{
  config,
  pkgs,
  lib,
  inputs,
  ...
}:
{
  imports = [
    ./boot.nix
    ./networking.nix
    ./users.nix
    ./sops.nix

    ../../modules/homeassistant/homeassistant.nix
  ];

  security.tpm2 = {
    enable = true;
  };

  # Enable nix flakes and nix-command tools
  nix = {
    settings = {
      substituters = [
        "https://nix-community.cachix.org"
        "https://cache.nixos.org/"
      ];
      trusted-public-keys = [
        "nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
      ];
      warn-dirty = lib.mkForce false;
      experimental-features = lib.mkForce [
        "nix-command"
        "flakes"
      ];
      trusted-users = [ "@wheel" ];
    };

    # Garbage collect automatically every week
    gc.automatic = lib.mkDefault true;
    gc.options = lib.mkDefault "--delete-older-than 30d";

    optimise.automatic = lib.mkDefault true;
  };

  # Nixpkgs configuration
  nixpkgs = {
    config = {
      allowUnfree = lib.mkForce true;
      allowUnsupportedSystem = true;
      permittedInsecurePackages = [
        # ...
      ];
    };
  };
}