blob: 471f2c9f14af6756607d178ea83c177bad398a3a (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
|
name: 'Update flake.lock'
on:
workflow_dispatch:
schedule:
- cron: '30 5 * * 0'
# you need to grant permissions to create PR:
# https://github.com/DeterminateSystems/update-flake-lock/issues/75
jobs:
update-flake-lock:
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Install Nix
uses: cachix/install-nix-action@v23
with:
extra_nix_config: |
access-tokens = github.com=${{ secrets.GITHUB_TOKEN }}
# sign the commit:
# https://www.chainguard.dev/unchained/keyless-git-commit-signing-with-gitsign-and-github-actions
- uses: chainguard-dev/actions/setup-gitsign@main
- name: Update flake.lock
id: update-flake-lock
uses: DeterminateSystems/update-flake-lock@v20
with:
pr-title: "Update flake.lock"
pr-labels: |
dependencies
automated
|