update-flake-lock #38
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: update-flake-lock | |
| on: | |
| workflow_dispatch: # allows manual triggering | |
| schedule: | |
| - cron: '0 0 * * 0' # runs weekly on Sunday at 00:00 | |
| # In addition to these permissions, `Allow GitHub Actions to create and approve pull requests` | |
| # needs to be checked in `Settings > Actions > General`. | |
| permissions: | |
| contents: write # to push the branch for the PR | |
| pull-requests: write # to open the PR | |
| jobs: | |
| lockfile: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v4 | |
| - name: Install Nix | |
| uses: DeterminateSystems/nix-installer-action@main | |
| - name: Update flake.lock | |
| uses: DeterminateSystems/update-flake-lock@main | |
| with: | |
| pr-title: "Update flake.lock" # Title of PR to be created | |
| pr-labels: | # Labels to be set on the PR | |
| dependencies | |
| automated | |
| # See: https://github.com/DeterminateSystems/update-flake-lock?tab=readme-ov-file#with-a-personal-authentication-token | |
| token: ${{ secrets.GH_TOKEN_FOR_UPDATES }} | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: true |