Tom Hubrecht
e574d2ab72
All checks were successful
Check workflows / check_workflows (push) Successful in 29s
Build all the nodes / ap01 (push) Successful in 1m15s
Build all the nodes / bridge01 (push) Successful in 1m59s
Build all the nodes / geo01 (push) Successful in 2m0s
Build all the nodes / geo02 (push) Successful in 1m43s
Build all the nodes / hypervisor01 (push) Successful in 1m36s
Build all the nodes / netcore02 (push) Successful in 34s
Build all the nodes / compute01 (push) Successful in 2m54s
Build all the nodes / hypervisor02 (push) Successful in 1m46s
Build all the nodes / hypervisor03 (push) Successful in 1m46s
Build all the nodes / tower01 (push) Successful in 1m47s
Build all the nodes / storage01 (push) Successful in 2m15s
Build all the nodes / rescue01 (push) Successful in 2m18s
Build the shell / build-shell (push) Successful in 33s
Run pre-commit on all files / pre-commit (push) Successful in 36s
Build all the nodes / vault01 (push) Successful in 2m9s
Build all the nodes / web02 (push) Successful in 1m53s
Build all the nodes / web01 (push) Successful in 2m37s
Build all the nodes / web03 (push) Successful in 1m44s
93 lines
2.7 KiB
Nix
93 lines
2.7 KiB
Nix
# SPDX-FileCopyrightText: 2024 Tom Hubrecht <tom.hubrecht@dgnum.eu>
|
|
#
|
|
# SPDX-License-Identifier: EUPL-1.2
|
|
|
|
{ lib, nix-actions, ... }:
|
|
|
|
let
|
|
inherit (nix-actions.lib) secret;
|
|
|
|
inherit (lib) genAttrs mapAttrs' nameValuePair;
|
|
|
|
dependencies = builtins.attrNames (import ../npins);
|
|
in
|
|
|
|
{
|
|
name = "Update dependencies";
|
|
on.schedule = [
|
|
# Run every saturday
|
|
{ cron = "5 16 * * 6"; }
|
|
];
|
|
|
|
# Global environment, necessary for rebases and commits
|
|
env = rec {
|
|
GIT_AUTHOR_NAME = "HT Chores";
|
|
GIT_AUTHOR_EMAIL = "chores@mail.hubrecht.ovh";
|
|
GIT_COMMITTER_NAME = GIT_AUTHOR_NAME;
|
|
GIT_COMMITTER_EMAIL = GIT_AUTHOR_EMAIL;
|
|
};
|
|
|
|
jobs = mapAttrs' (name: nameValuePair (builtins.replaceStrings [ "." ] [ "_" ] name)) (
|
|
genAttrs dependencies (name: {
|
|
runs-on = "nix";
|
|
steps = [
|
|
(nix-actions.steps.checkout {
|
|
fetch-depth = 0;
|
|
token = secret "TEA_DGNUM_CHORES_TOKEN";
|
|
})
|
|
|
|
{
|
|
env.GIT_UPDATE_BRANCH = "npins-updates/${name}";
|
|
|
|
name = "Switch to a new branch";
|
|
run = # bash
|
|
''
|
|
if git ls-remote --exit-code --heads origin "refs/heads/$GIT_UPDATE_BRANCH"; then
|
|
git switch "$GIT_UPDATE_BRANCH"
|
|
git rebase main
|
|
echo "EXISTING_BRANCH=1" >> $GITHUB_ENV
|
|
else
|
|
git switch -C "$GIT_UPDATE_BRANCH"
|
|
fi
|
|
'';
|
|
}
|
|
|
|
{
|
|
env = {
|
|
GIT_UPDATE_BRANCH = "npins-updates/${name}";
|
|
COMMIT_MESSAGE = "chore(npins): Update ${name}";
|
|
};
|
|
|
|
name = "Open a PR if updates are present";
|
|
run = # bash
|
|
''
|
|
npins update ${name}
|
|
|
|
if [ ! -z "$(git diff --name-only)" ]; then
|
|
echo "[+] Changes detected, pushing updates."
|
|
|
|
git add npins
|
|
|
|
if [ -n "$EXISTING_BRANCH" ]; then
|
|
git commit --amend --no-edit
|
|
git push --force
|
|
else
|
|
git commit --message "$COMMIT_MESSAGE"
|
|
git push -u origin "$GIT_UPDATE_BRANCH"
|
|
fi
|
|
|
|
# Connect to the server with the cli
|
|
tea login add -n dgnum-chores -t "${secret "TEA_DGNUM_CHORES_TOKEN"}" -u https://git.dgnum.eu
|
|
|
|
# Create a pull request if needed
|
|
# i.e. no PR with the same title exists
|
|
if [ -z $(tea pr ls -f='title,author' -o simple | grep "$COMMIT_MESSAGE dgnum-chores") ]; then
|
|
tea pr create --description "Automatic npins update" --title "$COMMIT_MESSAGE" --head "$GIT_UPDATE_BRANCH"
|
|
fi
|
|
fi
|
|
'';
|
|
}
|
|
];
|
|
})
|
|
);
|
|
}
|