatIieBd0%JR5f
z$1sko&F7}sOG8YA8$v7M&i8FOGa$oDCUNg*h`BdTuL0XBe#fmMDkSdK2Up0)+5}M4
zH!9W)HmEomOvL^O(E$MM{BDS#4{_eMK(EsD4ZmGV&ia5k>xx`hG2dNG$ff+|<TJ(&
zWO={$8|XkUdX5p$xLcVs%Y2rfD|~duXVNiYl%(hDls@hlBZIXaRXMuwD*jR?up)GI
z&Q=c3XoYoT3&-x=v|h(4v={H(ikhu}a^mG^-ULb43~f97c7m&E?le7#e-14-oAgLx
zq3&^5mqbm`us&*Q0)JIXB*NK(4Ek_XT0;*IUbQhq_)sHj%o^*A!)hviII3W~Lfma=
zJo;E*rJ1`O()N2qMdDm@>r3RWkBbdw)uH9s;RMZS6U{8jfZ4KlsxKTIiu&5hz6^`@
z*L!i9C2m=;Luh76eV|1U{|c$41i^ph45TFLCDOY}`s>vs9~IG=7zHX9koi(vi>MUf
zLRT0%|J3iXt~-W1zXvhJ|CCJ!>wz}K8J*;%5b_)nuU+5Gm^)j*cI(K7I)_~fXi3bV
zVIoy~#{q4A1`V+N4)Z>oaWopw8RwNC0!UmbJtKl9>i(O`UhX!EBCn|humT~D)2ho8
z9S_8>`sg93%@oRm&sp7RzcK4^GQS7?pD}d$o5vY{<Xv-H)P-|H90be>k&-)_U_*H*
k4sS)f#y)dB+|wC-eNm|`$}9)7gJjH{AbPx^1(u(d?bLxOcK`qY

literal 7321
zcmV;K9A@K%0t^GtQPoXEkO}7j5B(K06cg~kKJQDEV}bz$$by*A@L$R)uqXIh_)Vw*
z0=ZX|b(v6mOpFV~Fvf~fmvh)=M5oc#79MF$CBpXV#yKFYq~+XrAcd0o3!V?6s*Q%u
z7zITEEGNXqcP*EssiaV7+MzUy?U8nL|NFpP=FYT|CZJrpk%MTj<q2*7M-uc!#x1yj
z59+WPhjhsi4HK}SMwjgzFl^W|iO}37N_V+mklm6E5!gwN_k2Gj`~a0%+?(d|CoOUh
z&h+MV?g3C6EzFbM`#Oh+EOhiG%gqfKj%ZQC_oym+kLoVYCK~dKF?pv4YJr8^@W?g!
zzTs@Vw_LucCe@_(IIy{5H5i3l8m<O**$MdYqa!;&)S>80zMd0?7vdV1f-pfHQ|i0g
z8KP;u2dVCzLejH31{?1n-OsJLeT@W`lruUoPvo9OKr!pNY&1e7h<XUzQ$YQpvkrs|
zEUPY9;!U-FFLn-bT;_m}4z}b)<LHvH+y6nt0R$CseX(UpBp&+*lC1~W1di-x$njiw
z&+}us$**ru_3@lo%#vlPEJTJVfJkJbdXGP(Mv^_&Kg}Vtx4PQ(o7!U_hjl?&>->{<
z-HEpOfO0;E)InGA=g_*cLAu|noI!%QnUhoPSTBeZ%e-e~7mkBo*cB4_oe<njT%`zX
zGnz<c!iy1iJ-|(ro5s@W0e%YY^PFJD8~8$KNkg%%AB73Cje=6412O1DFck;1Wih~a
z)VOlou~q0-%)<bv+v$Qb_)J>3Hf8wDqC!lJoXyM9MEP*ThS+<ZSaV&`O)<mYy_Iub
zT^eNfs+pN7^8-fz%eyC05!4Qq1Kq<^Dd)?Cv*A~H5B7>1y+84=LspU=uj*8LvPy#4
zPb1^fz{$W8f|0r9@LE?nHnBuCH)L2n=_I?&2$xVqwr|kCJEGov9Xs}$74JDm7f5At
zFy4NM*o9X$xy+v_rTW@$wA%@hd{BD%*zC-SOa(a6@Y*;UT-z7zvBT>zvMTV)i3Z8R
