manifest.toml

NAME

manifest.toml - declarative environment configuration format

SYNOPSIS

The manifest.toml file is a declarative format for specifying the packages installed in an environment, environment variables to make available to the environment, a shell script to run upon activation of the environment, and other options to change the behavior of the environment.

DESCRIPTION

Flox environments come with a declarative manifest in TOML format. An environment can be defined entirely by this one file. The file is divided into just a few sections that are represented as TOML tables:

[install]
[vars]
[hook]
[profile]
[services]
[include]
[build]
[options]
[containerize] - see flox-containerize(1)

schema-version

schema-version is a top-level field that specifies the minimum version of Flox that the manifest is compatible with.

schema-version = "1.10.0"

Valid string values are:

1.10.0: introduced package outputs
1.11.0: introduced minimum-cli-version
1.12.0: introduced services auto-start
1.13.0: introduced profile.deactivate and build sandbox-allow

Existing manifest schemas, including the older version = 1 format, are automatically forward-migrated when using features that require a newer schema (e.g. flox install with package outputs).

minimum-cli-version

minimum-cli-version is a top-level field that specifies the minimum version of the Flox CLI required to use the environment. Using an older version will emit a warning but not block the command. This is useful when an environment depends on behavior introduced in a specific release (e.g. a bugfix or feature that isn't schema related).

minimum-cli-version = "1.11.0"

The value must be a valid semantic version string (e.g. "1.11.0"). Invalid values cause the manifest to be rejected.

An optional reason can be provided using the table form which will be included in the emitted warning message:

[minimum-cli-version]
version = "1.11.0"
reason = "Needs feature X"

install

The [install] table is the core of the environment, specifying which packages you'd like installed in the environment. An example of the [install] table is shown below:

[install]
ripgrep.pkg-path = "ripgrep"
pip.pkg-path = "python310Packages.pip"

Since this is TOML, equivalent ways of writing this would be

[install]
ripgrep = { pkg-path = "ripgrep" }
pip = { pkg-path = "python310Packages.pip" }

[install.ripgrep]
pkg-path = "ripgrep"

[install.pip]
pkg-path = "python310Packages.pip"

Flox will use the first format by default when automatically editing the manifest.

Package names

Packages are organized in a hierarchical structure such that certain packages are found at the top level (e.g. ripgrep), and other packages are found under package sets (e.g. python310Packages.pip). We call this location within the catalog the "pkg-path".

The pkg-path is searched when you execute a flox search command. The pkg-path is what's shown by flox show. Finally, the pkg-path appears in your manifest after a flox install.

[install]
ripgrep.pkg-path = "ripgrep"
pip.pkg-path = "python310Packages.pip"

Package descriptors

Each entry in the [install] table is a key-value pair. The key in the key-value pair (e.g. ripgrep, pip) is referred to as an "install ID", and represents the name by which you will refer to a particular package e.g. if you wanted to uninstall or upgrade the package. Install IDs are inferred from the last attribute in the pkg-path, but may also be specified either at install-time via the -i option or interactively via flox-edit(1).

The value in the key-value pair is called a "package descriptor". A package is specified by a number of available options which are separate from the install ID, so you are free to change them independently of one another. This allows you to change package details while keeping a stable install ID, for example upgrading from gcc.pkg-path = "gcc12" to gcc.pkg-path = "gcc13".

Most package descriptors will be catalog descriptors, which allow specifying packages from the Flox catalog. A second format, flake descriptors, is also supported, which allows specifying software to install from an arbitrary Nix flake.

Catalog descriptors

The full list of catalog descriptor options is:

Descriptor ::= {
  pkg-group          = null | <STRING>
, version            = null | <STRING>
, systems            = null | [<STRING>, ...]
, pkg-path           = <STRING>
, priority           = null | <INT>
, outputs            = null | "all" | [<STRING>, ...]
}

Only pkg-path is required.

By specifying some of these options you create a set of requirements that the installed program must satisfy, otherwise installation will fail.

By default, all packages belong to the same pkg-group, which means providing specific versions for two different packages can quickly lead to installation failures. To avoid such failures, either give a looser version constraint, or move one of the packages to a different package group.

Each option is described below:

pkg-group Marks a package as belonging to a pkg-group.

The pkg-group is a collection of software that is known to work together at a point in time. Adding packages to a pkg-group enables packages in the pkg-group to share the same libraries and dependencies, which ensures maximum compatibility and minimizes the size of the environment.

