refresh-manifests #450
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: 'refresh-manifests' | |
on: | |
schedule: | |
- cron: '0 0 * * *' # Midnight UTC | |
workflow_dispatch: | |
jobs: | |
refresh-and-upload-manifests: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
- uses: cachix/install-nix-action@v22 | |
with: | |
nix_path: nixpkgs=channel:nixos-unstable | |
- uses: cachix/cachix-action@v12 | |
with: | |
name: fuellabs | |
authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}' | |
- run: nix run .#refresh-manifests | |
timeout-minutes: 120 | |
- name: validate changed nix files | |
run: | | |
files=( $(git diff --name-only '*.nix') ) | |
echo "${#files[*]} nix files changed: ${files[*]}" | |
if [[ "${#files[*]}" -ne 0 ]]; then | |
nix-instantiate --parse "${files[@]}" >/dev/null | |
fi | |
- uses: actions/upload-artifact@v3 | |
with: | |
name: manifests | |
path: manifests/ | |
download-manifests-and-nix-build: | |
needs: refresh-and-upload-manifests | |
strategy: | |
fail-fast: false | |
matrix: | |
package: | |
[ | |
fuel, | |
fuel-beta-3, | |
fuel-beta-4, | |
fuel-nightly, | |
] | |
os: [ubuntu-latest, macos-latest, macos-arm] | |
runs-on: ${{ matrix.os }} | |
steps: | |
- uses: actions/checkout@v3 | |
- run: rm -r manifests | |
- uses: actions/download-artifact@v3 | |
with: | |
name: manifests | |
path: manifests/ | |
- name: stage manifests for nix build | |
run: git add -v manifests | |
# Since the self-hosted runners already have nix and cachix installed, we skip these steps. | |
- if: matrix.os != 'macos-arm' | |
uses: cachix/install-nix-action@v22 | |
with: | |
nix_path: nixpkgs=channel:nixos-unstable | |
- if: matrix.os != 'macos-arm' | |
uses: cachix/cachix-action@v12 | |
with: | |
name: fuellabs | |
authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}' | |
# Copy the nix store to a tmp directory for later comparison. | |
- if: matrix.os == 'macos-arm' | |
run: ./script/list-nix-store.sh > /tmp/store-path-pre-build | |
- run: nix build --print-build-logs --no-update-lock-file .#${{ matrix.package }} | |
# Since we skipped the cachix action, we must manually update the cachix cache. | |
- if: matrix.os == 'macos-arm' | |
env: | |
CACHIX_AUTH_TOKEN: ${{ secrets.CACHIX_AUTH_TOKEN }} | |
run: ./script/cachix-push-paths.sh | |
download-manifests-and-commit: | |
needs: [refresh-and-upload-manifests, download-manifests-and-nix-build] | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
with: | |
persist-credentials: false | |
ref: master | |
- run: rm -r ./manifests | |
- uses: actions/download-artifact@v3 | |
with: | |
name: manifests | |
path: manifests/ | |
- name: Check and commit changes | |
run: | | |
git config --local user.email "[email protected]" | |
git config --local user.name "GitHub Action" | |
git add manifests | |
git commit -m "manifest: update" | |
- name: Push changes | |
uses: ad-m/github-push-action@master | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
branch: master |