From 12778e5393de5e298d9a68bb50a1853e4415b97a Mon Sep 17 00:00:00 2001
From: Sridhar Ratnakumar <srid@srid.ca>
Date: Wed, 24 Dec 2025 10:46:27 -0500
Subject: [PATCH] beszel

---
 configurations/nixos/pureintent/default.nix |  11 +++++++++
 modules/nixos/linux/beszel.nix              |  25 ++++++++++++++++++++
 secrets/beszel-agent-key.age                | Bin 0 -> 601 bytes
 secrets/github-nix-ci/emaletter.token.age   | Bin 526 -> 526 bytes
 secrets/github-nix-ci/srid.token.age        |  18 +++++++-------
 secrets/gmail-app-password.age              | Bin 449 -> 449 bytes
 secrets/hackage-password.age                |  18 +++++++-------
 secrets/hedgedoc.env.age                    | Bin 538 -> 538 bytes
 secrets/juspay-anthropic-api-key.age        |  16 ++++++-------
 secrets/pureintent-basic-auth.age           |  16 ++++++-------
 secrets/secrets.nix                         |   3 ++-
 11 files changed, 71 insertions(+), 36 deletions(-)
 create mode 100644 modules/nixos/linux/beszel.nix
 create mode 100644 secrets/beszel-agent-key.age

diff --git a/configurations/nixos/pureintent/default.nix b/configurations/nixos/pureintent/default.nix
index 0568ed2..8b8425a 100644
--- a/configurations/nixos/pureintent/default.nix
+++ b/configurations/nixos/pureintent/default.nix
@@ -12,6 +12,7 @@ in
   imports = [
     self.nixosModules.default
     ./configuration.nix
+    (self + /modules/nixos/linux/beszel.nix)
   ];
 
   users.users.${flake.config.me.username}.linger = true;
@@ -36,6 +37,11 @@ in
   ];
 
   nix.settings.sandbox = "relaxed";
+  nix.gc = {
+    automatic = true;
+    dates = "weekly";
+    options = "--delete-older-than 30d";
+  };
 
   zramSwap.enable = true;
   swapDevices = [{
@@ -43,6 +49,11 @@ in
     size = 32 * 1024; # 32GB in megabytes
   }];
 
+  services.glances = {
+    enable = true;
+    openFirewall = true;
+  };
+
   services.openssh.enable = true;
   services.tailscale.enable = true;
   networking.firewall.allowedTCPPorts = [
diff --git a/modules/nixos/linux/beszel.nix b/modules/nixos/linux/beszel.nix
new file mode 100644
index 0000000..f3edc5c
--- /dev/null
+++ b/modules/nixos/linux/beszel.nix
@@ -0,0 +1,25 @@
+# Beszel monitoring - local-only setup (hub + agent on same machine)
+#
+# Secret file (beszel-agent-key.age) should contain:
+#   KEY=ssh-ed25519 AAAA...
+# Get the KEY from beszel hub web UI (http://localhost:8090) when adding a system.
+{ flake, config, ... }:
+
+let
+  inherit (flake.inputs) self;
+in
+{
+  age.secrets."beszel-agent-key.age".file = self + /secrets/beszel-agent-key.age;
+
+  services.beszel = {
+    hub = {
+      enable = true;
+      host = "0.0.0.0";
+      port = 8090;
+    };
+    agent = {
+      enable = true;
+      environmentFile = config.age.secrets."beszel-agent-key.age".path;
+    };
+  };
+}
diff --git a/secrets/beszel-agent-key.age b/secrets/beszel-agent-key.age
new file mode 100644
index 0000000000000000000000000000000000000000..75d32bf9e3e7622ee8e634d4052bc132b9c4f35a
GIT binary patch
literal 601
zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCT)H1mw`3sf-A4fKhM
zEb-SbPO&ts^06>+k4Op#D~t?INw3U}%n3GdGR|@JuJkqyj^uKx%JwSqvd9Sab2s!U
zjI0a^EHVfR)XvV!%P{pc%n!^8^(t|8E6zwX4@I}lv&7sZDp0}L#kD**)GyT1FVEN2
z)8F4j-%mTk+rQG)Im59u-_6uGDJ$Es%sIEr#g{8JCo#-D(k#fNpdui%)Ym<#G%?J(
zB+uI?L|fb6$y>WBxWYfQEI+K=*%RG1OS2NssC0!2#|Y;rv#?A@pWyPmiZnMzw<uR<
z*9bpnBlA4-3}<KOa?5OQV~-F&k8~~z=PIwt3g;l7i0qt5V?STVR0Fq?tcqM`bDs$B
z<e-2;^MVjVFZ~Sj@=z{aU0sE8vtn}-k1E5$yizkS|FVeEP?!9yU~`jPe`oESkRp?$
zK)=K)^Gtu2;CwF6t7q%ZruzIBTJ$;TYAD0w&uXVOsqCHX-WOi5@A1q@(c9XlD6BZ=
zwtRNotfz+lOC&R@`A#VEx_j2%dec57ElBj?Ss&fWVQ*h1vcB!xay|QP=@*0hdycF8
zO73;|cU-^g3|CuI-5O6V`$o34w`Z}YvXpQKG0Z#7q`pe})CKv2tKKt8A3DA;_007*
z7P`BeI*&*!=P#UdC|!Zqt8jJ3&#ljOreB}^E@nA{&n}LQb54jJ`EDe^za(-a*U>Zy
UFYCWniK`4&9IEZwn7sWn0D)xVHvj+t