zfyA}eY^u~E8bUF+>TrCtN0sQfx(4{}qJlayadZ~4U~bD`neqMihWoX|YI`DL;D<XC
zcl3b+k@@pJk$meSM7f)Y(6a`HnP@5pGC}fJPe}8b1aCZ|^O@LZwU7AWI@OH_4SKRI
zia_ra%V1koNWgCox>nbP;Yu%akcg1&htM9aA<QO9kQOZ7bAkDM;HZu;b8)}iYm>FZ
zd)EkJG;Y5}tsd8_5@`i3vKc^@iMe$DuhTDHt?oK<1anM;rO@e&;woKHeWbLnRj5z{
zbaQn+iYIq7(GC)f<~pc`qjvrys2opxI-E|}T=IhklPkKV5LkzX`ZpSD5(^p~h~eNi
zSfQU|E$3{@vl!bjCwtz9X|v)7?BERaLN^JNsZKiizEp5iQh6_}jbw4P6qz#mmiMcQ
z)Hp#$ms0rWI^<e$Vg0hae-0vN3<t#+D6}uAYd=Rpm?Ehk)X`)67~;ilRuDTG5ah2I
zgH7*k%8l6&;K3`jTDOXXsIl8?TxS8nCL&84Wd-POXfYSl3)+UoV32T0Lv=Of77(dY
zm#qK5<bVEs4R#=%Tzo-9uf%bxUDXC7^de#$qGnW_2#ls1tcLZRE|w-x*?MbE+gj^H
zth|zJ-3r1qYd_ZZL;R51+iuwR*|isYA2dHrb$<TQ+}}5%b`#Fa4mJg&C|vzO`y%&(
zB}A@^gXJxT1=X^G)tTc-yjKQx#GXfuDPw|_h2~()hJW`&A&kjCz`k3b$_%GW>>>Y?
zftii~D7=Y&n|Bta?D&wG&j`ILl(c0!$YOpI7NB74q>XFj#mVn(#cOnU8MVGluz={B
zC2BTiyo~D}INrFho8tp0x;FBY6t=+tPPKXfnzJs(w21q0XE$wZl2}v?b?`AwP??4?
zsGU89<O@&Z0?50{&Ka>|EISvSdBxEtecZ~n7~~p5-Ku9ti0Xs#+D^2X2CgG_C0?7W
z+~|KdQ!9Zei0Fi%i2L>E7Yu3ZEjsER5Ht5xJvdI*EAPTbYgBZymq(v6`bcA2F5c&i
z>VJ1XVB8eQmzUXZ!`%Tdp|Mw>J5#|(IAaH2?SXanNp$jzC!dwQY~`Wcd`IchBjrm9
zMI$Om8DkWNUbVN!uCAjy*3jNx=8c&&I>f<-<}4qqmmgi>E?`g=rdV{tYGi-6>t3?=
z=XBlKO!?nNTOiUmFxj7fH8y6QS2x%)+#DLMMu4-`hOcrKz%ODbp+YpjJ|3V6wjKHn
z1eI`BEU$6Z$;AP$4ZQLlSlXoQDPiZPxs(ams_DG_*+v8VTBPR@g%#Pe7Y?S>>Np*<
zToW<RIG|W}zz7o1AIXJ(xL^}8flC&3kp#(xDEx3`V;)|k=Z(XR%q^C$yvwjuJ!aSR
z>>Eq7pMf@q-u%#?a-UdTjYTM223CXT74b6wU#K&8tPX;|%v0qAj7@2ld%ISPV8$Mi
z!w?y{>f&Z6F<O^UQ0U;imQxX<)@6TqFA&U7-<6p_e;9D)JcO-Ym0?}kAoviQjOen%
z2R~Ob3b_{Pgt#{tkx&1kus?fGyMt|6O?;xm+*bxBWze0IddekA*4G`oP<$eaqqasl
zEXVHP&=Jlg=t_hN#qhAvL>tb6gsQOCDdkTXn~h^akjqMvi2iN<gLE^UL~M0$s7k7m
zP+kj3=i$))@LeU=`F~NZM8RH7(23iGt(P<q4I<T#tzBoQPoyypKKCgIHb`2S40gLU
