pipeline:
  build-and-deploy:
    image: nixos/nix:latest
    commands:
      - nix-env -iA nixpkgs.cachix nixpkgs.rsync nixpkgs.jq
      - cachix use $CACHIX_NAME
      - nix --extra-experimental-features "nix-command flakes" -L build -o site
       | jq -r '.[].outputs | to_entries[].value'
       | cachix push $CACHIX_NAME
      - eval `ssh-agent -s`
      - echo "$REMOTE_KEY" | ssh-add -
      - rsync --checksum -ave 'ssh -p 22001' 
        site/* root@weirdnatto.in:/var/lib/site

    secrets: [ cachix_auth_token, cachix_name, remote_key ]