zaphyra's git: nixfiles

hosts: add `empty`

diff --git a/hosts/empty/default.nix b/hosts/empty/default.nix
@@ -0,0 +1,75 @@
+{
+
+  system = "x86_64-linux";
+  nixpkgsStable = false;
+
+  hardware = {
+    cpuVendor = null;
+  };
+
+  configuration =
+    { lib, ... }:
+    {
+      config = {
+        # Minimal options to pass assertions.
+        boot.enableContainers = false;
+        boot.loader.grub.enable = false;
+        boot.initrd.includeDefaultModules = false;
+        boot.initrd.kernelModules = lib.mkOverride 0 [ ];
+        boot.initrd.systemd.enable = true;
+        documentation = {
+          doc.enable = false;
+          info.enable = false;
+          man.enable = false;
+          nixos.enable = false;
+        };
+        nixpkgs.overlays = [
+          (final: prev: {
+            systemd = prev.systemd.override {
+              withAcl = false;
+              withAnalyze = false;
+              withApparmor = false;
+              withAudit = false;
+              withCompression = false;
+              withCryptsetup = false;
+              withCoredump = false;
+              withEfi = false;
+              withFido2 = false;
+              withFirstboot = false;
+              #withGcrypt = false;
+              withHomed = false;
+              withHostnamed = false;
+              withImportd = false;
+              withLocaled = false;
+              withMachined = false;
+              withNss = false;
+              withPasswordQuality = false;
+              withPolkit = false;
+              withPortabled = false;
+              #withQrencode = false;
+              withRepart = false;
+              withSysupdate = false;
+              withTpm2Tss = false;
+              withUkify = false;
+              withVmspawn = false;
+            };
+          })
+        ];
+        programs.command-not-found.enable = false;
+        programs.less.lessopen = null;
+        security.sudo.enable = false;
+        services.userborn.enable = true;
+        nix.channel.enable = false;
+        system.disableInstallerTools = true;
+        system.forbiddenDependenciesRegexes = [ "perl" ];
+        system.etc.overlay.enable = true;
+        systemd.coredump.enable = false;
+        environment.defaultPackages = lib.mkOverride 0 [ ];
+        fileSystems."/" = {
+          device = "none";
+          fsType = "tmpfs";
+        };
+      };
+    };
+
+}