diff --git a/modules/profiles/base.nix b/modules/profiles/base.nix
index f3082de..d26bb4a 100644
--- a/modules/profiles/base.nix
+++ b/modules/profiles/base.nix
@@ -1,10 +1,15 @@
-{lib, config, pkgs, ...}: {
+{
+  lib,
+  config,
+  pkgs,
+  ...
+}: {
   lyn.sops.enable = true;
-  nix.settings.experimental-features = [ "nix-command" "flakes" ];
+  nix.settings.experimental-features = ["nix-command" "flakes"];
   nixpkgs.config.allowUnfree = true;
   nix.package = config.pkgsInstances.unstable.lix;
   environment.variables.EDITOR = "nvim";
-  
+
   # TODO
   time.timeZone = "Europe/Berlin";
 
@@ -13,31 +18,30 @@
   networking.firewall.allowPing = true;
   # SSH:
   services.openssh = {
-	enable = true;
-	settings = {
-		X11Forwarding = true;
-		PermitRootLogin = "yes";
-		PasswordAuthentication = false;
-		KbdInteractiveAuthentication = false;
-	};
-	openFirewall = true;
+    enable = true;
+    settings = {
+      X11Forwarding = true;
+      PermitRootLogin = "yes";
+      PasswordAuthentication = false;
+      KbdInteractiveAuthentication = false;
+    };
+    openFirewall = true;
   };
 
   # Disable password checking for wheel group users so we can rely on ssh keys.
   # WARNING: This has an security impact!
   security.sudo.wheelNeedsPassword = false;
 
-   environment.systemPackages = with pkgs; [
+  environment.systemPackages = with pkgs; [
     git
     vim
-    neovim 
+    neovim
     wget
     curl
     htop
   ];
-
   # Use encrypted Quad9 DNS
-  networking.nameservers = [ "127.0.0.1" "::1" ];
+  networking.nameservers = ["127.0.0.1" "::1"];
   services.dnscrypt-proxy2 = {
     enable = true;
     settings = {
@@ -54,7 +58,7 @@
       };
 
       # You can choose a specific set of servers from https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md
-     server_names = ["quad9-dnscrypt-ip4-nofilter-pri" "quad9-dnscrypt-ip6-nofilter-pri"];
+      server_names = ["quad9-dnscrypt-ip4-nofilter-pri" "quad9-dnscrypt-ip6-nofilter-pri"];
     };
   };