{
  config,
  lib,
  pkgs,
  ...
}: {
  imports = [
    ../../profiles/core.nix
    ../../profiles/user.nix
    ../../profiles/ssh.nix
    ../../mixins/tailscale.nix
    ../../mixins/cli.nix
    ./website.nix
    ./git.nix
  ];

  config = {
    _module.args.nixinate = {
      host = "vps";
      sshUser = "tzlil";
      buildOn = "remote"; # valid args are "local" or "remote"
      substituteOnTarget = true; # if buildOn is "local" then it will substitute on the target, "-s"
      hermetic = false;
    };

    networking.hostName = "vps";

    boot = {
      kernelPackages = lib.mkDefault pkgs.linuxPackages_latest;
      kernelParams = [
        "init_on_free=1"
        "page_poison=1"
        "page_alloc.shuffle=1"
        "slab_nomerge"
        "vsyscall=none"
      ];
      cleanTmpDir = true;
      loader.grub.device = "/dev/vda";
      initrd = {
        availableKernelModules = ["ata_piix" "uhci_hcd" "virtio_pci" "sr_mod" "virtio_blk"];
        kernelModules = [];
      };
      kernelModules = [];
      extraModulePackages = [];
    };

    networking.interfaces.ens3.useDHCP = lib.mkDefault true;

    nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
    hardware.cpu.amd.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
    virtualisation.hypervGuest.enable = true;

    time.timeZone = lib.mkDefault "Frankfurt";

    fileSystems = {
      "/" = {
        device = "none";
        fsType = "tmpfs";
        options = ["noexec" "defaults" "size=2G" "mode=755"];
      };
      "/nix" = {
        device = "/dev/disk/by-uuid/e4c4735d-bfdd-477f-bc43-d07510cb6a9a";
        fsType = "btrfs";
      };
      "/boot" = {
        device = "/dev/disk/by-uuid/7ea63707-099d-4c21-90eb-a51bfa6d8ba5";
        fsType = "ext4";
      };
    };

    swapDevices = [{device = "/dev/disk/by-uuid/00eb2d2e-4d7c-4e95-804d-e9ecb22679d4";}];

    zramSwap = {
      enable = true;
      algorithm = "zstd";
    };
  };
}