literal 0
HcmV?d00001

diff --git a/secrets/github-nix-ci/emaletter.token.age b/secrets/github-nix-ci/emaletter.token.age
index ed919e2893f6e77842b0c6dd18e9b067a8ed50bf..63a00c2dc638031e2a2f2a08d6842b438f17d27e 100644
GIT binary patch
delta 492
zcmeBU>0_CoQ}5*E<>wmc<{IvA;#Ck;X5kg=l3MPQtzBrYubt^%;2xP+WRPoAmRRnd
z&y`ai7MYP6>Eq^G9OP(fmJ+6&<&+p`>6hYR5|HJeTa+CY8tCY3<nEcB&!uapP+Xj$
zo0?)|YHDby;8|ks5f!LVR8^Vd?_=f>nriIjQesjVTJPvo7#>hnY!MRW78+@kt?w3<
z=;>qP993D)6;u+QnHy>785Ztnkr<ktR;iuh<m?pbm6vPm8yslllV}>^Qt9nh;p!fU
zZk?rBiDy*0f|rp|S%#;vaadAeVv=8mky)fckb8k~ew2Htwxy+hhM`-%c9nTrMn+JC
zE0<GRWrRh#kEM5{nSW44MO9&Bq*0VtzP@`{VvbL6v2&t(WUjNPX|aWQF_*5cu7Yue
zTSQt^nUQ6<mzQ=@WnpEmvu9F4esP$#g`Z<tfq!|HZ>U+mS9WrcFIV>e->Uo^)7HLN
zXjgjd?}h`9zbFLDq%mc8rrta?Z)a*+SaHohexDobUiCc44spKAd*S86nZIWK3uTU*
zwPmhjhwc))MIpHw!b|!-f4Ug7bb0V+_UI)>JL5&AIZJ=d^|bJfXsVjH%G+_(pKTFa
YcSqQ@9M@VsiOu!v`92dZZ++2c0Pc*l5C8xG

delta 492
zcmeBU>0_CoQ*Y*FVdU-RlbdVknp>5hlbsgk>Q$8DQ|9KB7ZDYuT^{LJ5M@yi>8zdU
z%H^qT=~o(M6cuWbV_X<zSYVu<lx|euY98Qbo}HbY91-P{6`WogP-u~v%%y9mP+Xj$
zo0?)|YHDby;8|ks5f!MA@9Lgi6=aZ{URn^~Z0@O_S?^h9;h0z+SZQ386j@Q6T51`R
zmFi*~85VB9<>(w47-5iPX_lUvSQJ?78<tg=;pLK>UF23`;;mig7Z&VcRN!RfRaNYX
zZe3(?MOkjTLQz3#MsazTcV1qBVM;|sPDNt6Yfye@npdEkYhG$jMxk%LMR;g(VP%qG
zK37smq=%!KXQF;YaK3MGMN)A}k*jB=Pf@u^P+oSDTUwQuc6mg4a(G^)Czr0Su0o(e
zxWB)jsb_G0TBKiut8Z~?fS<ERKz>ztYG9Ugv3_ZRONwcpV}x6lFV|&WA5ISA4UN}c
zPdw08_bn+xK(&BHD)EqNs-u;`vxhDxa}8Z%ju<n&lbmV5pt)3~^!)^<_T7Gg$tzo0
z8s2GK<;fG{6j#1;=)%dcxji4(yMCIvTl3<AkIxS`OEPzTx_q$m+<Y@z^%BcxJ7s3<
YJ>b@<Y<sqd>Dzz1J5HN5cZ5C$0GST8k^lez

