{
  config,
  inputs,
  system,
  lib,
  ...
}:
let
  selfPkgs = inputs.self.packages.${system};
in
{
  sops.secrets = {
    "ssh/personal/key" = {
      sopsFile = "${inputs.secrets}/personal/secrets.yaml";
      key = "ssh/key";
      path = "/root/.ssh/ssh_personal_ed25519_key";
    };

    "ssh/sas/ed25519/key" = {
      sopsFile = "${inputs.secrets}/sas/secrets.yaml";
      key = "ssh/ed25519/key";
      path = "/root/.ssh/ssh_sas_ed25519_key";
    };
  };

  programs.ssh = {
    extraConfig = ''
      Host karaolidis.com
        User git
        HostName karaolidis.com
        IdentityFile /root/.ssh/ssh_personal_ed25519_key

      Host github.com
        User git
        HostName github.com
        IdentityFile /root/.ssh/ssh_sas_ed25519_key

      Host gitlab.sas.com
        User git
        HostName gitlab.sas.com
        IdentityFile /root/.ssh/ssh_sas_ed25519_key
    '';

    knownHostsFiles =
      with selfPkgs;
      (
        [ ssh-known-hosts-github ]
        ++ lib.lists.optionals config.sas.build.private [ ssh-known-hosts-sas-gitlab ]
      );
  };
}