-
-
Notifications
You must be signed in to change notification settings - Fork 37
84 lines (77 loc) · 2.33 KB
/
nix.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
name: Nix
on:
push:
branches:
- master
pull_request:
workflow_dispatch:
schedule:
# Run once per day
- cron: '0 0 * * *'
jobs:
build:
strategy:
# Keep building the other channels if one fails
fail-fast: false
matrix:
channel:
- nixos-unstable
- nixos-24.05
system:
- aarch64-linux
- x86_64-linux
registry:
- name: ghcr.io
image_prefix: nix-community/docker-nixpkgs
- name: docker.io
image_prefix: nixpkgs
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
steps:
- uses: actions/checkout@v4
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
with:
platforms: arm64
- uses: DeterminateSystems/nix-installer-action@main
with:
extra-conf: |
extra-platforms = aarch64-linux
- uses: DeterminateSystems/magic-nix-cache-action@main
- name: Log in to the Container registry
if: "${{ matrix.registry.name == 'ghcr.io' }}"
uses: docker/[email protected]
with:
registry: ${{ matrix.registry.name }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- run: nix-shell --run ./ci.sh
env:
CI_PROJECT_PATH: '${{ matrix.registry.image_prefix }}'
CI_REGISTRY: '${{ matrix.registry.name }}'
CI_REGISTRY_AUTH: "${{ matrix.registry.name == 'ghcr.io' && '${{ github.action }}:${{ secrets.GITHUB_TOKEN }}' || secrets.REGISTRY_AUTH }}"
NIXPKGS_CHANNEL: '${{ matrix.channel }}'
NIX_SYSTEM_NAME: '${{ matrix.system }}'
push-manifest-to-docker-hub:
needs: [build]
strategy:
fail-fast: false
matrix:
channel:
- nixos-unstable
- nixos-24.05
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: DeterminateSystems/nix-installer-action@main
with:
extra-conf: |
extra-platforms = aarch64-linux
- uses: DeterminateSystems/magic-nix-cache-action@main
- run: nix-shell --run ./ci-manifests.sh
env:
CI_REGISTRY_AUTH: '${{ secrets.REGISTRY_AUTH }}'
NIXPKGS_CHANNEL: '${{ matrix.channel }}'
NIX_SYSTEM_NAME: '${{ matrix.system }}'