Packages are marked as belonging to a pkg-group simply by setting this option to the name of the pkg-group. Packages that do not have a pkg-group specified belong to the same group.

Multiple pkg-groups may resolve to the same version of the catalog. Pkg-groups are upgraded as a unit, ensuring that the packages within the pkg-group continue to work together. See flox-upgrade(1) for more details on how pkg-groups and packages interact during upgrades.

version Requires that the package match either an exact version or a semver range.

The semantic version can be specified with the typical qualifiers such as ^, >=, etc. Semantic versions that do not specify all three fields (MAJOR.MINOR.PATCH) will treat the unspecified fields as wildcards. This instructs Flox to find the latest versions for those fields. For example version = "1.2" would select the latest version in the 1.2.X series.

systems A list of systems on which to install this package. When omitted this defaults to the same systems that the manifest specifies that it supports via options.systems.

pkg-path The abbreviated location of a package within a catalog. A pkg-path is a sequence of one or more attributes joined by a delimiter. For example, both ripgrep and python310Packages.pip are pkg-paths. A pkg-path that contains more than one attribute can be represented as either a single string that contains a '.'-delimited sequence of the attributes, or it can be represented as a TOML array of strings where each string is an attribute. For example, both "python310Packages.pip" and ["python310Packages", "pip"] are equivalent for the pkg-path option.

priority A priority used to resolve file conflicts where lower values indicate higher priority.

Each package internally has /bin, /man, /include, and other directories for the files they provide. These directories from all packages in the environment are merged when building the environment. Two packages that provide the same /bin/foo file cause a conflict, and it's ambiguous which file should ultimately be placed into the environment. Such conflicts can be resolved by assigning different priorities to the conflicting packages.

The default priority is 5. Packages with a lower priority value will take precedence over packages with higher priority values.

outputs Selects which outputs of a package to install.

Packages can split up the files they install into what are called outputs. For example, a package can put binaries into a bin output and development headers in a dev output. If an environment only needs to use the binaries from the package, it can reduce its size by only installing the bin output.

The outputs of existing packages can be inspected with flox list -a and new packages can be inspected with flox show.

When omitted, the package's default outputs are installed. When set to an array of strings (e.g. ["bin", "man"]), only those specific outputs are installed. When set to the string "all", all available outputs of the package are installed.

Flake descriptors

Flake descriptors allow installing software from an arbitrary Nix flake.

The full list of flake descriptor options is:

Descriptor ::= {
  flake              = <STRING>
, systems            = null | [<STRING>, ...]
, priority           = null | <INT>
, outputs            = null | "all" | [<STRING>, ...]
}

Only flake is required. systems, priority, and outputs behave the same as described above for catalog descriptors, and flake is described below:

flake Specifies a Nix flake installable, which Nix refers to as a flake output attribute and documents at https://nix.dev/manual/nix/2.17/command-ref/new-cli/nix#flake-output-attribute. Flake installables are of the form flakeref[#attrpath], where flakeref is a flake reference and attrpath is an optional attribute path.

Flox tries to use the same fallback behavior as Nix; if no attrpath is specified, the flake is checked for containing packages.$system.default or defaultPackage.$system. If an attrpath is specified, it is checked whether packages.$system.$attrpath or legacyPackages.$system.$attrpath exist.

Store paths

Store path descriptors allow installing software from an arbitrary Nix store path.

The full list of store path descriptor options is:

Descriptor ::= {
  store-path         = STRING
, systems            = null | [<STRING>, ...]
, priority           = null | <INT>
}

Only store-path is required. priority behaves the same as described above for catalog descriptors and flake installables, and store-path is described below:

store-path Specifies a nix store path, i.e. a nix built package in /nix/store. This can be the result of a native Nix operations such as nix build, nix copy, etc. The store path has to be available on the current system in order to build the environment. The environment will fail to build on other systems without first distributing the store path via Nix tooling. As such, this feature is most suitable for local experiments and ad-hoc interoperability with Nix.

system Behaves equally to the system attribute of catalog descriptors and flakes installables. Unlike the former, users are encouraged to specify it, because store paths are generally system dependent.

vars

The [vars] section allows you to define environment variables for your environment that are set during environment activation. The environment variables specified here cannot reference one another. The names and values of the environment variables are copied verbatim into the activation script, so capitalization will be preserved.

