Compare commits
20 commits
multiple-f
...
main
Author | SHA1 | Date | |
---|---|---|---|
03cebd352a | |||
793ab55475 | |||
|
0ba1118664 | ||
|
236c0fa397 | ||
|
8fa6d41e3f | ||
|
1360662aa3 | ||
|
531bd45244 | ||
|
1afac295f9 | ||
|
965531f332 | ||
|
a2bbe0274e | ||
|
802501548e | ||
|
7d80c329b4 | ||
|
7bc6ec59cc | ||
|
4cf6b19203 | ||
|
73ba0ca899 | ||
|
24f53daa86 | ||
|
420fb2aaf7 | ||
|
db4ee38117 | ||
|
b0723e0fae | ||
|
af9a980c7d |
9 changed files with 28752 additions and 39755 deletions
|
@ -185,7 +185,7 @@ git push origin update_flake_lock_action --force
|
|||
### With a Personal Authentication Token
|
||||
|
||||
By providing a Personal Authentication Token, the PR will be submitted in a way that bypasses this limitation (GitHub will essentially think it is the owner of the PAT submitting the PR, and not an Action).
|
||||
You can create a token by visiting https://github.com/settings/tokens and select at least the `repo` scope. Then, store this token in your repository secrets (i.e. `https://github.com/<USER>/<REPO>/settings/secrets/actions`) as `GH_TOKEN_FOR_UPDATES` and set up your workflow file like the following:
|
||||
You can create a token by visiting https://github.com/settings/tokens and select at least the `repo` scope. For the new fine-grained tokens, you need to enable read and write access for "Contents" and "Pull Requests" permissions. Then, store this token in your repository secrets (i.e. `https://github.com/<USER>/<REPO>/settings/secrets/actions`) as `GH_TOKEN_FOR_UPDATES` and set up your workflow file like the following:
|
||||
|
||||
```yaml
|
||||
name: update-flake-lock
|
||||
|
|
30
action.yml
30
action.yml
|
@ -106,6 +106,9 @@ outputs:
|
|||
pull-request-number:
|
||||
description: "The number of the opened pull request"
|
||||
value: ${{ steps.create-pr.outputs.pull-request-number }}
|
||||
pull-request-url:
|
||||
description: "The The URL of the opened pull request."
|
||||
value: ${{ steps.create-pr.outputs.pull-request-url }}
|
||||
pull-request-operation:
|
||||
description: "The pull request operation performed by the action, `created`, `updated` or `closed`."
|
||||
value: ${{ steps.create-pr.outputs.pull-request-operation }}
|
||||
|
@ -115,7 +118,7 @@ runs:
|
|||
- name: Import bot's GPG key for signing commits
|
||||
if: ${{ inputs.sign-commits == 'true' }}
|
||||
id: import-gpg
|
||||
uses: crazy-max/ghaction-import-gpg@v6
|
||||
uses: crazy-max/ghaction-import-gpg@01dd5d3ca463c7f10f7f4f7b4f177225ac661ee4 # v6.1.0
|
||||
with:
|
||||
gpg_private_key: ${{ inputs.gpg-private-key }}
|
||||
fingerprint: ${{ inputs.gpg-fingerprint }}
|
||||
|
@ -190,7 +193,7 @@ runs:
|
|||
echo "$DELIMITER" >> $GITHUB_ENV
|
||||
echo "GIT_COMMIT_MESSAGE is: ${COMMIT_MESSAGE}"
|
||||
- name: Interpolate PR Body
|
||||
uses: pedrolamas/handlebars-action@v2.4.0
|
||||
uses: pedrolamas/handlebars-action@2995d7eadacbc8f2f6ab8431a01d84a5fa3b8bb4 # v2.4.0
|
||||
with:
|
||||
files: "pr_body.template"
|
||||
output-filename: "pr_body.txt"
|
||||
|
@ -207,16 +210,17 @@ runs:
|
|||
run: rm -f pr_body.txt pr_body.template
|
||||
- name: Create PR
|
||||
id: create-pr
|
||||
uses: peter-evans/create-pull-request@v6
|
||||
# uses: peter-evans/create-pull-request@main
|
||||
uses: peter-evans/create-pull-request@v6.0.1
|
||||
with:
|
||||
base: ${{ inputs.base }}
|
||||
branch: ${{ inputs.branch }}
|
||||
base: "${{ inputs.base }}"
|
||||
branch: "${{ inputs.branch }}"
|
||||
delete-branch: true
|
||||
committer: ${{ env.GIT_COMMITTER_NAME }} ${{ env.GIT_COMMITTER_EMAIL }}
|
||||
author: ${{ env.GIT_AUTHOR_NAME }} ${{ env.GIT_AUTHOR_EMAIL }}
|
||||
title: ${{ inputs.pr-title }}
|
||||
token: ${{ inputs.token }}
|
||||
assignees: ${{ inputs.pr-assignees }}
|
||||
labels: ${{ inputs.pr-labels }}
|
||||
reviewers: ${{ inputs.pr-reviewers }}
|
||||
body: ${{ steps.pr_body.outputs.content }}
|
||||
committer: "${{ env.GIT_COMMITTER_NAME }} ${{ env.GIT_COMMITTER_EMAIL }}"
