diff --git a/flake.lock b/flake.lock
index 3f09be9..c10bf3f 100644
--- a/flake.lock
+++ b/flake.lock
@@ -236,16 +236,16 @@
         ]
       },
       "locked": {
-        "lastModified": 1717476296,
-        "narHash": "sha256-ScHe38Tr+TxGURC17kby4mIIxOG3aJvZWXzPM79UnEk=",
+        "lastModified": 1717527182,
+        "narHash": "sha256-vWSkg6AMok1UUQiSYVdGMOXKD2cDFnajITiSi0Zjd1A=",
         "owner": "nix-community",
         "repo": "home-manager",
-        "rev": "095ef64aa3b2ab4a4f1bf07f29997e21e3a5576a",
+        "rev": "845a5c4c073f74105022533907703441e0464bc3",
         "type": "github"
       },
       "original": {
         "owner": "nix-community",
-        "ref": "release-23.11",
+        "ref": "release-24.05",
         "repo": "home-manager",
         "type": "github"
       }
@@ -277,11 +277,11 @@
       "flake": false,
       "locked": {
         "dir": "web",
-        "lastModified": 1716038335,
-        "narHash": "sha256-OjmeIkSds59i6lHG/M3Z+32k9nGgm/owJ4x+xwyx0Qs=",
+        "lastModified": 1717581754,
+        "narHash": "sha256-CumbxEruX75QiGYZ8wzM+3z2tK5jabLhmzm4CIKrd4U=",
         "owner": "maunium",
         "repo": "stickerpicker",
-        "rev": "47f17fde452b5e9f0c9e96ce0e2c878dd0574b7f",
+        "rev": "dbc3a9fbb8017cf91404d50be9986b89a1a56275",
         "type": "github"
       },
       "original": {
@@ -330,16 +330,16 @@
     },
     "nixpkgs": {
       "locked": {
-        "lastModified": 1717159533,
-        "narHash": "sha256-oamiKNfr2MS6yH64rUn99mIZjc45nGJlj9eGth/3Xuw=",
+        "lastModified": 1717555607,
+        "narHash": "sha256-WZ1s48OODmRJ3DHC+I/DtM3tDRuRJlNqMvxvAPTD7ec=",
         "owner": "nixos",
         "repo": "nixpkgs",
-        "rev": "a62e6edd6d5e1fa0329b8653c801147986f8d446",
+        "rev": "0b8e7a1ae5a94da2e1ee3f3030a32020f6254105",
         "type": "github"
       },
       "original": {
         "owner": "nixos",
-        "ref": "nixos-23.11",
+        "ref": "nixos-24.05",
         "repo": "nixpkgs",
         "type": "github"
       }
diff --git a/flake.nix b/flake.nix
index d96ccf7..6f9f612 100644
--- a/flake.nix
+++ b/flake.nix
@@ -1,7 +1,7 @@
 {
   inputs = {
     # Track channels with commits tested and built by hydra
-    nixpkgs.url = "github:nixos/nixpkgs/nixos-23.11";
+    nixpkgs.url = "github:nixos/nixpkgs/nixos-24.05";
     unstable.url = "github:nixos/nixpkgs/nixos-unstable";
 
     nixpkgs-2205.url = "github:nixos/nixpkgs/nixos-22.05";
@@ -9,7 +9,7 @@
     nix-darwin.url = "github:lnl7/nix-darwin/master";
     nix-darwin.inputs.nixpkgs.follows = "nixpkgs";
 
-    home-manager.url = "github:nix-community/home-manager/release-23.11";
+    home-manager.url = "github:nix-community/home-manager/release-24.05";
     home-manager.inputs.nixpkgs.follows = "nixpkgs";
 
