refactor: dendritic principles

modules/secrets/sops-password.nix

@@ -1,11 +1,14 @@
 { config, ... }:
 let
   account = config.repo.account;
+  nixosModules = config.flake.modules.nixos;
 in
 {
   flake.modules.nixos.sops-password =
     { config, ... }:
     {
+      imports = [ nixosModules.sops ];
+
       sops.secrets.hashed-password.neededForUsers = true;
 
       users.users.${account.name}.hashedPasswordFile = config.sops.secrets.hashed-password.path;

modules/secrets/sops.nix

@@ -5,6 +5,7 @@
 }:
 let
   nixosModules = config.flake.modules.nixos;
+  hmModules = config.flake.modules.homeManager;
   sopsAdminKeyPath = "/var/lib/sops/keys.txt";
 in
 {
@@ -22,6 +23,8 @@ in
     {
       imports = [ nixosModules.sops ];
 
+      home-manager.sharedModules = [ hmModules.sops ];
+
       sops.age.keyFile = sopsAdminKeyPath;
 
       systemd.tmpfiles.rules = [