zV1YcJH|#0R$_fq(pK9$%M{T-gkzengznFzkEl@+x(1^z~${@Y;E$|J?M(ZB~lm>hw
z{BFAT>l*0GzG?2#Y3x|4n{`g%DII4}WTX!=h-nW*Uz3Aspl#!#WK?{2B$AgXvrzV3
zZ=se;5uu%Fdo>~kB={Y7T`t}eBYupL$a=rk<*GH}@RK{(;B5pA(7VA@EuuNyKFp()
zVhCfvZ?+z>6tv)~5lMD_C5Ml7!M--j1UTVs*)_>EF^uH_=823Q{8Wrd^Shh#x2^_T
zRNV<NzQv$=fF3#g#Ku}z|E}Q34!h#1{C0>iFZw|KSn!&6Z6o7tNULxZ)%%;Sy@BIm
zsMyoJk-;Wec)-Af&e5eSkTxeg;^y~70BlTD|NRQsQ@My0dyy{d#PuyP&7#mPR@Cfr
zK5Wm}p7WU+I=D$D|HQd(3a*3r60q<=aXUcxP3fhQglLHP*K4-yWTtA)EPfB-h5LuZ
zFe5KoYe-870AvUg&dv=oYJZ$&1MX~mGXavs-*+CFK-A^8qbBK@M_nMU4XTd(NsUL4
zGCEJoQ=Y77t}GoRP^{<S+`Dd=T`UX~0Mg}1WbZtPiZ1&ZDb>;DECoxg=ajmjM`5^Z
z=^Sdh=FReALe6n^my+8p%UDbUk+O8UAMnT7x!e3+wmdKL8S2W@;0}f=8D{NYt~2ys
zWBlx6aIdL)^~9xNb>W^mGRwpW0fSJGw@1%z%ek$e&KXuqI1NK`!qbOy?hUd0F>Ie9
zw`Lg6QjGeu9xx}pZ}|imW;(v)2&|(JJ$N?OJc%@u>f(5zNPhE$?I!o;$CK>x0a^(g
zR;SHEE>CAL8yKfQY}tpGn5I!MLKZ)R#kM7^)dP)E3QEyy!1|58{+Y7VWS`;Osb9f-
z`KJzTf`E#*6eaJF5|kF2ogVR?Kw-X5qs=|0EVj=PFlv2!7enls*hQXVj;=rtlZo0m
z&ULF2Dwu=FDpUG(0!Im?pqh#modc58lBR;=HSxnsH_K9YZYk&`5E8A;+9H+FnstzQ
zj<@$+`NUSpmx=>LIWl)seQ-O^^$4V(d_J9-q-=KT8E~!&^&<`ne+GC7-5I<|q(y?U
z0kxE|Q_cJ4IwI{RucjXy^od$Xyrs<k4WFrRA{d#@RyWoR-4U?JUUD|1t6a4`h~1c-
zpGxJnSPG?FYFx)5v`*oT8rGhoYAuPf3uOiUayij4iw-{G&+UFP&h9Co#8@43+o(6I
zM|8FqNr3LHLW;?<3Gdz8qcK|)H<u9m3(t1}v)F$&8ZJ^A>;7c!g3)T8%|duTsy6BH
z{td2Q=X~xW(rBxtkg}?VQ!P<UM&b{S^!O}kechn((C^asE^wcv$ohjsk9AOjce46&
zNj06HV<{@Ta02f0ND9=K%qBd&jFdoI0b<Z_Qh~`9P%rib1*n%7KVwWPc_a)DvQGYb
zBj$)A{^6G&<n>u3yl&9xWd+4>VU$D>I5q2HWN@&|-p7)1d?i=rNU#<uIMUp}<|p|u
zWD)w~&n(fc-={;7(vhC7j@Q)%wrL?~z@y!IvZrC1d5IlKKNCWMUp`wrZE8IbN*>vT
z%+jku^qbUR0U(50GNmTmFRFLYI{|`1R9kzUc>M#ep7n3ow}YS(+o`#cayySE#QaNR
zo7eOH29oaN<6A^WEQou6k>ij$Wij~e1GDqOZmMEjCYnvSGSz2D7*w}Yr`{1Ai+JK>
zwGV@0`9r{3OYa7Zv27dH^+Mn$c_%DZinZQD->87)!gSU_^uuShx28X@XY%G}xxvg?
