Feature request: Check if there are non-root users in nix `trusted-users`

[brainrake]

Is your feature request related to a problem? Please describe.

Having non-root users in system nix.conf trusted-users is a trivially exploitable local privilege escalation vulnerability. It gives root access without password. See NixOS/nix#9649 (comment)

This is a feature request for a new check to be added to paretosecurity that checks for this vulnerability.

Describe the solution you'd like

If nix is detected, check whether there are non-root users in trusted-users in /etc/nix/nix.conf.

Describe alternatives you've considered

I do not see any alternative.

Additional context

Nix manual entry on the setting includes a warning:
https://nix.dev/manual/nix/2.24/command-ref/conf-file.html#conf-trusted-users

[zupo]

Just to make sure I understand correctly: this is not a bug report but a feature request to add a new check to Pareto Security?

[brainrake]

Yes, this is a feature request for a new check. I used the feature request issue template. Updated description for clarity.