name: Flake Update / Build on: workflow_dispatch: inputs: hosts: description: 'list of hosts to build' required: true default: 'othalan,algiz' type: string schedule: # At minute 00:00 on Monday, Wednesday, and Friday. - cron: 0 0 * * 1,3,5 env: hosts: ${{ github.event_name == 'schedule' && 'othalan,algiz' || github.event.inputs.hosts }} permissions: contents: write concurrency: group: ${{ github.workflow }}-${{ github.ref }} cancel-in-progress: true jobs: build-minimal: runs-on: ubuntu-latest steps: - name: Checkout uses: actions/checkout@v4 - uses: daylin-bot/actions/setup@main - uses: ./.github/actions/nix with: attic_token: ${{ secrets.ATTIC_TOKEN }} - run: git checkout -B flake-lock - name: Update nix flake run: | nix flake update --commit-lock-file printf '# Flake Lock\n\n```txt\n%s```\n' \ "$(git show -s --format='%B')" \ >> $GITHUB_STEP_SUMMARY - name: Pre-build oizys run: | nix build . attic push oizys result - name: Build run: > nix run . -- cache --host,="${{ env.hosts }}" --flake . --debug -- --quiet - name: Commit Updates uses: daylin-bot/actions/commit-and-push@main with: push-args: --set-upstream --force origin flake-lock build-full: needs: build-minimal runs-on: ubuntu-latest steps: - name: Checkout uses: actions/checkout@v4 with: fetch-depth: 0 - uses: daylin-bot/actions/setup@main - uses: ./.github/actions/nix with: attic_token: ${{ secrets.ATTIC_TOKEN }} # clean: true btrfs: true - name: Pre-build oizys run: nix build . - name: Build Current and Updated Systems run: > nix run . -- ci update --host,="${{ env.hosts }}" --flake . --debug -- --quiet - run: | echo "# system diffs" >> $GITHUB_STEP_SUMMARY hosts="${{ env.hosts }}" for host in ${hosts//,/ }; do echo "## $host" >> $GITHUB_STEP_SUMMARY nix run "nixpkgs#nvd" -- --color always diff ./$host-current ./$host-updated >> $host-summary.md printf '```\n%s\n```\n' "$(nix run "nixpkgs#nvd" -- diff ./$host-current ./$host-updated)" >> $GITHUB_STEP_SUMMARY done - run: df -h - uses: actions/upload-artifact@v4 with: name: summary path: '*-summary.md'