Skip to content

Refactor .github/workflows/build.yml matrix, take 3 #123

Refactor .github/workflows/build.yml matrix, take 3

Refactor .github/workflows/build.yml matrix, take 3 #123

Workflow file for this run

name: "Build and populate cache"
on:
workflow_dispatch: # allows manual triggering
pull_request:
push:
branches:
- main
- master
schedule:
# rebuild everyday at 3:30
# TIP: Choose a random time here so not all repositories are build at once:
# https://www.random.org/clock-times/?num=1&earliest=01%3A00&latest=08%3A00&interval=5&format=html&rnd=new
- cron: '30 3 * * *'
jobs:
define-matrix:
runs-on: ubuntu-latest
outputs:
matrix: ${{ steps.matrix.outputs.matrix }}
steps:
- name: Define matrix
id: matrix
run: |
jq -nfr - << EOF > "$GITHUB_OUTPUT"
"Rhys-T" as $nurRepo |
"rhys-t" as $cachixName |
[
"ubuntu-latest",
# "ubuntu-latest+qemu-aarch64",
"macos-13",
"macos-latest"
] as $runners |
["nixpkgs-unstable", "nixos-unstable", "nixos-24.05"] as $nixpkgss |
[
{runner: $runners[], nixpkgs: $nixpkgss[]} |
select((.runner | startswith("ubuntu")) or (.nixpkgs | startswith("nixpkgs"))) |
.nixPath = "https://github.com/NixOS/nixpkgs/archive/refs/heads/\(.nixpkgs).tar.gz" |
del(.nixpkgs) |
if .runner | contains("+qemu-") then
(.runner | split("+qemu-")) as [$realRunner, $qemuSystem] |
. + {runner: $realRunner, $qemuSystem}
else
.
end |
. + {$nurRepo, $cachixName}
] |
{include: .} |
@json "matrix=\(.)"
EOF
tests:
needs: define-matrix
strategy:
matrix: ${{ fromJson(needs.define-matrix.outputs.matrix) }}
runs-on: ${{ matrix.runner }}
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Install nix
uses: cachix/install-nix-action@v30
with:
nix_path: "${{ matrix.nixPath }}"
extra_nix_config: |
experimental-features = nix-command flakes
access-tokens = github.com=${{ secrets.GITHUB_TOKEN }}
- name: Show nixpkgs version
run: nix-instantiate --eval -E '(import <nixpkgs> {}).lib.version'
- name: Setup cachix
uses: cachix/cachix-action@v15
# Don't replace <YOUR_CACHIX_NAME> here!
if: ${{ matrix.cachixName != '<YOUR_CACHIX_NAME>' }}
with:
name: ${{ matrix.cachixName }}
signingKey: '${{ secrets.CACHIX_SIGNING_KEY }}'
authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}'
- name: Check evaluation
run: |
nix-env -f . -qa \* --meta --xml \
--allowed-uris https://static.rust-lang.org \
--option restrict-eval true \
--option allow-import-from-derivation true \
--drv-path --show-trace \
-I nixpkgs=$(nix-instantiate --find-file nixpkgs) \
-I $PWD
- name: Build nix packages
# run: nix shell -f '<nixpkgs>' nix-build-uncached -c nix-build-uncached ci.nix -A cacheOutputs
run: nix shell -f '.' nix-build-uncached-logging -c nix-build-uncached ci.nix -A cacheOutputs
- name: Trigger NUR update
# Don't replace <YOUR_REPO_NAME> here!
if: ${{ matrix.nurRepo != '<YOUR_REPO_NAME>' }}
run: curl -XPOST "https://nur-update.nix-community.org/update?repo=${{ matrix.nurRepo }}"