add pass plugin to read secrets from password store

2022-09-13 21:07:40 -07:00 · 2022-09-13 21:07:40 -07:00 · 6ae0c69fa5
commit 6ae0c69fa5
parent 23e69232c4
2 changed files with 13 additions and 0 deletions
--- a/extra-builtins.nix
+++ b/extra-builtins.nix
@ -0,0 +1,3 @@
+{ exec, ... }: {
+  pass = name: exec [./nix-pass.sh name];
+}
--- a/nix-pass.sh
+++ b/nix-pass.sh
@ -0,0 +1,10 @@
+#!/usr/bin/env bash
+
+# nix-pass.sh
+
+set -euo pipefail
+
+f=$(mktemp)
+trap "rm $f" EXIT
+pass show "$1" | head -c -1 > $f
+nix-instantiate --eval -E "builtins.readFile $f"