Three blockers off the path so the skeleton evaluates cleanly:
1. flake.lock generated (no inputs were pinned before).
2. hardware-configuration.nix shipped as a placeholder — unbootable
/dev/null root + grub on nodev — so `system.build.toplevel` resolves
without complaining about missing fileSystems / boot.loader. The
file carries a big "overwrite with nixos-generate-config" warning;
the consumer regenerates it before any real switch.
3. Primary user + group declared in configuration.nix (was tripping
the assertion about implicit nogroup defaults and isNormalUser
missing).
Also: `home.homeDirectory` now uses `lib.mkForce` to override
home-manager's nixos-module default of /var/empty, and the deprecated
`programs.git.user{Name,Email}` options migrated to the new
`programs.git.settings.user.{name,email}` shape.
`nix flake check --no-build` now finishes with `all checks passed!`
and no warnings, giving every subsequent change a cheap signal.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