z!RKV&HmGhdCjGd&$=jU$odj9KP`y`d%ygHsi#{C8i+9r=F0`7g<!Hqs`(u-7JqntU
zGc}X8U@RJr&%QVe@+oW;W2@(^PX<xhssM-BW|)24DeVewm|=6&lnA}6aIJe&#c*x%
zpp#q%F@<l>`Mi>>Ns8L_;$Dlj$s~p)U5FS&=9^#ATO;L@1y6lZju_#5V=MnbW&Y&k
zTz^%{_ETRyHo~(qtAsSR0}R`f?EUN8#;HZ%Q`tw?>(IIS)Dw)Hm)l^lyL7wHv*<m}
zMO#b*#ucj#)FRStvRajzNQNZ@wdJI}oRU1T9M4-qUguKkP=B}Hwxng%BPqUp4nf@E
zo)lnc$n!Vlsze=J#1sg^ji_#*7%iXW-l*$=#JQdu-}tEY*kmhSwGrPZ2{K0ozKWgn
zDV$)*O~_G>Vl1-&$#W3H5u(;)gwXR9ds%T)Lqjse9YDZILbraSK-zr=`GkxzDR7+;
z+7Ww`K)*L#<u!}a@M|NGo{8}>JYDK(n>2#NhVR${@@9ssv>mQ8P#SZ~Im!A2uVxss
zh&~n+{}0^;;CLn2n#%~m)+@9um;BZJ^zkABK6akTgXI`5sH?3xAf7wKGBCTyl?gV#
zGM>EW;8JsJG8tL`eA!dP8taTjvQsjbYGx&#x-1nuvwl;}nOwvSi^zs`-poYaib7&~
z-A89)1X9G`*zkZal4hUl(ka5v<cy=8_BcjcSa0;`7O6Q1fC5fyT0!p<s*Sz}U2g#N
z=|s1gEX}J#;8gR(>L(S>>8_?!#4NmaKI6eYz85w$VN3WOZ^0?W3*TSvOQ6!IH^QL+
z>O4BvvQ#tq2Jzbu+7%O#YDy~2XbmUD4&{fUci~*Dg`Hr<Zar7&hqmFA6Dc1{OOQUt
zSB=PNm6c=;q>k8wR*4#lwPq_Bj<QVj*`e?1oBZ8*09Uu`nn!X(YhQ&`ey>8DTS63#
z9J3U|oZ^g^h^~)8)0D}nKidpO&IM~18hG>Z6WNo8jBs@C$GOX$I-#sQygY>&6kaUX
zNF5-X$@v}TspP}ogJS$(G9X*UU7wDo;RHwr=Xyj(s_gyld(qXSz|>H~XJeX8MObUx
zqT_H<Bn~VFqp2-?Pap`%pJ<eVLLPZOOjfeQti3)l3kOpI`<;yc5;1b6tB+##x&UWv
z=uB=!Ll}l+pbuy|2XyBlqXf-^Y-v4c!n{8=A8oQl^5<byQ%=V7R45|LN(O7-pgz>1
zV=^L@D{*hJ3L-6c%pnN>)!=8kutm1vEIMnP|5dEP=~Qd%>Ep+|SfG|f%<0Y&dEb|=
zxvc&k5q#^qz-GNEuO}K6ACjR2V^UI{NyJ+r2cQDkK?4N%>&{O1Qqhc?(3;k~^T{bJ
z&7@0eh0j4w1kH*lUXzOYZHiKu99<srnODiKTApl99-e6t>iTOms6;cy^tHPsTm#({
zHIc$;6byLLXRu|bje*5Iq4Xoa?H2>wVJuv6FG;x&sPNfgus^>D3M%?w8-usS;ol{>
z#JgVB)xF6D$u%kOZQ@GOHGUVI9yU-Z5+{QRhjI~&DW$Djkc$b03rJVAfT-mdoE`0G
z-i1SGPy2(`9}V}qv<yS2PEjvOhU|%>a!=^CM?0&iGc?L%toiW;$m1D?ZA7y+m75U7
zr~HSkX7l%KFrAuN=iLdC>P^TO0P<+eJ*reQnJFfcB;!Oz)^zW%Y5RBQ`BZ0ZlDJ52
z=SC4OE}&hG@?cVnkJ5q@vJ#2WEn)g-VwM@smkgv$C@Pf?YeHbC9(848-q*;J5LP;#
