Nix Skill

1. nix build

YOU MUST: Always use --no-link option with nix build

nix build .#rumdl --no-link

IMPORTANT: Before running nix build or nix flake check , ensure all new files are git-tracked. Nix flakes only see files committed or staged in git.

git add <new-files> nix build .#target --no-link

IMPORTANT: Without --no-link , a ./result symlink is created

2. nix run

IMPORTANT: Packages registered in packages can be run with nix run

nix run .#pike -- scan -d ./terraform

3. Adding Custom Packages

• YOU MUST: See CONTRIBUTING.md section 1.4.2 for adding new custom packages

• IMPORTANT: Hash acquisition flow

• Get hash using nurl: nix run 'nixpkgs#nurl' -- https://github.com/&#x3C;owner>/&#x3C;repo> <tag>

• Get vendorHash /cargoHash via build error (got: line)

• IMPORTANT: Add doCheck = false; if tests fail

4. nurl

IMPORTANT: nurl generates Nix fetcher calls from repository URLs

nix run 'nixpkgs#nurl' -- https://github.com/rvben/rumdl v0.0.206

IMPORTANT: Output can be used directly in fetchFromGitHub

fetchFromGitHub { owner = "rvben"; repo = "rumdl"; rev = "v0.0.206"; hash = "sha256-XXX..."; }

IMPORTANT: For cargoHash/vendorHash, use build error method (nurl does not support these)