mirror of
https://github.com/daylinmorgan/oizys.git
synced 2025-01-09 18:47:31 -06:00
127 lines
3.1 KiB
YAML
127 lines
3.1 KiB
YAML
name: Flake Update / Build
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
inputs:
|
|
hosts:
|
|
description: 'list of hosts to build'
|
|
required: true
|
|
default: 'othalan,algiz'
|
|
type: string
|
|
|
|
schedule:
|
|
# At minute 00:00 on Monday, Wednesday, and Friday.
|
|
- cron: 0 0 * * 1,3,5
|
|
|
|
env:
|
|
hosts: ${{ github.event_name == 'schedule' && 'othalan,algiz' || github.event.inputs.hosts }}
|
|
|
|
permissions:
|
|
contents: write
|
|
|
|
concurrency:
|
|
group: ${{ github.workflow }}-${{ github.ref }}
|
|
cancel-in-progress: true
|
|
|
|
jobs:
|
|
build-minimal:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@v4
|
|
|
|
# needed to access ghostty repo for now
|
|
- name: Setup SSH
|
|
uses: MrSquaare/ssh-setup-action@v3
|
|
with:
|
|
host: github.com
|
|
private-key: ${{ secrets.SSH_PRIVATE_KEY }}
|
|
|
|
- uses: daylin-bot/actions/setup@main
|
|
- uses: ./.github/actions/nix
|
|
with:
|
|
attic_token: ${{ secrets.ATTIC_TOKEN }}
|
|
|
|
- run: git checkout -B flake-lock
|
|
|
|
- name: Update nix flake
|
|
run: |
|
|
nix flake update --commit-lock-file
|
|
printf '# Flake Lock\n\n```txt\n%s```\n' \
|
|
"$(git show -s --format='%B')" \
|
|
>> $GITHUB_STEP_SUMMARY
|
|
|
|
- name: Pre-build oizys
|
|
run: |
|
|
nix build .
|
|
attic push oizys result
|
|
|
|
- name: Build
|
|
run: >
|
|
nix run .
|
|
--
|
|
cache
|
|
--host,="${{ env.hosts }}"
|
|
--flake .
|
|
--debug
|
|
--
|
|
--quiet
|
|
|
|
- name: Commit Updates
|
|
uses: daylin-bot/actions/commit-and-push@main
|
|
with:
|
|
push-args: --set-upstream --force origin flake-lock
|
|
|
|
|
|
build-full:
|
|
needs: build-minimal
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@v4
|
|
with:
|
|
fetch-depth: 0
|
|
|
|
# needed to access ghostty repo for now
|
|
- name: Setup SSH
|
|
uses: MrSquaare/ssh-setup-action@v3
|
|
with:
|
|
host: github.com
|
|
private-key: ${{ secrets.SSH_PRIVATE_KEY }}
|
|
|
|
- uses: daylin-bot/actions/setup@main
|
|
- uses: ./.github/actions/nix
|
|
with:
|
|
attic_token: ${{ secrets.ATTIC_TOKEN }}
|
|
# clean: true
|
|
btrfs: true
|
|
|
|
- name: Pre-build oizys
|
|
run: nix build .
|
|
|
|
- name: Build Current and Updated Systems
|
|
run: >
|
|
nix run .
|
|
--
|
|
ci update
|
|
--host,="${{ env.hosts }}"
|
|
--flake .
|
|
--debug
|
|
--
|
|
--quiet
|
|
|
|
- run: |
|
|
echo "# system diffs" >> $GITHUB_STEP_SUMMARY
|
|
hosts="${{ env.hosts }}"
|
|
for host in ${hosts//,/ }; do
|
|
echo "## $host" >> $GITHUB_STEP_SUMMARY
|
|
nix run "nixpkgs#nvd" -- --color always diff ./$host-current ./$host-updated >> $host-summary.md
|
|
printf '```\n%s\n```\n' "$(nix run "nixpkgs#nvd" -- diff ./$host-current ./$host-updated)" >> $GITHUB_STEP_SUMMARY
|
|
done
|
|
|
|
- run: df -h
|
|
|
|
- uses: actions/upload-artifact@v4
|
|
with:
|
|
name: summary
|
|
path: '*-summary.md'
|