zKzt@&dmiLLm=m@7Jzi|v_{)3ULNz5J+*t=~zc#+>P#{31s3_TUf2`fNl>H5-+p_b*
zAqZZk;$NDmRdH-2(OYHUg$#u7q!xG*I3+8VxpBPngJ64NA*^m%HU>qHe<D2xJ>^~k
z$3bs*Ez^U@QV0Z|-9n!G#ylEk7i0OHa3^Bed^ZmN5-gd4<v+@$=|ow4GkB((H!VIq
zv-X9Kf>@-i9a`0CJA>Mqd%Dq}jq}&laZEdE;3=Z^`RTMi#I1%(ElxgQ91U|?IC7V(
zGF?b<+qo($^{sJ(H&Oh@BR7tRy|nYw0b;UoCGPLNG}Z+PX^Eq&hr-x#UiQ1;4hZ#9
zi5cP-=-7=93tN~*QkW2xW3OH0KSz8F-kEX{nqW@pLEigLC?Ora1^CIYb^|-^f6gD#
z)+B)*-pS)Xm_-%a96sriv8n^w1RY9bM2eZZ7VD{QrgffFIkhcw;w3&gHyuQ8m(LP{
z7}+KQHDU<~EY8=#Ck0P=gbp{kDRn02*zSGgr0M#j$4b;WZd;NLLGwwcdmx$$yXBT|
z)ubtwn$L8(IO|C=I?s}`1cTe@7`4Z1bGcof;bU~&S1$CSRtElTY!4V0@1a~RGM~?%
z6@WfjW#Z7i8epyI3sib5PbLf;4q6}hk49+!AAL(@^KjSe7rj4<qQYt2z%xCD4^fc6
zqxP}Hja_by(b%IXe^e3_jK5SwnJG90WmYqb+NKg(E9RbY-<$7!*qaf|%)Nc14GW7$
zXFGxMh=AO4=;6RN_VI_~JsR#DrXACuCU^W~wH)~PYQn6@c`sm5{X;g^*~RJ2kzP=g
zLJ*r-<mEVI&c?AtWMd#P%xUhkUx3ty-m+B1vpch~4L^MkcydD-f^Fwy{~0%F(m-{m
zL^|<YL<@O=**EeZz38=88bYJ1UxT-s=LYcqv(-)1uct=CB*LK<!*ZMI0E+ALo!NRj
z^Ox5*c%>%E6POO>dhKPDcm`MlvlUjRIH#P1-ZXEAc8|%U7yTup=dT$7&JRHxx>M*V
zbQnstsS6JD+wN1Bap5QhT~Zle5=j7Z#~X6QT^_z)xmwv4N!@qTz6VxpJJ0r6fM-%?
z51#rU?l_ZnqobN_ov--yfTF~4b#IJ&+HG{K$<(g^%8#N6Cg4`tZ)1z<GarwuxAYsM
z4&;@Zm9Z(o((&3qVfMdlH<?mGY*a<JbZ?TQYOo4&Dx6=a@ZBqfwj+mISd5!JTq(#6
zF@K$0?@2gtvopXugSkVnG$O|xlf9FPvCIMz2d8lr9vc25xB#@6V!Q3hg-Fp#fXc!+
z*=a$xZu?K_;ykppwgp`L(_*)Z(0dJR30m(Bzl5H1%FNdZ5ymqsQDpZ4l__Qh3kxX=
zxED|hr~Rtsv;X@K!i#?GgOy{JX~}Zr?E$b^tM23Ig60w{h>!&ss|a|y%VP^~3{AsP
zLC%QB;=^j$K0d+|)=I%)J@{VQwhTlDogPpzfopPEv_5-1O)AOk8)Lu-fZT`@?k1UU
z_44ogQ^o3Atuv*kY6X%^;J!s+bQl}dOg4X0r*G<DZ2(pqn1H#08B~Vx%jV6PaX=iZ
zW97n>is2=?6!JuhBsoGAJ)%hr7IJU`XSLF!e8NmLWR6op6y*as`ZsPs*CG!+k%bQD
zlw`4d6<9C0p%WZ?2Z*75m-5Mo^s0XNCcT|9UsH?jR|2uWha_f>aDt{MvRB!__UQ+(
z)pC_!A$B-4K}J{Vci3AT%9-<N7c?d#$eo3cx^yN>Sff%?6cmVrh24H~Y*ODKe77l!