diff --git a/secrets/github-nix-ci/srid.token.age b/secrets/github-nix-ci/srid.token.age
index 27cbc8e..3f97bc9 100644
--- a/secrets/github-nix-ci/srid.token.age
+++ b/secrets/github-nix-ci/srid.token.age
@@ -1,11 +1,9 @@
 age-encryption.org/v1
--> ssh-ed25519 96IXNQ V6z62p+pW3kgBssNzyKXgeSkg1Wd8RL6G1UrumXTIWY
-Ct4rp8A1Gg9ExzUyE63JgzgHD5aaeqakZ6ROAPm/XRE
--> ssh-ed25519 It7HZQ +Hfd+DFL1cxlRFHSfLC2iiEbQ52cir2KgsIAQsgWLj8
-pCD9VDE0GWsr23NRHRCmiZJDrdNN3zKJFY6zNTpzPqg
--> ssh-ed25519 Ysxvmg NzAhvPK21VdhfbEAD5Fk9VSqqeKjE8n5T9yurBeGohs
-qRZzel60SENc1ewUbubi48zRyhxbpGK85Y2j871YPwY
---- R2HwRQqDwwfnDYltxQsw+s8fhBHhXVY+t93Uwh4PNYw
-�/�ݹ���{���?b��^i#W��
-�as}��ȭj����
-�p�$�'D����A���@���6��2O<����0�D��2��c@Ҧ�)����7�^?�娨�����lV��0��5��Xe8
\ No newline at end of file
+-> ssh-ed25519 96IXNQ mx7/eE4DEfCt9BxsJnthcGnR/OO+25hm4yryO/TZvGc
++TiFwUdsSm5CP9APEDnNZ2m6NSHk87WwpNv1fGrRzP0
+-> ssh-ed25519 It7HZQ TjB6x48XJJJCw0fd/EPLhsgPHSxT27YcoVBcMP7z7TQ
+9sMA8uDJlrq0X1Cw/OTQlRGLKCGj9A4BMckCVydoQEU
+-> ssh-ed25519 96tIZg BiOqFUjYKDibqjlwZMzno6rWR9Slwjrj761Izu3aIHk
+umsE6YUJVagwI6AiOtPQhTuLTdWZHPxIEU3VhDM6f3o
+--- rnVRzKjo30T3lQ/4ZUjvV5cTCInwNsFsettECi26aT4
+��%��O$��T�xdk��������\�֤�lh;��_��e�y� �l�Y�&,���L������#�.S� �ӂ�ZA���H��?�=&��Q$
���	��d�z<��~B��(grs�V� 3�
\ No newline at end of file
diff --git a/secrets/gmail-app-password.age b/secrets/gmail-app-password.age
index 1361e700bd051b9310625e649035753921af98cf..4a16bda4cd1ef057d489683fb4a9dca3ba5ced67 100644
GIT binary patch
delta 415
zcmX@ee2{s9PJMAeh>L5Uv0qqTk+y+vdcISUi?e@#p+TU&Z%CDPly`DYQF>^OTUk<i
zHdmUvlSzqpRfR{PVOc~@P<EA(Ns4|(VNrHPa&k_ZM`B`$VR~jrSxInsB$uw8LUD11
zZfc5=si~o*f@g`jM^vCfS(&ekpSHe>SwMuovv;XsSiO5dScIW}lDB_BWPXupq<?^s
zlSNKsL~57`muY2WUU5~Kac+8XV5z@JTA*`znoE+CL0CqPWui%$L5@dGdQxhJYp`Q7
zx^<RjC7w~~3RwmorIDd7Wd%7NMrDCz{sxh$UOuKFp_UQmPA*0+*?Io;`XQzfrkMst
zCR~070YRooq559luGwWdUcO-_#^Dyp=>|StRb_6$e&s=-ZeDJQIZpm&7F@czx(b2$
z;mM9gA&wbUQMqOn!GU@DSx&(jCN71gm02MbK9Q!`DJ99-1$k9Lo?ILISF`!be4FH%
v{yy$PSkte3LxJd%9x`V{B<3?bR`t7d?$fchglPU7cNN|@%(&w#KE(|H3$Klq

