Julien Malka

Artiflakery, an easy way to distribute static Nix flake artifacts

2 min read

In this post, I introduce Artiflakery, a tool I created for on the fly delivery of Nix flakes artifacts.

How NixOS and reproducible builds could have detected the xz backdoor for the benefit of all

22 min read

In this article, I showcase a method to leverage reproducible builds to build trust in untrusted release assets. I claim that this method would have detected the 2024 xz backdoor attack.

Is NixOS truly reproducible?

4 min read

How reproducible is NixOS? In this article I describe the results of a research work studying the evolution of bitwise reproducibility over time in the NixOS distribution, from 2017 to 2023.

Latest posts

Artiflakery, an easy way to distribute static Nix flake artifacts

How NixOS and reproducible builds could have detected the xz backdoor for the benefit of all

Is NixOS truly reproducible?