zFSunDzxyg{@EUM=u}xYlG$F_`Co^j7_4V;8>yRX_Cpe&UFB!|Xh5V;VcqvBYSqZau
z!SC=$mu^~qI|~0Gp4clNCJjOoa0EvfIb;*>BcdCj1uw0!LNrh*4Pg*?s%dZyau$Pp
z35cHSwQjSRVD?S_fTFngsb3mUP+VH@_fN{x*FcUBU0+UL(}=KP8^Y_w`6p5~TG~b5
z$407Of^+O&dpX!elpYJI492F%znJzmEcemJ5Hfaxf9|o5LxJ=KL+VKUx9tZ|q;z*S
zup3g691VX`%D&Zyca#M+xz#L5OAmiXg5M_^YqfZAE!!gpP5R64mT0O;<))FSjAt=A
zNsR^BDfK;K&#6#Ylve{j_6TLhD;?`I@pHN3&k<&v?OdMWLyil753Q2qi9U{_xSx$A
z57Fs{LyqkBsnNtaVhcSjKx5ej&3jzRAt=|Jxv9(gu+7!FZGIJc>ELquo(?W8J2+0C
zUc&iFnxknK=R~$Y6@{1Lzw2LYtJgvgJ)<G{3}lr*{YoiE!f!Hf=3^RK?<lTDO^W75
z3l($;2qXr3m@IrgJu3V(iWH69SiDe2)aQUFj#wO(LSCjkXudQo8MD$itU|g#)j`zp
z8SW_W4(0^B<vY*0^I8;I4PT7j?_ZT+R=0dwX~>j2xZ_OBj**mGW2|;+64-p5ffbZ!
zy*GKMOo(2N(g)t0yeT$d6^1osg|FHgJG*d8>DKAWdfrRIzS2npUGBe6W$4EVBwRO|
zcWJ>@RxCVV9|4aD9R8|mxyF+=^`}ti{WI-zc6OW5L0k*_cTw6nwy!=!N^&HKeybgf
z%`JbIvQbuY+>ev^g|;XIDAjdNaEY>NIj0VS;j@EorpAYRkYa%a2}*NZ%O#S}%(-Yn
z0b;F8=^7UlmRn)K7XpdjwWpm$R*%bS{aF@zKUz;86iKdLABu?;+>LA&mn}KISU4P7
zEOZ77Yq^A?EN5R+!fg>nbURv*0$#Z{srnB1UhI>l`LkG*r965_FfLRO$hA5isPq|a
zVh80%5J>Z4!C0Up`CcWuxG}e8rUq&{lSW=*86YgS6H6^m{jH?&#F}C@PJQyHN1clb
zGWcY3MZ0(T?iMyCG8}8X8r*<iU$zOr8&QRNe8;2uH89DEXWg%R=*jKQH$>%tmdmu>
z`dJ4}OE4AROPco?7{Tgcu+w?i1`I+HnrAZ$6R7cLgyvcU8<(7`m1pDVxCx~~f7X}C
zJU$>`QPvcA`!3w&kks5dd&^yIkKvG!^EO(Ki4{f&V*NQ>3aM4IXVAE?)Y^tQ(r{JY
zF5zDO$d~FHx3&RRt4!OQzpQttd*`Ki%V)<Wy*|EOBt<kAuiE=aBv$ps-KZl<hN8Dn
z+vxVN6Pmo6+MWe}!5EFg+gC$py@J_jBa!{*0ZB3gh5}5bY-qOgSmsxbE-Fxu@4Mgy
zY@J!{oZ^`NPP+x)_x2r`mh&g|8cJjviqHo8G9$%oZo2O1<MOT?wmVaT^cGjIX?DIm
zlKi`Iek=PCVD~Un<HXqw;Cc5&(z3Nr@*oMM$3W0{EtId_<R|-}r_9_G+VtEqnP53N

diff --git a/systems/redoubt/.sops.yaml b/systems/redoubt/.sops.yaml
new file mode 100644
index 0000000..a168aeb
--- /dev/null
+++ b/systems/redoubt/.sops.yaml
@@ -0,0 +1,12 @@
+keys:
+  - &system_redoubt age1ftcr6legvdxc2yn2zedqqsxaax3wedxqw5ad2k2f0m4vprfc3u9sgxty7t
+  - &system_ll_latitude age19v2gpucsykaqu3hsvskl67ss8mpqstp59vn687am6px9nmg585ksvlhctz
+  - &yubikey_lauren_primary 5F78261B65C565041662A3B7FF8FC3C735BD4A51
+creation_rules:
+  - path_regex: secrets.yaml$
+    key_groups:
+      - pgp:
+          - *yubikey_lauren_primary
+        age:
+          - *system_redoubt
+          - *system_ll_latitude
diff --git a/systems/redoubt/configuration.nix b/systems/redoubt/configuration.nix
index 52d255d..427011a 100644
--- a/systems/redoubt/configuration.nix
+++ b/systems/redoubt/configuration.nix
@@ -1,4 +1,4 @@
-{ ... }: {