delta 415
zcmX@ee2{s9PJM`RP^EW9YGS!hVx(VDPPR+Fb40L3L3)s9d9hz*x^skgaY3?Yx?7=h
zK38H%u!mEqQE8I5QCUP#X^N|UxMPZ8QdnYgPLi=vQelyyOQ~~OX<o961(&X!LUD11
zZfc5=si~o*f@g`jM^vDKV`fx&L9V-NepYyuyQ6!6e|?^hrGJQ<rI~-RpKEb;SVW<D
zUR7|eXK7$LS7An(abk*ZctN^HkaKWIW`%!gfPaazrMq{4OPWPydX=kxhI3&~R6uDu
zx^<Do6=k{U3c(>|>4|>X`L3?1$;QT(nK{J<>Bb%gF2+Vd?gbf^rB2!PhQ;~G#Xgx%
zo?NB{xhWwgB_@^?NmYSfl_n7xQAN&~sV>Qpkwy9*Ar?kv>87T+d5&qR<y^YDx(X4I
zA&yDj`W8MO=_bKBiCI2r!8wH?`9ax^Ioi37c@YtQDP`%tWmSn;CR~1^@+D`5-l<zW
vnf$-^6aS@!$Jm#bUj6j%mxTK-`S@=;ECM5Se%q*PF0!6K@u=eYveU}|sEm^M

diff --git a/secrets/hackage-password.age b/secrets/hackage-password.age
index 38baab8..7eae97d 100644
--- a/secrets/hackage-password.age
+++ b/secrets/hackage-password.age
@@ -1,10 +1,10 @@
 age-encryption.org/v1
--> ssh-ed25519 96IXNQ nHWK3DGvD5svfKFD/QiyGUyE94MfiIAGvwtowQfB8CE
-HKw+5SB99G+BVO1t6dggH+LFfjWSExUXaPA6TgbXkjo
--> ssh-ed25519 It7HZQ tN1niOfw1WOTti0NAg9IlBSnAkTGloTE5dZGJ3rdXR0
-xw9DqdaqI3o0JuXslaOWcHwN4eLqz4g/lzQPmqZIpLU
--> ssh-ed25519 Ysxvmg K7Taxefo/m7ObS0f62lowOnSNkN4kRO51A68N9tFmGM
-sOEEjMpzH2CPwnmk7X5fbLKJ3Yw/Tr2P33UHM676y8A
---- FrVEGbyKNFknaLXq05sb5gD7cZqPv+UZUcuD+sj/SPA
-�c�Ċx=�wj����@�[
-��y���}�h�8#�M� .N)��D�+�
\ No newline at end of file
+-> ssh-ed25519 96IXNQ HmkQjnB89LYi1B9uuKijjY+2rbasHwwjwCepD13ki1Y
+79ieKetZcWLKMB7QpalExQ8JUksNM4TM/UzACoJzL88
+-> ssh-ed25519 It7HZQ CpSuqMO/s9X2gBccHbWD4h40O2WSfaXlXRlZlUum6Uc
+TMhDOLjCz/UpOgMAtf0vBih2uEZnBz2VkGqaOD+4Xtk
+-> ssh-ed25519 96tIZg Op6i6DAXYghLEBDGR4VXmfPgnDoA7c96jE6jRv9GcWA
+s/FbEOowcWHLuH/3mmONgADTsfU7b8gniLgvXkHQ+yg
+--- xFxBJUQOZ88Z5f+vIPb0LGWDSyYjUWEk4faoVAob/x0
+p_��u�R�^`l��K.
+�^:��.wt�y۠9��i��$���*!;�?�
\ No newline at end of file
diff --git a/secrets/hedgedoc.env.age b/secrets/hedgedoc.env.age
index a85ba6058e4105f20e91683643bb826248cd4538..ed0eaf480cfee81408721ae3235ad6eaee524102 100644
GIT binary patch
delta 504
zcmbQmGK*z`PQA8SaDItbpmT(=xnEg8kx_7lSwOOZhmom)TZV6@b77`&Nm5$6pHp&n
zD3^P7WU_ZgR8(O^rJ-R(YPr65dX7_Cl!vKNu!&h-d4_?zTWPAkMVhvmCzr0BLUD11
zZfc5=si~o*f@g`jM^vDKUuKxMv9r0GrFT$OMp2M=XuV;eca%$|ho!Mkk$%2GPC-Vx
zX?RMGcTRaSmw&!~nQvfbm~on=n?;_dsZT(uzfV$lgmad+Nm5WoKyXoho==6hmxp6A
zx^<RjC7w~~3P#SBL8cb^Igwc|`jy`1Nx6pph5_aQrCGuLt`&}<$v&0!!O5AXh5<h5
z*<7Y3X}O6-9;QVhW;rF1f#FUbM&Uk|CgpkQ`T8j-p_Rc&rOwV}85a2wj$FFBx(ZdM
zzPZ}kCIPvHCO(E1`7UnhW&!$DCi!WhxoL(00p+C?VQ%j3{wY<dCR}$owkNDRq1^TG
z^)az45l6YRtL5*k`T0!Rr*N*CgP_#T`PcuqF={DBCZ*LaICk3kpJa#2r`tcS&!71&
zaa!5Jr;qs}n)0VE$ZGMgd1=$>d8>WN`@pPShgi2Z_mtT9WPg^e{Izc1Ka0eJn*&ZB
lTem-}M^+}IEuZTFTfye~gKS?+f7Z+^kMwa-xVR;EI{?ofyCnbs

