Clan Core Changelog 2.12.2025

Development Deployments
1

Clan is a toolkit that makes it easier to manage networks of VPN-connected NixOS machines.
The ultimate goal is to lower the barrier to self-hosted services massively and allow anyone to achieve this without special hardware. As of now, using Clan still requires NixOS knowledge, but it already combines several of our Open-Source projects that you may know (nixos-anywhere, sops-nix, nixos-generators, disko, …) into a uniform CLI.

Changelog

:books: Documentation

  • Updated documentation with new content (#5878)
  • Finalized documentation template
  • Small documentation improvements (#5941, #5942)

:toolbox: Core Development & Testing

  • Vars improvements:
    • Fixed bugs where shared vars are encrypted for wrong machine
    • Fixed bug where shared vars not generated for all required machines
    • Added logging of entities gaining access in commit messages
    • Fixed terminal multiplexing issue
    • Various small vars PRs (#5933, #5940, #5934, #5935)
  • Nixpkgs bump: Ready for merge, waiting on CI (#5595)
  • Improved pkgs overrides for flake.parts (#5913)

:sparkles: Features

  • Exports system:
    • Service exports merged! (#5703)
    • Work on requiring explicit interface/traits (#5891)
  • meta.domain support: Merged meta.domain option (#5783)
  • Darwin support:
    • Ported clan services and wireguard VPN to nix-darwin (#5889)
    • WIP: Zerotier VPN for nix-darwin (#5958)
  • Munix integration: WIP integration into clan (#5957)
  • Made UI work in normal browser (#5920)
  • Added nix_shell to check_machine_ssh_reachable (#5873)

:desktop_computer: UI/Frontend

  • Fixed 3D view bug (#5870)
  • UI architect changes (#5888)

:wrench: CLI Improvements

  • Display meta.domain in clan show and other fixes (#5916, #5915)
  • Fixed clan machines create with custom directory (#5952)
  • Added missing subcommands to machine help metavar (#5947)
    • Now shown in help output and rendered on documentation site
    • Added regression test to catch missing metavars (#5948)
  • Fixed help formatting (#5953, #5914)

:hammer_and_wrench: Services

  • Syncthing: Fixed firewall interface wildcard syntax (#5918)
  • Backups: Overhauled backups with documentation based on community contribution (#5868)
    • Created issue for reworking preBackupScript as standalone systemd service (#5869)

:globe_with_meridians: Networking

  • Yggdrasil improvements:
    • Avoided self-connections in Yggdrasil
    • Added listen functionality for all peers
  • SSH agent improvements (WIP) (#5803)

:desktop_computer: VMTech / Virtualization

  • muvm now works on Ubuntu 25.05 live stick
  • muvm now works on ARM
  • muvm now works inside a VM
  • PR to nixpkgs to enable mesa amdgpu-virtio #441300
1 Like