     flake-parts.url = "github:hercules-ci/flake-parts";
diff --git a/modules/forgejo/default.nix b/modules/forgejo/default.nix
index 26f7979..dee6d12 100644
--- a/modules/forgejo/default.nix
+++ b/modules/forgejo/default.nix
@@ -163,7 +163,7 @@
   # gitea gitconfig
   programs.gnupg.agent = {
     enable = true;
-    pinentryFlavor = "curses";
+    pinentryPackage = pkgs.pinentry-curses;
   };
   # Required to make gpg work without a graphical environment?
   # otherwise generating a new gpg key fails with this error:
diff --git a/modules/keycloak/default.nix b/modules/keycloak/default.nix
index 98c9312..3c9316e 100644
--- a/modules/keycloak/default.nix
+++ b/modules/keycloak/default.nix
@@ -52,7 +52,6 @@
         http-host = "127.0.0.1";
         http-port = 8080;
         proxy = "edge";
-        features = "declarative-user-profile";
       };
       themes = {
         "pub.solar" =
diff --git a/modules/loki/default.nix b/modules/loki/default.nix
index bd28afe..a92c56a 100644
--- a/modules/loki/default.nix
+++ b/modules/loki/default.nix
@@ -37,8 +37,8 @@
       # https://grafana.com/docs/loki/latest/operations/storage/retention/
       limits_config.retention_period = "4w";
       compactor = {
-        shared_store = "filesystem";
         compaction_interval = "10m";
+        delete_request_store = "filesystem";
         retention_enabled = true;
         retention_delete_delay = "2h";
         retention_delete_worker_count = 150;
@@ -55,6 +55,16 @@
               period = "24h";
             };
           }
+          {
+            from = "2024-05-31";
+            store = "tsdb";
+            object_store = "filesystem";
+            schema = "v13";
+            index = {
+              prefix = "index_";
+              period = "24h";
+            };
+          }
         ];
       };
     };
diff --git a/modules/matrix/default.nix b/modules/matrix/default.nix
index da6c49d..6e88077 100644
--- a/modules/matrix/default.nix
+++ b/modules/matrix/default.nix
@@ -272,18 +272,18 @@ in
     ];
 
     plugins = [ config.services.matrix-synapse.package.plugins.matrix-synapse-shared-secret-auth ];
+  };
 
-    sliding-sync = {
-      enable = true;
-      settings = {
-        SYNCV3_SERVER = "https://${publicDomain}";
-        SYNCV3_BINDADDR = "127.0.0.1:8011";
-        # The bind addr for Prometheus metrics, which will be accessible at
-        # /metrics at this address
-        SYNCV3_PROM = "127.0.0.1:9100";
-      };
-      environmentFile = config.age.secrets."matrix-synapse-sliding-sync-secret".path;
+  services.matrix-sliding-sync = {
+    enable = true;
+    settings = {
+      SYNCV3_SERVER = "https://${publicDomain}";
+      SYNCV3_BINDADDR = "127.0.0.1:8011";
+      # The bind addr for Prometheus metrics, which will be accessible at
+      # /metrics at this address
+      SYNCV3_PROM = "127.0.0.1:9100";
     };
+    environmentFile = config.age.secrets."matrix-synapse-sliding-sync-secret".path;
   };
 
   services.restic.backups.matrix-synapse-storagebox = {
diff --git a/modules/nextcloud/default.nix b/modules/nextcloud/default.nix
index 64f194a..36118f8 100644
--- a/modules/nextcloud/default.nix
+++ b/modules/nextcloud/default.nix
@@ -31,7 +31,6 @@
     https = true;
     secretFile = config.age.secrets."nextcloud-secrets".path; # secret
     maxUploadSize = "1G";
-    skeletonDirectory = "./nextcloud-skeleton";
 
     configureRedis = true;
 
@@ -47,11 +46,11 @@
       dbtype = "pgsql";
       dbname = "nextcloud";
       dbtableprefix = "oc_";
-      overwriteProtocol = "https";
     };
 
-    extraOptions = {
+    settings = {
       overwrite.cli.url = "http://cloud.${config.pub-solar-os.networking.domain}";
+      overwriteprotocol = "https";
 
       installed = true;
       default_phone_region = "+49";
@@ -92,7 +91,7 @@
 
       auth.bruteforce.protection.enabled = true;
       trashbin_retention_obligation = "auto,7";
-      skeletondirectory = "";
+      skeletondirectory = "./nextcloud-skeleton";
       defaultapp = "file";
       activity_expire_days = "14";
       integrity.check.disabled = false;
diff --git a/overlays/default.nix b/overlays/default.nix
index 5807ce8..af9faa9 100644
--- a/overlays/default.nix
+++ b/overlays/default.nix
@@ -12,7 +12,6 @@
                 unstable = import inputs.unstable { system = prev.system; };
               in
               {
-                forgejo-runner = unstable.forgejo-runner;
                 element-themes = prev.callPackage ./pkgs/element-themes { inherit (inputs) element-themes; };
                 element-stickerpicker = prev.callPackage ./pkgs/element-stickerpicker {
                   inherit (inputs) element-stickers maunium-stickerpicker;