{ self, inputs, lib, ... }: {
  flake.nixosModules.clanCore = { config, pkgs, options, ... }: {
    imports = [
      ./secrets
      ./zerotier
      ./networking.nix
      inputs.sops-nix.nixosModules.sops
      # just some example options. Can be removed later
      ./bloatware
      ./vm.nix
      ./options.nix
    ];
    options.clanSchema = lib.mkOption {
      type = lib.types.attrs;
      description = "The json schema for the .clan options namespace";
      default = self.lib.jsonschema.parseOptions options.clan;
    };
    options.clanCore = {
      clanDir = lib.mkOption {
        type = lib.types.either lib.types.path lib.types.str;
        description = ''
          the location of the flake repo, used to calculate the location of facts and secrets
        '';
      };
      machineName = lib.mkOption {
        type = lib.types.str;
        description = ''
          the name of the machine
        '';
      };
      clanPkgs = lib.mkOption {
        default = self.packages.${pkgs.system};
        defaultText = "self.packages.${pkgs.system}";
        internal = true;
      };
    };
    options.system.clan = lib.mkOption {
      type = lib.types.submodule {
        options = {
          deployment.data = lib.mkOption {
            type = lib.types.attrs;
            description = ''
              the data to be written to the deployment.json file
            '';
          };
          deployment.file = lib.mkOption {
            type = lib.types.path;
            description = ''
              the location of the deployment.json file
            '';
          };
          deploymentAddress = lib.mkOption {
            type = lib.types.str;
            description = ''
              the address of the deployment server
            '';
          };
          secretsUploadDirectory = lib.mkOption {
            type = lib.types.path;
            description = ''
              the directory on the deployment server where secrets are uploaded
            '';
          };
          uploadSecrets = lib.mkOption {
            type = lib.types.path;
            description = ''
              script to upload secrets to the deployment server
            '';
          };
          generateSecrets = lib.mkOption {
            type = lib.types.path;
            description = ''
              script to generate secrets
            '';
          };
          vm.config = lib.mkOption {
            type = lib.types.attrs;
            description = ''
              the vm config
            '';
          };
          vm.create = lib.mkOption {
            type = lib.types.path;
            description = ''
              json metadata about the vm
            '';
          };
        };
      };
      description = ''
        utility outputs for clan management of this machine
      '';
    };
    # optimization for faster secret generate/upload and machines update
    config = {
      system.clan.deployment.data = {
        inherit (config.system.clan) uploadSecrets generateSecrets;
        inherit (config.clan.networking) deploymentAddress;
        inherit (config.clanCore) secretsUploadDirectory;
      };
      system.clan.deployment.file = pkgs.writeText "deployment.json" (builtins.toJSON config.system.clan.deployment.data);
    };
  };
}