diff --git a/vendor/docker-nixos/Dockerfile b/vendor/docker-nixos/Dockerfile
new file mode 100644
index 0000000..c2221e1
--- /dev/null
+++ b/vendor/docker-nixos/Dockerfile
@@ -0,0 +1,13 @@
+FROM nixos/nix:2.24.11
+
+# Enable flakes
+RUN echo -e "experimental-features = nix-command flakes\n\
+builders-use-substitutes = true\n" >> /etc/nix/nix.conf
+# Enable remote builders substitutes
+# https://nix.dev/manual/nix/2.18/command-ref/conf-file.html?highlight=builders-use-substitutes#conf-builders-use-substitutes
+RUN echo "builders-use-substitutes = true" >> /etc/nix/nix.conf
+# Trust all directory to run flake commands as root on different volumes
+RUN git config --global --add safe.directory '*'
+
+# Copy the setup script
+COPY --chown=root:root --chmod=700 ./setup-remote.sh /setup-remote.sh
diff --git a/vendor/docker-nixos/README.txt b/vendor/docker-nixos/README.txt
new file mode 100644
index 0000000..4724581
--- /dev/null
+++ b/vendor/docker-nixos/README.txt
@@ -0,0 +1 @@
+Slightly modified from [joshuachp/containers](https://github.com/joshuachp/containers/tree/e55ba5e5b8a3a39438e34f18459e358210742724/nixos).
diff --git a/vendor/docker-nixos/build.sh b/vendor/docker-nixos/build.sh
new file mode 100644
index 0000000..43681d4
--- /dev/null
+++ b/vendor/docker-nixos/build.sh
@@ -0,0 +1,24 @@
+#!/usr/bin/env bash
+
+set -exEuo pipefail
+
+git fetch --tags
+
+nixos_tag="$(
+    git tag |
+        grep '^nixos-' |
+        sed -e 's/^nixos-//' |
+        sort -V |
+        tail -n1
+)"
+
+if [ -z "$NIXOS_TAG" ]; then 
+  echo "Error: NIXOS_TAG is not set or is empty."
+  exit 1
+fi
+
+docker build \
+    --platform=linux/amd64,linux/arm64 \
+    -t "git.devcomp.xyz/devcomp/nixos:$NIXOS_TAG" \
+    -f Dockerfile \
+    --push .
diff --git a/vendor/docker-nixos/setup-remote.sh b/vendor/docker-nixos/setup-remote.sh
new file mode 100644
index 0000000..3302b05
--- /dev/null
+++ b/vendor/docker-nixos/setup-remote.sh
@@ -0,0 +1,13 @@
+#!/usr/bin/env bash
+
+set -exEuo pipefail
+
+mkdir -p ~/.ssh
+echo "$BUILDER_KEY" >>~/.ssh/id_ed25519
+echo "$BUILDER_HOST_KEYS" >>~/.ssh/known_hosts
+chmod -R 600 ~/.ssh
+
+# Check the remote builder
+nix store info --store "$BUILDERS"
+
+echo "$BUILDERS" >>/etc/nix/machines