+{ lib, ... }: {
   imports = [
     # Core Features
     ../../nixos/features/base.nix
@@ -31,6 +31,8 @@
   ##############################################################################
   # Services
 
+  services.smartd.enable = lib.mkForce false;
+
   virtualisation.oci-containers.backend = "docker";
   virtualisation.oci-containers.containers = {
     dozzle = {
@@ -53,8 +55,8 @@
   ##############################################################################
   # Tinc
 
-  sops.secrets."dotspace/fortress/keys/tinc/rsa_key.priv" = { sopsFile = ./secrets.yaml; };
-  sops.secrets."dotspace/fortress/keys/tinc/ed25519_key.priv" = { sopsFile = ./secrets.yaml; };
+  sops.secrets."dotspace/redoubt/keys/tinc/rsa_key.priv" = { sopsFile = ./secrets.yaml; };
+  sops.secrets."dotspace/redoubt/keys/tinc/ed25519_key.priv" = { sopsFile = ./secrets.yaml; };
 
   systemd.network.networks."90-tinc" = {
     matchConfig.Name = "tinc.dotspace";
@@ -64,7 +66,7 @@
 
   services.tinc.networks.dotspace = {
     name = "fortress";
-    ed25519PrivateKeyFile = "/run/secrets/dotspace/fortress/keys/tinc/ed25519_key.priv";
+    ed25519PrivateKeyFile = "/run/secrets/dotspace/redoubt/keys/tinc/ed25519_key.priv";
 
     chroot = false;
     settings.ConnectTo = [ "stronghold" ];
diff --git a/systems/redoubt/secrets.yaml b/systems/redoubt/secrets.yaml
new file mode 100644
index 0000000..0136867
--- /dev/null
+++ b/systems/redoubt/secrets.yaml
@@ -0,0 +1,51 @@
+dotspace:
+    redoubt:
+        keys:
+            tinc:
+                ed25519_key.priv: ENC[AES256_GCM,data:A1Mj99Mn5m/2scHWJMDk27mfskIJVuIoEC2F/1R/Kg/Dpfl2lMaO9hBeMkGq2Bq3aYvMQBxhioXhE81XSb6Q2cXtvKlAvFjURJ9zQgW8JBEnP19lmgI97d7pGW+nobuLB7x3Edstw1FQBgSSlGqjhMTw3DTkTL6C8Sp1JqQrPRrO4yDojGAqBtNQk5yf/hfnTIUiIjkCSIGphGAj8+YpK9LlwYd6BNWsKx5XmsErTC7M+5Qjzj+qS0sPtS2KaByHeBSRUCKKSg==,iv:hvy2IqDDr7dxu7bBJysSddWlFFE2aQkFynBNzgaupXI=,tag:9PGAbG8TY0dULcCXYOw7Rw==,type:str]
+                rsa_key.priv: ENC[AES256_GCM,data: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,iv:0Re9wGN/HyePQyLUV2wZUDWFcKmpzJQMEZCTfmYwNoE=,tag:9Kakq55ORx2QGNpgT9EeqQ==,type:str]
+sops:
+    age:
+        - recipient: age1ftcr6legvdxc2yn2zedqqsxaax3wedxqw5ad2k2f0m4vprfc3u9sgxty7t
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBaU1pPZEQ5L2VkWGpKQjlN
+            M1hmOEgxYkdnTHE4VUN4U2ZtOGU5dGdHUUJZCm9uWUVKWHAxMURqNldNUVc0YW81
