{ nixpkgs-unstable, ... }: { containers.fedifetcher = { nixpkgs = nixpkgs-unstable; autoStart = true; bindMounts = { "/secrets" = { hostPath = "/secrets-fedifetcher"; isReadOnly = true; }; }; config = { ... }: { imports = [ ./fedifetcher.nix ]; networking.useHostResolvConf = true; system.stateVersion = "24.05"; }; }; }