Skip to content

Update lock and Cache #110

Update lock and Cache

Update lock and Cache #110

Workflow file for this run

name: Update lock and Cache
on:
schedule:
# 16:17:00 UTC -> 02:17:00 AEST 03:17:00 AEDT
- cron: '17 16 * * *'
workflow_dispatch:
inputs:
forcerefresh:
description: 'Force Refresh'
required: false
type: boolean
jobs:
ciUpdate:
name: Update and Cache
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- uses: actions/checkout@v4
- uses: DeterminateSystems/nix-installer-action@v12
with:
extra-conf: |
trusted-users = root build
substituters = https://nixos-sbc.cachix.org/ https://cache.nixos.org/
trusted-public-keys = cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY= nixos-sbc.cachix.org-1:XMK0HnQmmGIt1lYy1y+JsxLpHVaSTRRWvd6T6cU+I2M=
builders = ssh-ng://builder@hourai.kangaroo-tetra.ts.net aarch64-linux /home/runner/.ssh/githubci 1 1 benchmark,big-parallel,gccarch-armv8-a,kvm,nixos-test - c3NoLWVkMjU1MTkgQUFBQUMzTnphQzFsWkRJMU5URTVBQUFBSVBhOUxMTjdHTWhLVDkySGtyT1RFYjVjMmdvazVhOFE1Yzk2SWV3cERvcGcgcm9vdEBob3VyYWkK
# Direct reachability is only available over IPv6.
- name: Tailscale
uses: tailscale/github-action@v2
with:
oauth-client-id: ${{ secrets.TS_OAUTH_CLIENT_ID }}
oauth-secret: ${{ secrets.TS_OAUTH_SECRET }}
tags: tag:srht-build
version: 1.70.0
- name: Update and Cache
env:
CI_FORCE_REFRESH: ${{ inputs.forcerefresh }}
CI_GIT_EMAIL: ${{ vars.CI_GIT_EMAIL }}
CACHIX_REPO: ${{ vars.CACHIX_REPO }}
run: |
(umask 0066; mkdir -p $HOME/.ssh)
(umask 0077; echo "${{ secrets.NIX_BUILDER_SSH_KEY }}" > $HOME/.ssh/githubci)
nix run 'nixpkgs#cachix' -- authtoken "${{ secrets.CACHIX_AUTH_TOKEN }}"
bash ./lib/flake-ci/check-update-changes.sh