Skip to content

Update Dependencies #4540

Update Dependencies

Update Dependencies #4540

Workflow file for this run

name: Update Dependencies
on:
schedule:
- cron: "0 */6 * * *"
workflow_dispatch:
concurrency:
group: ${{ github.repository }}-${{ github.head_ref || github.sha }}-${{ github.workflow }}
cancel-in-progress: true
jobs:
get-flakes:
runs-on: ubuntu-latest
outputs:
matrix: ${{ steps.get-flakes.outputs.matrix }}
steps:
- uses: actions/checkout@v4
- uses: cachix/install-nix-action@08dcb3a5e62fa31e2da3d490afc4176ef55ecd72 # v30
with:
extra_nix_config: |
access-tokens = github.com=${{ secrets.GITHUB_TOKEN }}
- name: generate flake matrix
id: get-flakes
run: |
set -euo pipefail
flakes="$(nix flake metadata --json | jq -rcM '.locks.nodes.root.inputs | {flake: keys}')"
echo "matrix=$flakes" >> "$GITHUB_OUTPUT"
flake-update:
runs-on: ubuntu-latest
needs:
- get-flakes
strategy:
fail-fast: false
matrix: ${{ fromJson(needs.get-flakes.outputs.matrix) }}
steps:
- uses: actions/checkout@v4
- uses: cachix/install-nix-action@08dcb3a5e62fa31e2da3d490afc4176ef55ecd72 # v30
with:
nix_path: nixpkgs=channel:nixos-unstable-small
extra_nix_config: |
access-tokens = github.com=${{ secrets.GITHUB_TOKEN }}
- uses: actions/create-github-app-token@v1.11.1
id: generate-token
with:
app-id: ${{ secrets.APP_ID }}
private-key: ${{ secrets.APP_PRIVATE_KEY }}
- uses: cpcloud/flake-update-action@v2.0.1
with:
dependency: ${{ matrix.flake }}
github-token: ${{ secrets.GITHUB_TOKEN }}
pull-request-token: ${{ steps.generate-token.outputs.token }}
pull-request-author: "phillip-ground[bot] <phillip-ground[bot]@users.noreply.github.com>"
pull-request-labels: dependencies,autorebase:opt-in
automerge: true
delete-branch: true