diff --git a/modules/server/sops/default.nix b/modules/server/sops/default.nix
index 7e5d3a7..23422c2 100644
--- a/modules/server/sops/default.nix
+++ b/modules/server/sops/default.nix
@@ -3,7 +3,9 @@ let
   listNames = config.syscfg.server.db;
   containerNames = lib.concatMap (app: app.requires.secrets) (builtins.attrValues config.syscfg.server.loadedContainers);
   allApps = lib.unique (listNames ++ containerNames);
+  needsServerSops = config.syscfg.server.loadedContainers != {} || allApps != [];
 in{
+  config = lib.mkIf needsServerSops {
     sops.secrets = {
       CUSTOM = { 
         mode = "0444";
@@ -13,4 +15,5 @@ in{
       mode = "0444";
       sopsFile = ./server.yaml;
     }));
+  };
 }