ediblerope
29e1185694
Adds services/forgejo-runner.nix as a host-gated module on the mediaserver and switches the flake-update workflow from runs-on: ubuntu-latest to the self-hosted fred-nix label, mapped to catthehacker/ubuntu:act-latest for GitHub-action compatibility. Token lives at /var/secrets/forgejo-runner-token so it stays out of the Nix store. Also drops the stray result/ build symlink from the worktree. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
33 lines
No EOL
798 B
YAML
33 lines
No EOL
798 B
YAML
name: Update flake inputs
|
|
|
|
on:
|
|
schedule:
|
|
- cron: '0 4 * * *' # Daily at 4am UTC
|
|
workflow_dispatch: # Allow manual trigger from GitHub Actions tab
|
|
|
|
jobs:
|
|
update:
|
|
runs-on: fred-nix
|
|
permissions:
|
|
contents: write
|
|
|
|
steps:
|
|
- name: Checkout repo
|
|
uses: actions/checkout@v6
|
|
|
|
- name: Install Nix
|
|
uses: cachix/install-nix-action@v31
|
|
with:
|
|
nix_path: nixpkgs=channel:nixos-unstable
|
|
extra_nix_config: |
|
|
experimental-features = nix-command flakes
|
|
|
|
- name: Update flake inputs
|
|
run: nix flake update
|
|
|
|
- name: Commit updated flake.lock
|
|
uses: stefanzweifel/git-auto-commit-action@v7
|
|
with:
|
|
commit_message: "flake: update inputs"
|
|
file_pattern: flake.lock
|
|
|