diff --git a/flake.lock b/flake.lock
index 0f21b43..7a14c69 100644
--- a/flake.lock
+++ b/flake.lock
@@ -385,11 +385,11 @@
     },
     "nixos-hardware": {
       "locked": {
-        "lastModified": 1738471961,
-        "narHash": "sha256-cgXDFrplNGs7bCVzXhRofjD8oJYqqXGcmUzXjHmip6Y=",
+        "lastModified": 1738638143,
+        "narHash": "sha256-ZYMe4c4OCtIUBn5hx15PEGr0+B1cNEpl2dsaLxwY2W0=",
         "owner": "NixOS",
         "repo": "nixos-hardware",
-        "rev": "537286c3c59b40311e5418a180b38034661d2536",
+        "rev": "9bdd53f5908453e4d03f395eb1615c3e9a351f70",
         "type": "github"
       },
       "original": {
@@ -401,11 +401,11 @@
     },
     "nixpkgs": {
       "locked": {
-        "lastModified": 1738435198,
-        "narHash": "sha256-5+Hmo4nbqw8FrW85FlNm4IIrRnZ7bn0cmXlScNsNRLo=",
+        "lastModified": 1738574474,
+        "narHash": "sha256-rvyfF49e/k6vkrRTV4ILrWd92W+nmBDfRYZgctOyolQ=",
         "owner": "NixOS",
         "repo": "nixpkgs",
-        "rev": "f6687779bf4c396250831aa5a32cbfeb85bb07a3",
+        "rev": "fecfeb86328381268e29e998ddd3ebc70bbd7f7c",
         "type": "github"
       },
       "original": {
@@ -445,11 +445,11 @@
     },
     "nixpkgs-unstable": {
       "locked": {
-        "lastModified": 1738410390,
-        "narHash": "sha256-xvTo0Aw0+veek7hvEVLzErmJyQkEcRk6PSR4zsRQFEc=",
+        "lastModified": 1738546358,
+        "narHash": "sha256-nLivjIygCiqLp5QcL7l56Tca/elVqM9FG1hGd9ZSsrg=",
         "owner": "nixos",
         "repo": "nixpkgs",
-        "rev": "3a228057f5b619feb3186e986dbe76278d707b6e",
+        "rev": "c6e957d81b96751a3d5967a0fd73694f303cc914",
         "type": "github"
       },
       "original": {
@@ -701,11 +701,11 @@
         ]
       },
       "locked": {
-        "lastModified": 1738526440,
-        "narHash": "sha256-pveA7FOO6Y4pTnVIyx3xLUHUpq9JW9FqEj8E0t+YIjQ=",
+        "lastModified": 1738536830,
+        "narHash": "sha256-3QbNcI9qJ0tKv00w0r2Amqf9pylHVolcTyEi30WZxY8=",
         "ref": "main",
-        "rev": "b1c65c444b21d1c8ddbefcfa339ac7861358d323",
-        "revCount": 4,
+        "rev": "6fd169aab3ce461fef6a1a4dcbb2ef643e12d9e6",
+        "revCount": 5,
         "type": "git",
         "url": "https://codeberg.org/0xa/website.git"
       },
diff --git a/hosts/cloud/proxy/git.nix b/hosts/cloud/proxy/git.nix
index 49be270..ac53f4c 100644
--- a/hosts/cloud/proxy/git.nix
+++ b/hosts/cloud/proxy/git.nix
@@ -2,7 +2,9 @@
 {
   # ssh config for forgejo
   # need ip forward for nat
-  boot.kernel.sysctl = { "net.ipv4.ip_forward" = 1; };
+  boot.kernel.sysctl = {
+    "net.ipv4.ip_forward" = 1;
+  };
 
