.github/workflows/docker.yml

@@ -23,7 +23,7 @@ jobs:
 
     build:
         if: ${{ success() }}
-        needs: [lint, check, tests, detect-circular]
+        needs: [lint, check, tests]
         runs-on: ubuntu-latest
         permissions:
             contents: read

.github/workflows/docs.yml

@@ -35,12 +35,12 @@ jobs:
               run: bun install
 
             - name: Build with VitePress
-              run: bun run --filter="@versia-server/api" docs:build
+              run: bun run docs:build
 
             - name: Upload artifact
               uses: actions/upload-pages-artifact@v3
               with:
-                  path: packages/api/docs/.vitepress/dist
+                  path: docs/.vitepress/dist
 
     # Deployment job
     deploy:

nix/module.nix

@@ -123,28 +123,6 @@ in {
             StandardError = "journal";
             SyslogIdentifier = "${name}";
 
-            # Hardening
-            CapabilityBoundingSet = [""];
-            LockPersonality = true;
-            PrivateMounts = true;
-            PrivateTmp = true;
-            ProcSubset = "pid";
-            ProtectClock = true;
-            ProtectControlGroups = true;
-            ProtectHome = true;
-            ProtectHostname = true;
-            ProtectKernelLogs = true;
-            ProtectKernelModules = true;
-            ProtectKernelTunables = true;
-            ProtectProc = "invisible";
-            ProtectSystem = "strict";
-            RestrictNamespaces = true;
-            RestrictRealtime = true;
-            RestrictSUIDSGID = true;
-            SystemCallArchitectures = "native";
-            RemoveIPC = true;
-            NoNewPrivileges = true;
-
             Environment = [
               "CONFIG_LOCATION=${configFile}"
             ];