diff --git a/flake.nix b/flake.nix
index f42bccf..ef736f0 100644
--- a/flake.nix
+++ b/flake.nix
@@ -61,23 +61,6 @@
               home-manager.useGlobalPkgs = true;
               home-manager.useUserPackages = true;
             }
-
-            ({ pkgs, ... }: {
-              ixpkgs.overlays = [
-                (self: super: {
-                  inadyn = super.inadyn.overrideAttrs
-                    (oldAttrs: rec {
-                      src = pkgs.fetchFromGitHub
-                        {
-                          owner = "troglobit";
-                          repo = "inadyn";
-                          rev = "7d576c4d00d312597c2b9c06c00529d2dde5ac89";
-                          hash = "sha256-EJ9/MZhz/Gjj2RCMRDkwuKRatig/t1wAqQRqOcHA2gc=";
-                        };
-                    });
-                })
-              ];
-            })
           ];
         };
 
diff --git a/hosts/carbon/services/forgejo.nix b/hosts/carbon/services/forgejo.nix
index 23976e5..b047b41 100644
--- a/hosts/carbon/services/forgejo.nix
+++ b/hosts/carbon/services/forgejo.nix
@@ -35,9 +35,16 @@
       enable = true;
       url = "https://git.${config.networking.domain}";
       tokenFile = config.age.secrets.forgejo-runner.path;
+      settings = {
+        container = {
+          # TODO fix: networking
+          # instead of using host, create a subnet that cannot contat other server on my network to avoid being haxxed
+          network = "host";
+        };
+      };
       labels = [
-        "debian-latest:docker://node:18-bullseye"
-        "ubuntu-latest:docker://node:18-bullseye"
+        "ubuntu-latest:docker://gitea/runner-images:ubuntu-latest"
+
       ];
       name = config.networking.domain;
     };
diff --git a/secrets/forgejo-runner.age b/secrets/forgejo-runner.age
index 0bb2485..1d41b17 100644
--- a/secrets/forgejo-runner.age
+++ b/secrets/forgejo-runner.age
@@ -1,7 +1,8 @@
 age-encryption.org/v1
--> ssh-ed25519 VxAJjg FCHQ8R8lunZeC1W5GgHRuXOzKebT3H7+WgmkfC1MhHI
-Yh11JHjmuMCNl4cGpJYgYEHxfGSPtCaE5WNvEldh+FE
--> ssh-ed25519 pw11Hg bwbMaWmmWy5N9DlvWbLc8Np1ZsVyvFBFzKuc+AC46G0
-mMk+gUs+HDVF7Ud36JUZYrocc4rlDpjcmIlG6Zov34A
---- G5mTwB+gZ3fJx1OyFbHnvYpYmjDJEAjKJAPd9LXBHHQ
-î`H@G—§}Êƒ¸cÊó”ê>|€gã­Ðý”’@ò/9Òb°°mMx,}¶»gE¾"ìw4§Jä³^«ù‡úž
\ No newline at end of file
+-> ssh-ed25519 VxAJjg eaOCTyyjDYAV78PNN8b7EMzwDIKCFA6eKElF4k+Dfjs
+ctHZ/87qQN2r6AUpm7fQ+kpgbZ8KHUC04VV0vCdBDRI
+-> ssh-ed25519 pw11Hg XZMBOseFbvE2QGrmm97XOXNr1B+G2PERwcYGrQEvRh0
+P45AmFLCsROrWygWjppB7KSMgxncuJVgbDgmv2jx1XY
+--- hvN1ZYQtkkAeRUdTkmMs1mPXj7NSkZQH2IwFa6wqZa4
+ù•Ö‡ån–<K¥Hñ[Ã
+ú1ÊA^¼{Uè&¯)ZîÕÆ8ÓÿB÷™`oß*e{ˆ±Ll!£ÎrÆ¡"·ÛÁ’×šz,
\ No newline at end of file