|
||||
author: "${{ env.GIT_AUTHOR_NAME }} ${{ env.GIT_AUTHOR_EMAIL }}"
|
||||
title: "${{ inputs.pr-title }}"
|
||||
token: "${{ inputs.token }}"
|
||||
assignees: "${{ inputs.pr-assignees }}"
|
||||
labels: "${{ inputs.pr-labels }}"
|
||||
reviewers: "${{ inputs.pr-reviewers }}"
|
||||
body: "${{ steps.pr_body.outputs.content }}"
|
||||
|
|
65753
dist/index.js
vendored
65753
dist/index.js
vendored
File diff suppressed because one or more lines are too long
2
dist/index.js.map
vendored
2
dist/index.js.map
vendored
File diff suppressed because one or more lines are too long
20
package.json
20
package.json
|
@ -26,22 +26,22 @@
|
|||
},
|
||||
"homepage": "https://github.com/DeterminateSystems/update-flake-lock#readme",
|
||||
"dependencies": {
|
||||
"@actions/core": "^1.10.1",
|
||||
"@actions/core": "^1.11.1",
|
||||
"@actions/exec": "^1.1.1",
|
||||
"detsys-ts": "github:DeterminateSystems/detsys-ts"
|
||||
},
|
||||
"devDependencies": {
|
||||
"@trivago/prettier-plugin-sort-imports": "^4.3.0",
|
||||
"@typescript-eslint/eslint-plugin": "^7.11.0",
|
||||
"@vercel/ncc": "^0.38.1",
|
||||
"eslint": "^8.57.0",
|
||||
"eslint-import-resolver-typescript": "^3.6.1",
|
||||
"@typescript-eslint/eslint-plugin": "^7.18.0",
|
||||
"@vercel/ncc": "^0.38.3",
|
||||
"eslint": "^8.57.1",
|
||||
"eslint-import-resolver-typescript": "^3.6.3",
|
||||
"eslint-plugin-github": "^4.10.2",
|
||||
"eslint-plugin-import": "^2.29.1",
|
||||
"eslint-plugin-prettier": "^5.1.3",
|
||||
"prettier": "^3.2.5",
|
||||
"tsup": "^8.0.2",
|
||||
"typescript": "^5.4.5",
|
||||
"eslint-plugin-import": "^2.31.0",
|
||||
"eslint-plugin-prettier": "^5.2.1",
|
||||
"prettier": "^3.3.3",
|
||||
"tsup": "^8.3.5",
|
||||
"typescript": "^5.6.3",
|
||||
"vitest": "^1.6.0"
|
||||
}
|
||||
}
|
||||
|
|
2190
pnpm-lock.yaml
2190
pnpm-lock.yaml
File diff suppressed because it is too large
Load diff
|
@ -24,7 +24,8 @@ test("Nix command arguments", () => {
|
|||
"flake",
|
||||
"update",
|
||||
"--commit-lock-file",
|
||||
"--commit-lockfile-summary",
|
||||
"--option",
|
||||
"commit-lockfile-summary",
|
||||
"just testing",
|
||||
],
|
||||
},
|
||||
|
@ -42,7 +43,8 @@ test("Nix command arguments", () => {
|
|||
"--update-input",
|
||||
"rust-overlay",
|
||||
"--commit-lock-file",
|
||||
"--commit-lockfile-summary",
|
||||
"--option",
|
||||
"commit-lockfile-summary",
|
||||
"just testing",
|
||||
],
|
||||
},
|
||||
|
@ -57,7 +59,8 @@ test("Nix command arguments", () => {
|
|||
"flake",
|
||||
"update",
|
||||
"--commit-lock-file",
|
||||
"--commit-lockfile-summary",
|
||||
"--option",
|
||||
"commit-lockfile-summary",
|
||||
"just testing",
|
||||
],
|
||||
},
|
||||
|
|
15
src/nix.ts
15
src/nix.ts
|
@ -9,10 +9,23 @@ export function makeNixCommandArgs(
|
|||
input,
|
||||
]);
|
||||
|
||||
// NOTE(cole-h): In Nix versions 2.23.0 and later, `commit-lockfile-summary` became an alias to
|
||||
// the setting `commit-lock-file-summary` (https://github.com/NixOS/nix/pull/10691), and Nix does
|
||||
// not treat aliases the same as their "real" setting by requiring setting aliases to be
|
||||
// configured via `--option <alias name> <option value>`
|
||||
// (https://github.com/NixOS/nix/issues/10989).
|
||||
// So, we go the long way so that we can support versions both before and after Nix 2.23.0.
|
||||
const lockfileSummaryFlags = [
|
||||
"--option",
|
||||
"commit-lockfile-summary",
|
||||
commitMessage,
|
||||
];
|
||||
|
||||
const updateLockMechanism = flakeInputFlags.length === 0 ? "update" : "lock";
|
||||
|
||||
return nixOptions
|
||||
.concat(["flake", updateLockMechanism])
|
||||
.concat(flakeInputFlags)
|
||||
.concat(["--commit-lock-file", "--commit-lockfile-summary", commitMessage]);
|
||||
.concat(["--commit-lock-file"])
|
||||
.concat(lockfileSummaryFlags);
|
||||
}
|
||||
|
|
0
test
Normal file
0
test
Normal file
Loading…
Reference in a new issue