   networking.firewall = {
     # open port explicitly
@@ -18,19 +20,20 @@
     '';
   };
   # host sshd: only listen on oxapentane.com and mgmt vpn
-  services.openssh.listenAddresses = map (a :
-  {
-    addr = a;
-    port = 22;
-  }) [
-    # enp1s0
-    "188.245.196.27"
-    "2a01:4f8:c17:7f8a::1"
-    # wg-0xa-mgmt
-    "10.89.87.1"
-    "fd31:185d:722e::1"
-  ];
-
+  services.openssh.listenAddresses =
+    map
+      (a: {
+        addr = a;
+        port = 22;
+      })
+      [
+        # enp1s0
+        "188.245.196.27"
+        "2a01:4f8:c17:7f8a::1"
+        # wg-0xa-mgmt
+        "10.89.87.1"
+        "fd31:185d:722e::1"
+      ];
 
   services.nginx.upstreams.forgejo = {
     servers = {
diff --git a/hosts/forgejo/forgejo.nix b/hosts/forgejo/forgejo.nix
index d099efb..965354f 100644
--- a/hosts/forgejo/forgejo.nix
+++ b/hosts/forgejo/forgejo.nix
@@ -1,4 +1,9 @@
-{ config, pkgs, lib, ... }:
+{
+  config,
+  pkgs,
+  lib,
+  ...
+}:
 {
   services.forgejo = {
     enable = true;
@@ -27,8 +32,8 @@
         SSH_LISTEN_PORT = 2222;
       };
       repository = {
-        DEFAULT_REPO_UNITS="repo.code,repo.releases,repo.issues,repo.pulls";
-        ENABLE_PUSH_CREATE_USER=true;
+        DEFAULT_REPO_UNITS = "repo.code,repo.releases,repo.issues,repo.pulls";
+        ENABLE_PUSH_CREATE_USER = true;
       };
       service = {
         REGISTER_EMAIL_CONFIRM = false;
@@ -43,21 +48,23 @@
   };
 
   # expose forgejo cli
-  environment.systemPackages = let
-    cfg = config.services.forgejo;
-    forgejo-cli = pkgs.writeScriptBin "forgejo-cli" ''
-      #!${pkgs.runtimeShell}
-      cd ${cfg.stateDir}
-      sudo=exec
-      if [[ "$USER" != forgejo ]]; then
-        sudo='exec /run/wrappers/bin/sudo -u ${cfg.user} -g ${cfg.group} --preserve-env=GITEA_WORK_DIR --preserve-env=GITEA_CUSTOM'
-      fi
-      # Note that these variable names will change
-      export GITEA_WORK_DIR=${cfg.stateDir}
-      export GITEA_CUSTOM=${cfg.customDir}
-      $sudo ${lib.getExe cfg.package} "$@"
-  ''; in [
-    forgejo-cli
-  ];
+  environment.systemPackages =
+    let
+      cfg = config.services.forgejo;
+      forgejo-cli = pkgs.writeScriptBin "forgejo-cli" ''
+        #!${pkgs.runtimeShell}
+        cd ${cfg.stateDir}
+        sudo=exec
+        if [[ "$USER" != forgejo ]]; then
+          sudo='exec /run/wrappers/bin/sudo -u ${cfg.user} -g ${cfg.group} --preserve-env=GITEA_WORK_DIR --preserve-env=GITEA_CUSTOM'
+        fi
+        # Note that these variable names will change
+        export GITEA_WORK_DIR=${cfg.stateDir}
+        export GITEA_CUSTOM=${cfg.customDir}
+        $sudo ${lib.getExe cfg.package} "$@"
+      '';
+    in
+    [
+      forgejo-cli
+    ];
 }
-
diff --git a/modules/tlp.nix b/modules/tlp.nix
index 0265110..5606ab2 100644
--- a/modules/tlp.nix
+++ b/modules/tlp.nix
@@ -9,7 +9,6 @@
       USB_BLACKLIST = "1d50:604b 1d50:6089 1d50:cc15 1fc9:000c";
       CPU_SCALING_GOVERNOR_ON_AC = "performance";
       CPU_SCALING_GOVERNOR_ON_BAT = "powersave";
-      WIFI_PWR_ON_BAT = "off";
     };
   };
 }