diff --git a/.github/update.yaml b/.github/update.yaml new file mode 100644 index 0000000..f7c6d14 --- /dev/null +++ b/.github/update.yaml @@ -0,0 +1,28 @@ +name: update-flake-lock +on: + workflow_dispatch: # allows manual triggering + schedule: + - cron: '0 2 * * *' # running daily at 02:00 AM + +jobs: + lockfile: + runs-on: ubuntu-latest + steps: + - name: Checkout repository + uses: actions/checkout@v3 + + - uses: cachix/install-nix-action@v17 + + - uses: cachix/cachix-action@v10 + with: + name: aciceri-fleet + authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}' + + - name: Update flake.lock + uses: DeterminateSystems/update-flake-lock@v14 + with: + pr-title: "Automatic `flake.lock` update" + pr-labels: | + flake-inputs + automatic + token: ${{ secrets.PR_UPDATE_FLAKE_TOKEN }} # to open the PR using my GitHub account, needed to trigger the `build` workflow diff --git a/.github/workflows/build-thinkpad.yaml b/.github/workflows/build-thinkpad.yaml new file mode 100644 index 0000000..23f628c --- /dev/null +++ b/.github/workflows/build-thinkpad.yaml @@ -0,0 +1,23 @@ +name: build-thinkpad +on: + workflow_dispatch: # allows manual triggering + push: + branches: + - master + - update_flake_lock_action + +jobs: + lockfile: + runs-on: ubuntu-latest + steps: + - name: Checkout repository + uses: actions/checkout@v3 + + - uses: cachix/install-nix-action@v17 + + - uses: cachix/cachix-action@v10 + with: + name: aciceri-fleet + authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}' + + - run: nix --print-build-logs --verbose build --allow-import-from-derivation --keep-going .#nixosConfigurations.thinkpad.config.system.build.toplevel diff --git a/.github/workflows/check.yaml b/.github/workflows/check.yaml index c640ae7..69934f2 100644 --- a/.github/workflows/check.yaml +++ b/.github/workflows/check.yaml @@ -20,4 +20,4 @@ jobs: name: aciceri-fleet authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}' - - run: nix check -Lv + - run: nix --print-build-logs --verbose flake check --allow-import-from-derivation --keep-going