We know Nix.
Nix.How is a Nix software consultancy for you.
We know the pain of non-reproducible software build systems and the anti-patterns that follow. We can help put things right in your organization or project.
We work with any programming language, ecosystem or business sector.
“The deployment’s uncertainty was reduced to nix”
Tech we use and recommend
Hercules-CI allows us to perform Nix native CI with stateless agents that are trivial to deploy and configure. All outputs of your Nix code are then pushed to Cachix.
Cachix is your personal
/nix/store in the sky. Every revision of your code is cached forever.
Convert your Docker infrastructure
Using Docker to build software from source is not reproducible, secure or granular. If you are still using Dockerfiles to build your software, we can facilitate the change to using Nix to build your software instead.
Inputs are not controlled, which leads to different outputs each time a build is performed.
File fetches are not hashed and all internet connectivity is trusted unconditionally, meaning supply chain attacks are possible and trivial.
Due to the Docker “layer” specification, caching cannot be performed on individual software components. Nix introduces the concept of a derivation, meaning each piece of software in your dependency chain is an object that is cached in the
With Nix, there is no need to carry the weight of a base system like Debian/Alpine, nor a full filesystem snapshot for each command that is ran in each “layer” of the build process.
Software components are described as isolated, granular units and do not depend on any specific environment or Filesystem Hierarchy Standard (FHS).