Example:

[vars]
DB_URL = "http://localhost:2000"
SERVER_PORT = "3000"

hook

The on-activate script in the [hook] section is useful for performing initialization in a predictable Bash shell environment.

on-activate

The on-activate script is sourced from a bash shell, and it can be useful for spawning processes, dynamically setting environment variables, and creating files and directories to be used by the subsequent profile scripts, commands, and shells.

Hook scripts inherit environment variables set in the [vars] section, and variables set here will in turn be inherited by the [profile] scripts described below.

Any output written to stdout in a hook script is redirected to stderr to avoid it being mixed with the output of profile section scripts that write to stdout for "in-place" activations.

[hook]
on-activate = """
    # Interact with the tty as you would in any script
    echo "Starting up $FLOX_ENV_DESCRIPTION environment ..."
    read -e -p "Favourite colour or favorite color? " value

    # Set variables, create files and directories
    venv_dir="$(mktemp -d)"
    export venv_dir

    # Perform initialization steps, e.g. create a python venv
    python -m venv "$venv_dir"

    # Invoke apps that configure the environment via stdout
    eval "$(ssh-agent)"
"""

The on-activate script is not re-run when multiple activations are run at the same time; for instance, if flox activate is run in two different shells, the first activation will run the hook, but the second will not. After all activations exit, the next flox activate will once again run the hook. Currently, environment variables set by the first run of the on-activate script are captured and then set by activations that don't run on-activate, but this behavior may change.

The on-activate script may be re-run by other flox commands; we may create ephemeral activations and thus run the script multiple times for commands such as services start. For this reason, it's best practice to make on-activate idempotent. However, the environment of your current shell is only affected by the initial run of the script for the first activation for your shell.

It's also best practice to write hooks defensively, assuming the user is using the environment from any directory on their machine.

script - DEPRECATED

This field was deprecated in favor of the profile section.

profile

Scripts defined in the [profile] section are sourced by your shell and inherit environment variables set in the [vars] section and by the [hook] scripts. The profile.common script is sourced for every shell, and special care should be taken to ensure compatibility with all shells, after which exactly one of profile.{bash,fish,tcsh,zsh} is sourced by the corresponding shell.

These scripts are useful for performing shell-specific customizations such as setting aliases or configuring the prompt.

[profile]
common = """
    echo "it's gettin' flox in here"
"""
bash = """
    source $venv_dir/bin/activate
    alias foo="echo bar"
    set -o vi
"""
zsh = """
    source $venv_dir/bin/activate
    alias foo="echo bar"
    bindkey -v
"""
fish = """
    source $venv_dir/bin/activate.fish
    alias foo="echo bar"
    fish_vi_key_bindings
"""

Profile scripts are re-run when an environment is already active and eval "$(flox activate)" or flox activate -c CMD is run. Re-running profile scripts allows aliases to be set in subshells that inherit from a parent shell with an already active environment.

services

The [services] section of the manifest allows you to describe the services you would like to run as part of your environment e.g. a web server or a database. The services you define here use the packages provided by the [install] section and any variables you've defined in the [vars] section or hook.on-activate script.

The [services] section is a table of key-value pairs where the keys determine the service names, and the values (service descriptors) determine how to configure and run the services.

An example service definition is shown below:

[services.database]
command = "postgres start"
vars.PGUSER = "myuser"
vars.PGPASSWORD = "super-secret"
vars.PGDATABASE = "mydb"
vars.PGPORT = "9001"

This would define a service called database that configures and starts a PostgreSQL database.

Top-level options for the [services] block are:

auto-start Whether to start all services automatically on flox activate. Can be suppressed with --no-start-services.

The full set of options for an individual service descriptor is:

ServiceDescriptor ::= {
  command    = STRING
, vars       = null | Map[STRING, STRING]
, is-daemon  = null | BOOL
, shutdown   = null | Shutdown
, systems    = null | [<STRING>, ...]
}

Shutdown ::= {
  command = STRING
}

command The command to run (interpreted by a Bash shell) to start the service. This command can use any environment variables that were set in the [vars] section, the hook.on-activate script, or the service-specific vars table.

vars A table of environment variables to set for the invocation of this specific service. Nothing outside of this service will observe these environment variables.

is-daemon Whether this service spawns a daemon when it starts. Some commands start a background process and then terminate instead of themselves running for an extended period of time. The underlying process manager cannot track the PID of the daemon that is spawned, only the PID of the process that spawned the daemon. For this reason you must set the is-daemon option to true, otherwise flox services status will show that the service has terminated even though the daemon may still be running. Furthermore, since the process manager doesn't know the PID of the daemon itself, it cannot deliver a shutdown signal to the daemon. For this reason you must also provide the shutdown.command option so that the process manager knows what command to run to shut down the daemon. Failure to set both is-daemon and shutdown.command will allow the daemon to continue running even after running flox services stop or exiting the last activation of the environment.

