45 lines
1.1 KiB
YAML
45 lines
1.1 KiB
YAML
name: "Update flake.lock"
|
|
on:
|
|
# schedule:
|
|
# - cron: '0 6 * * 0'
|
|
workflow_dispatch:
|
|
|
|
jobs:
|
|
build:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: write
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@v4
|
|
with:
|
|
ref: ${{ github.head_ref }}
|
|
token: ${{ secrets.PAT }}
|
|
|
|
- name: Import GPG key
|
|
uses: crazy-max/ghaction-import-gpg@v6
|
|
with:
|
|
gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
|
|
passphrase: ${{ secrets.GPG_PASSPHRASE }}
|
|
trust_level: 5
|
|
git_user_signingkey: true
|
|
git_commit_gpgsign: true
|
|
|
|
- name: Install nix
|
|
uses: nixbuild/nix-quick-install-action@v26
|
|
with:
|
|
load_nixConfig: false
|
|
|
|
- name: Update flake
|
|
run: nix flake update
|
|
|
|
- name: Evaluate hosts configurations
|
|
run: nix develop .#ci --command ./ci.sh --flake .#nixosHostsCI
|
|
|
|
- name: Commit updated flake.lock
|
|
uses: stefanzweifel/git-auto-commit-action@v5
|
|
with:
|
|
commit_message: "[auto] Update flake.lock"
|
|
commit_options: '-S'
|
|
file_pattern: './flake.lock'
|