feat: add watchtower container

To handle docker images & containers updates.

home-server.nix

@@ -24,6 +24,7 @@ in with builtins; {
     ./services/mosquitto.nix
     ./services/genie.nix
     ./services/home-assistant.nix
+    ./services/watchtower.nix
     ./services/owntracks.nix
     ./services/immich.nix
     ./services/miniflux.nix

services/watchtower.nix

@@ -0,0 +1,18 @@
+{ config, lib, pkgs, ... }:
+
+# watchtower keeps images & containers up-to-date
+{
+  virtualisation.oci-containers.containers = {
+    watchtower = {
+      image = "containrrr/watchtower";
+      volumes = [
+        "/var/run/podman/podman.sock:/var/run/docker.sock"
+        "/etc/localtime:/etc/localtime:ro"
+      ];
+      environment = {
+        WATCHTOWER_CLEANUP = "true";
+        WATCHTOWER_INCLUDE_RESTARTING = "true";
+      };
+    };
+  };
+}