shutdown.command A command to run to shut down the service instead of delivering the SIGTERM signal to the process. Some programs require special handling to shut down properly e.g. a program that spawns a server process and uses a client to tell the server to shut down. Sending a SIGTERM to a client in that case may not shut down the server. In those cases you may provide a specific shutdown command to run instead of relying on the default behavior of sending a SIGTERM to the service. This field is required if the is-daemon field is true.

systems An optional list of systems on which to run this service. If omitted, the service is not restricted.

include

The [include] section of the manifest describes other environments that you'd like to merge with the current manifest in order to compose them into a single environment.

The list of environments to include is specified by the include.environments array. The order of the "include descriptors" in this array specifies the priority that should be used when merging the manifests. Descriptors later in the array take higher priority than those earlier in the array, and manifest fields in the composing manifest take the highest priority.

The merged manifest can be viewed with flox list --config.

Syntax

An example [include] section is shown below:

[include]
environments = [
    { dir = "../path/to/env" },
    { dir = "../path/to/other/env", name = "myenv" }
]

As mentioned above, you include other environments by listing them as an array of tables in the include.environments array. The schema for these "include descriptors" is shown below:

IncludeDescriptor ::= LocalIncludeDescriptor
                    | FloxHubIncludeDescriptor
                    | RemoteIncludeDescriptor (deprecated)

LocalIncludeDescriptor ::= {
  dir  = STRING
, name = null | STRING
}

FloxHubIncludeDescriptor ::= {
  remote = STRING
, name   = null | STRING
}

# Deprecated, will be removed in a future release
RemoteIncludeDescriptor ::= {
  remote = STRING
, name   = null | STRING
}

The fields in these include descriptors are as follows:

dir : The local path to the environment to include. This has the same semantics as the --dir flag passed to many Flox commands.

remote : The FloxHub reference of an environment to include. This has the same semantics as the --reference <env-ref> --upstream flag passed to many Flox commands. That is, Flox will include the referenced environment as it is stored on FloxHub.

name : An optional override to the name of the included environment. This is useful when you are including multiple environments that have the same name, or when you want to provide a more convenient name for the included environment.

Changes to the included environments aren't automatically reflected in the composing environment. You control when updates are pulled in by using flox include upgrade.

Merge semantics

When merging manifests, different sections have different merge semantics. As mentioned above, the order in which include descriptors are listed in the include.environments array determines the priority of the manifests, with the composing manifest having the highest priority. In the following discussion we refer to "lower priority manifests" and "higher priority manifests" as those being listed earlier or later in the array, respectively.

As of right now there is no way to remove something from a lower priority manifest, but things can be overridden or added by higher priority manifests.

[install] : Package descriptors are overwritten entirely by a higher priority manifest.

[vars] : Variables are overwritten entirely by a higher priority manifest.

[hook] : The scripts in hook are appended to one another with a newline in between. Scripts from higher priority manifests come after those from lower priority manifests.

[profile] : The scripts in the profile section are appended in the same way that they are for hook.

[services] : Service descriptors are entirely overwritten by higher priority manifests

[include] : The include section is omitted from merged manifests, so no merging of the include section ever happens.

[containerize] : The containerize.config field is deep merged, meaning that individual fields of containerize.config are merged rather than containerize.config being completely overwritten. The fields within containerize.config are merged as follows: user, cmd, working_dir, and stop_signal are overwritten; labels and exposed_ports are merged via the union of the values in the high priority and low priority manifests.

[options] : The options section is also deep merged, meaning that individual fields of the options section are merged rather than being completely overwritten. All of the fields in the options section are individually overwritten by higher priority manifests e.g. options.allow.broken is individually overwritten by a higher priority manifest, as is options.allow.licenses, etc.

This has implications for the activation mode of a composed environment. Since the default activation mode is dev, it is not present in the manifest by default. This means that if one included environment sets options.activate.mode to run, the merged manifest will also have options.activate.mode = run unless a higher priority manifest explicitly sets options.activate.mode = dev.

build

The [build] section of the manifest allows you to describe build instructions for custom packages that can be built using flox build.

The build commands use the packages provided by the [install] section and any variables defined in the [vars] section or hook.on-activate script.

