Conversation
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
Summary of ChangesHello, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed! This pull request focuses on maintaining the project's dependency hygiene by upgrading the core Nix package collection (nixpkgs). This update ensures that the project benefits from the latest available packages, security patches, and features within the Nix ecosystem, while also introducing new configuration options for fetching the repository. Highlights
🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console. Using Gemini Code AssistThe full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips. Invoking Gemini You can request assistance from Gemini at any point by creating a comment using either
Customization To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a Limitations & Feedback Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here. Footnotes
|
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request updates the pinned version of nixpkgs. The lock file nix/nixpkgs.json contains several unused fields and a date value that is unusually far in the future. I've suggested simplifying the file to include only the necessary fields for better clarity and maintainability.
giuseppe
force-pushed
the
update-nixpkgs-23-march-2026
branch
3 times, most recently
from
e6b3ebb to
48ba22a
Compare
|
Ephemeral COPR build failed. @containers/packit-build please check. |
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
The Makefile rule for git-version.h requires .git or .tarball-git-version.h, neither of which exists in the Nix sandbox. Generate the header directly before compiling. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
Replace the manual nixpkgs.json pin and 5 duplicate default-{arch}.nix
files with a single flake.nix. Architecture configs are consolidated
into one map, making it a one-line change to add a new target.
The LIBS string in derivation.nix is refactored into a structured list
for readability.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
giuseppe
force-pushed
the
update-nixpkgs-23-march-2026
branch
2 times, most recently
from
97c9941 to
ca8cb8d
Compare
Use a bind mount to /nix (cacheable in CI) but seed it from the container image when /nix/store doesn't exist yet. The init container mounts the host's /nix at /host-nix and copies the container's /nix contents into it. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
The git+file: flake ref requires libgit2 to open the repo, which fails with safe.directory errors when the bind-mounted repo is owned by a different user. Previous workarounds (GIT_CONFIG env vars, mounting /etc/gitconfig) leaked configuration into nix build subprocesses and triggered the "/homeless-shelter" purity check. Switch to path: flake refs which read the filesystem directly, bypassing libgit2 entirely. Submodules are already checked out by autogen.sh before the nix builds start. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
Move static library overrides out of the global nixpkgs overlay and into local variables in flake.nix. This prevents the massive rebuild cascade caused by globally overriding packages like systemdMinimal and libcap, allowing standard packages (gcc, python3, pkg-config, etc.) to be fetched from the Nix binary cache. Also removes 4 unused overrides (gpgme, libassuan, libgpgerror, zstd). Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
giuseppe
force-pushed
the
update-nixpkgs-23-march-2026
branch
from
9022f22 to
70fc9e6
Compare
|
@saschagrunert the build on s390x takes forever and causes the CI to timeout. Do you've any suggestions on what we can do? Should we just disable s390x for the artifacts? |
giuseppe
force-pushed
the
update-nixpkgs-23-march-2026
branch
from
70fc9e6 to
f11729b
Compare
|
TMT tests failed. @containers/packit-build please check. |
I use cachix for such cases. When it takes too long I'd usually build and push the cache from my local computer and then let the CI pick it up. Updating the cache is then optional because the nixpkgs are pinned. Right now we only have a local cache as it seems. |
giuseppe
force-pushed
the
update-nixpkgs-23-march-2026
branch
from
f11729b to
d02b8d1
Compare
zlib's configure script detects s390x vector extensions but fails to export VGFMAFLAG, causing the build to fail with '__builtin_s390_vec_*' requires '-mvx'. Apply the upstream fix (madler/zlib#1171) as a patch, gated behind an overlay that only activates for s390x builds. Upstream: madler/zlib#1200 Fix: NixOS/nixpkgs#502917 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
giuseppe
force-pushed
the
update-nixpkgs-23-march-2026
branch
from
d02b8d1 to
5699da2
Compare
|
thanks to Claude finally they pass @saschagrunert PTAL |
|
thanks! |
2 participants
No description provided.