delta 504
zcmbQmGK*z`PJK{#MWA<LZf>Qssb{WFXrX0rd7hbpfsc1Zj<1_}L3W98vSW5&W~g&`
zC|9tfX@!elW`<F)Z@6ooM@3LrR92#eVL_Ckg==tfMNW25sYQrSc4Df3K9{bYLUD11
zZfc5=si~o*f@g`jM^vCfW`Vb7x>sUmq_KyeiEpT>XMKdJab>nkmYYjvk!yCak#<^e
zRY7<`ftgbvm%dq0L3naRUW#|5S(1rYP*8ffvtgJ)eyFQ~Q+}n3pG#$Bs9R)}uUAkx
zx^<Do6=k{U3f|dfM*dZyPH83<t`X(_rNtS}fi6ZBp&=C|KH4E!W`@c2uFgSa7U|wD
zj$HXp79kM@MUGKP7KT2CW?n`S27VT~PI*o~E<wh|1*wLvrrMdN+Sw5m23)$jx(b%2
zdFCPM`K3{%zLj|eKKcd4PVU9}QDzku-bJBKnR)4vQH7CF$xelq<y`v7(Xalw``le+
zea-EE<lU^zi{9)#C8%z|QMfVKJl#as{9L;2k27iCGP)&m{fgTdUYizYF0OXlZ*VGi
zD?_SHhr%5zv5Egwn&kf&-&UG5`Gv%y-1y(z-`%aP1XnZL{Wuz-A#qJz(d*(Gn;n&&
kx-Ne*Gau(~;hkllFJSZQ;#292=VzI+oQ~@M;Ofo-0G@xezW@LL