The [build] section is a table of key-value pairs where the keys determine the package names, and the values (build descriptors) determine how to build the package.

An example build definition is shown below:

[build.hello]
command = '''
mkdir -p $out
echo 'Hello, World!' >> $out/hello.txt
'''

This would define a package called hello that produces a single file hello.txt containing the string "Hello, World!". See flox-build(1) for more details.

The full set of options is shown below:

BuildDescriptor ::= {
  command          = STRING
, sandbox          = null | ("off" | "warn" | "enforce" | "pure")
, sandbox-allow    = null | [<STRING>, ...]
, version          = null | STRING | VersionFile | VersionCommand
, description      = null | STRING
, runtime-packages = null | [<STRING>, ...]
}

VersionFile ::= {
  file = STRING
}

VersionCommand ::= {
  command = STRING
}

command The command to run (interpreted by a Bash shell) to build the package. This command can use any environment variables that were set in the [vars] section, or the hook.on-activate script.

sandbox The level of sandboxing applied to the build. When set to "off", the build is executed in a subshell of the current shell and is similar to running the commands manually in a subshell created by flox activate. When set to "warn", the build runs as for "off", but a warning is printed for each file the build accesses from outside its package closure. This helps surface undeclared dependencies without failing the build. When set to "enforce", the build runs as for "warn", but access to files outside the build's package closure is denied, so a build that relies on an undeclared dependency fails. When set to "pure", the build will be unable to make network connections and can only access to the files currently under version control. Consequently, "pure" builds require your project to be under git version control.

sandbox-allow A list of paths or glob patterns the build is permitted to read from outside its package closure without the "warn"/"enforce" sandbox warning about them (and, under "enforce", without failing the build). A leading ~/ is expanded to the user's home directory, and */** match across path separators, so for example "~/.npm/**" allows any file under ~/.npm. Individual patterns must not contain spaces (the list is passed to the sandbox as a space-separated value). Only meaningful for the local sandbox modes ("warn" and "enforce"); it has no effect under "off" or "pure".

version The version to attach to this build artifact. This may be specified in one of the following ways:

as a string: version = "0.0.1"
as read from a file: version.file = "<path>"
as returned by a command: version.command = "<cmd> <args>"

description The description string to attach to this build artifact.

runtime-packages A list of install IDs from the [install] section of the manifest, used to restrict what dependencies are provided to the built package at runtime. By default all packages from the default package group are included as runtime dependencies. If this option is specified, only the listed packages are included.

options

The [options] section of the manifest details settings for the environment itself.

The full set of options are listed below:

Options ::= {
  systems                   = null | [<STRING>, ...]
, activate                  = null | Activate
, allow                     = null | Allows
, semver                    = null | Semver
, cuda-detection            = null | <BOOL>
}

Activate ::= {
  mode = null | 'dev' | 'run'
}

Allows ::= {
  unfree   = null | <BOOL>
, broken   = null | <BOOL>
, licenses = null | [<STRING>, ...]
}

Semver ::= {
  allow-pre-releases = <BOOL>
}

systems The allowlist of systems that this environment supports. Valid values are x86_64-linux, aarch64-linux, x86_64-darwin, and aarch64-darwin. flox init automatically populates this list with the current system type. A user that attempts to pull an environment from FloxHub when their environment isn't explicitly supported will be prompted whether to automatically add their system to this list. See flox-pull(1) for more details.

activate.mode Whether to activate in "dev" (default) or "run" mode. This value can be overridden with flox activate --mode.

In "dev" mode a package, all of its development dependencies, and language specific environment variables are made available. As the name implies, this is useful at development time. However, this may cause unexpected failures when layering environments or when activating an environment system-wide.

In "run" mode only the requested packages are made available in PATH (and their man pages made available). This behavior is more in line with what you would expect from a system-wide package manager like apt, yum, or brew.

allow.unfree Allows packages with unfree licenses to be installed and appear in search results. The default is false.

allow.broken Allows packages that are marked broken in the catalog to be installed and appear in search results. The default is false.

allow.licenses An allowlist of software licenses to allow in search results in installs. Valid entries are SPDX Identifiers. An empty list allows all licenses.

semver.allow-pre-releases Whether to allow pre-release software for package installations. The default is false. Setting this value to true would allow a package version 4.2.0-pre rather than 4.1.9.

cuda-detection Whether to detect CUDA libraries and provide them to the environment. The default is true. When enabled, Flox will detect if you have an Nvidia device and attempt to locate libcuda in well-known paths.