{ system = "x86_64-linux"; nixpkgsStable = false; hardware = { cpuVendor = null; }; configuration = { lib, ... }: { config = { # Minimal options to pass assertions. boot.enableContainers = false; boot.loader.grub.enable = false; boot.initrd.includeDefaultModules = false; boot.initrd.kernelModules = lib.mkOverride 0 [ ]; boot.initrd.systemd.enable = true; documentation = { doc.enable = false; info.enable = false; man.enable = false; nixos.enable = false; }; nixpkgs.overlays = [ (final: prev: { systemd = prev.systemd.override { withAcl = false; withAnalyze = false; withApparmor = false; withAudit = false; withCompression = false; withCryptsetup = false; withCoredump = false; withEfi = false; withFido2 = false; withFirstboot = false; #withGcrypt = false; withHomed = false; withHostnamed = false; withImportd = false; withLocaled = false; withMachined = false; withNss = false; withPasswordQuality = false; withPolkit = false; withPortabled = false; #withQrencode = false; withRepart = false; withSysupdate = false; withTpm2Tss = false; withUkify = false; withVmspawn = false; }; }) ]; programs.command-not-found.enable = false; programs.less.lessopen = null; security.sudo.enable = false; services.userborn.enable = true; nix.channel.enable = false; system.disableInstallerTools = true; system.forbiddenDependenciesRegexes = [ "perl" ]; system.etc.overlay.enable = true; systemd.coredump.enable = false; environment.defaultPackages = lib.mkOverride 0 [ ]; fileSystems."/" = { device = "none"; fsType = "tmpfs"; }; }; }; }