diff --git a/secrets/juspay-anthropic-api-key.age b/secrets/juspay-anthropic-api-key.age
index 24a4a45..8e38d41 100644
--- a/secrets/juspay-anthropic-api-key.age
+++ b/secrets/juspay-anthropic-api-key.age
@@ -1,9 +1,9 @@
 age-encryption.org/v1
--> ssh-ed25519 96IXNQ y9xfS/LgeA97ofunk5sm6a9yPMTQXoiqKzhSQ5xFJxM
-Jj2xw854u6AsRXHaHl50D40Hpct9mBRD5vusndtWlRU
--> ssh-ed25519 It7HZQ Ac3LWqNFln9fK7aYeqmG8yQfDl5nG0H8J4fCfk13xFE
-7A9aSpzne7sFYLzQusalxg5d/fyM2/kwEJxZ7rCEJ6c
--> ssh-ed25519 Ysxvmg pK+ZzeQpLoA0tvTbcOK4lmU111XN0h0U0/k6n3oj9X0
-ubUmOeCFczTjKgnzxA3ePnWb0WH8YKcI+WCJWUfcmEo
---- cuWCm/u/ZHJxHTvKFujn9RvQM90gCkjnGcWm1azYBGc
-<�B��Kw��n
P9���&V��@/�����5[2a�n��^c=T2;���b&�w�[F
\ No newline at end of file
+-> ssh-ed25519 96IXNQ htUePAVPstdIelYURI4fLB3p2rbQl/oVgdymtOnikjQ
+pnEPOw7C17qEL5GLbSOUzhTS+TQjPKt8yn6DZnW93r0
+-> ssh-ed25519 It7HZQ VhHvmCe0xXx/aINQZZdGyfuQdAowuX6zrh+d6IzNqgQ
+wDugkAqRt/Sbej2UTpIpjvitYk1WON4DuVecQqsQMP8
+-> ssh-ed25519 96tIZg LcgBZtB1BCjjWQVOQcCsOkRBTyi5HF88l1vLSdSyRVU
+YC+uduqOuAAtlrFlLeSuaNzQC/OL9XW8vcjp8WKOKhY
+--- pupMpTgDxQAt6CcB99LwNArx0wyxZGDu/ehh1Mikppk
+߱�#ؔ�b��)H�Q.v��%��E��f�1����0�@G�a�^D�I�
�h�O/��
\ No newline at end of file
diff --git a/secrets/pureintent-basic-auth.age b/secrets/pureintent-basic-auth.age
index 8c4004e..f48eef7 100644
--- a/secrets/pureintent-basic-auth.age
+++ b/secrets/pureintent-basic-auth.age
@@ -1,9 +1,9 @@
 age-encryption.org/v1
--> ssh-ed25519 96IXNQ 2fAb4UaMDzIvV6al6FJhaLubphtiSuCpVOaeN+HwGVo
-bP/J1UYVBhjV2aquWSsTytU19R76+9Vlof5/V9CUBZU
--> ssh-ed25519 It7HZQ /UlpuPliwqF04HPG87ldFPCjxWim6EuCxUUax8h51TQ
-rbQBDdCtd1N2IEuCSZeeusVtkogL3MOr0Mxue/Gwiso
--> ssh-ed25519 Ysxvmg A81MyiFDefSbX6u7p4bN9vCREgGcp/frzguX1uwXYVM
-KiicSyou3NiK9znW2/MEJi3ElLfsqkCLfMuPbqTLoJs
---- ArMgx+hzGLdzksx0CEXhb7N//pSq+ovYS/SPS3mQBcs
-bQA�[iz��/�%VA����Ex���.�������b�ZMIsҨ1���Teq���̦S���,�J���ӭ�2�S����(�T��6Fk�D�.Q���R[
\ No newline at end of file
+-> ssh-ed25519 96IXNQ d7wXeB4PTqliQUEgQxysva34qimZh8Fw3YimMmmCqkw
+taOzZDVk2k7GYUo91uMfgGxU2+aWn8AWDMhnonD9Dy8
+-> ssh-ed25519 It7HZQ 8jeI9aR89Bn5xmypNz2jYsAB/vCjCssh4+TEHEqtDX0
+vmG3sL20z8lpXSM44At/HiBEiMd3FLlZ4rVFFEJu0j4
+-> ssh-ed25519 96tIZg ICbhKedcqc21jBVGnd3MkRFrQ2UaE1VsHAWQnV2+oxc
+IkPX7iYYUpt+MMkmOe4DeGy5DXcMzFjylxVliuyzeas
+--- XUds2rgdSivHfQmQ30q3Olz4ky9F4KU1gH8S83ooz1w
+M��y�59�j0����|����ct9.�Jŵa���upk�#�'��I�Qu�6��X����Y�U� j"[)5[���Ê�8�H��K$��'�J�
\ No newline at end of file
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 3d35497..556952e 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -6,7 +6,7 @@ let
     "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJYQQXPMHYBtRcPzSkjQ3oqyje8T4UlCpbr6XjrlzzlK srid@zest"
   ];
 
-  pureintent = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICkY5feaNt4elPqRQimB9h3OFxtFAzp98p1H+JezBv92 root@nixos";
+  pureintent = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJUzYd7ys2gzx0Zu7yZDjZaRdUHDZIVahyVgaU2w2Ms8 root@nixos";
   systems = [
     pureintent
   ];
@@ -19,4 +19,5 @@ in
   "gmail-app-password.age".publicKeys = users ++ systems;
   "hackage-password.age".publicKeys = users ++ systems;
   "juspay-anthropic-api-key.age".publicKeys = users ++ systems;
+  "beszel-agent-key.age".publicKeys = users ++ systems;
 }