+            cHVYTFcyN09jbXkvYnBVYmhvdjlFQUUKLS0tIExvZmFZTzE4VWJKY0N1MG5XTysy
+            ZGNuTFBvK2hrR3BXUlE5Y09IUk1LU1kKhdpXMrrPlQiq6X4OFPLCNZvIc3j0bi7K
+            En/IRlCLkPiJ0PKXqH2fpxu7N00bGut8AIUmjBEygIFNVdoV9BlWAg==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age19v2gpucsykaqu3hsvskl67ss8mpqstp59vn687am6px9nmg585ksvlhctz
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBNWmhaVXhtM0Z1M3g2OCts
+            WmRjb2Z3TC9vUmtIUDRadUVGZmZ5MXF2SFVrCks0d1c1eGN4U3Y0cGpQVFhXTTNI
+            aUxkY2xVdVMvODRDQm5yeEVDdHZ6ZkkKLS0tIE1hVFJYYlI5SWtYZkFzL3FRVEhx
+            UUczRzJzTGRLRGdEaGV3YWM5MDQ0TE0Kv4/L+U4q09yVrjdobqi/BrNTWqq49Frz
+            vZ9GHgHCy851Sa5cUG+pcE4qInhoZWwF+6PeCMtn4cwQMYluuRPC6w==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2025-08-10T18:09:45Z"
+    mac: ENC[AES256_GCM,data:HyDoctR7+KBnZBp8GLYuCgfusrbTvqlWmToPbBO1B7g+OnaozCMf/IK7HIVJ7MgN40mZwjoZ2sw8wtVxDjKFQ5RStgWVM/hGcNDCpLfKFe+I5qjAKnROM9XeKzUd6RLq8uCdGPpPbM0jV0x3BXEcZaxMfqDt1ySJWYAY1VvtO9o=,iv:SlSRYwHjt+dcfM68hHL4Cw5VjXtTDxxpx+75FkFpRM8=,tag:tvyH6lr2jF9eZ1siv+DuKw==,type:str]
+    pgp:
+        - created_at: "2025-08-10T17:57:16Z"
+          enc: |-
+            -----BEGIN PGP MESSAGE-----
+
+            hQIMA9BR1U1EkAnnAQ/9Eo6n04z60Jvj3MMYl1E0Q6Dyf6ZA9Y5X2hC3Yg/6lHQP
+            LliKAM8CwZ0RFeslg9fPyVO2WiYqF033UVmCVwXW1cTl/q83gpe/8ypVtxFJZJ9i
+            M0tFlaJPRHnw7acD1mIMjn6+NTv2NnKE0UsW+MbZvVZx1M6qCWyiJeETxIB0sevk
+            hbX7ZqDeOaMDWUztpDQ0fXx1TilEfAN5ud7qd5WsJhhoi9vU/VygfB+wBScMPJ4H
+            ycwNOSwcWAyqOIsLs3h9oxiOCIxnuKw6DUXhKM2xhDcI6neT4IoazrKYyUn6ZQd8
+            y7hziA+kFiwPnvTfA3rEn3/a92MV+0jvVgxMeWOr1Iw7xCD2Lg9QbkxNlxlMyGzK
+            Giw/uHU8gH5xhL4pkFz7q8FFkpl/0xnP4iwwb+XSNlzljJtTIpBEGddEX/oF9nPO
+            lb2jeDdBScQjUIF5txbe5kvMjqyzKuqCJUJwfZAYPURY0McONVG4kPrerVfvt+vz
+            Hv4qLwLJiNoyiQ2Emdi368hy3o+ERthLATdb9VUpQTr2TM+Jx7LNmevAO8G9Xxe/
+            VhADFCd/slkIdql7GZuLDwSxnB5c1O5VkCMAAd4HHNzgaXaRKyLwLWo2DBkp5gYE
+            ASoA1SuK5RwAS6MemojhsX9wJdXnfPevMWVn4Jm3Gu8u8B4M4SzIQ9FklglID9TS
+            XgHaHxqOOa3B6fvN/82nCpxwe6baVSg8WHQxd/El7fb7v52Nm949fjt+1mly8hUc
+            PMYWL2SuFianFbe4jyq5HGMiZis7obfb6BOLV5T68jesH3bPbAWjaU8b9+hF/Mo=
+            =yuNu
+            -----END PGP MESSAGE-----
+          fp: 5F78261B65C565041662A3B7FF8FC3C735BD4A51
+    unencrypted_suffix: _unencrypted
+    version: 3.10.2