thomas/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0e854495ff72bc9be78c09193d2c3e6071976052
nixos-config/.gitea/workflows/helium-update.yml
T

141 lines
4.6 KiB
YAML
Raw Blame History

name: helium update
on:
schedule:
- cron: "0 6 * * *"
workflow_dispatch:
jobs:
update-helium:
runs-on: ubuntu-latest
steps:
- name: checkout
uses: actions/checkout@v4
with:
fetch-depth: 0
- name: install nix
uses: cachix/install-nix-action@v27
with:
nix_path: nixpkgs=channel:nixos-unstable
- name: check latest helium release and update file
id: update
shell: bash
run: |
set -euo pipefail
FILE="modules/pkgs/helium.nix"
current_version=$(python - <<'PY'
import re
p='modules/pkgs/helium.nix'
s=open(p).read()
m=re.search(r'version\s*=\s*"([^"]+)";', s)
print(m.group(1) if m else "")
PY
)
latest_version=$(curl -fsSLI -o /dev/null -w '%{url_effective}' \
'https://github.com/imputnet/helium-linux/releases/latest' \
| sed -E 's#.*/##' \
| sed 's/^v//')
echo "current=$current_version"
echo "latest=$latest_version"
if [ -z "$latest_version" ] || [ "$latest_version" = "$current_version" ]; then
echo "updated=false" >> "$GITHUB_OUTPUT"
exit 0
fi
url="https://github.com/imputnet/helium-linux/releases/download/${latest_version}/helium-${latest_version}-x86_64.AppImage"
new_hash=$(nix store prefetch-file --json "$url" | python -c 'import json,sys; print(json.load(sys.stdin)["hash"])')
export LATEST_VERSION="$latest_version"
export NEW_HASH="$new_hash"
python - <<PY
import re
import os
p='modules/pkgs/helium.nix'
s=open(p).read()
s=re.sub(r'version\s*=\s*"[^"]+"', f'version = "{os.environ["LATEST_VERSION"]}"', s, count=1)
s=re.sub(r'hash\s*=\s*"[^"]+"', f'hash = "{os.environ["NEW_HASH"]}"', s, count=1)
open(p,'w').write(s)
PY
echo "updated=true" >> "$GITHUB_OUTPUT"
echo "version=$latest_version" >> "$GITHUB_OUTPUT"
- name: create branch and commit
if: steps.update.outputs.updated == 'true'
shell: bash
run: |
set -euo pipefail
branch="bot/helium-${{ steps.update.outputs.version }}"
git config user.name "gitea actions"
git config user.email "actions@localhost"
git checkout -B "$branch"
git add modules/pkgs/helium.nix
git commit -m "update helium to ${{ steps.update.outputs.version }}"
git push --force origin "$branch"
- name: open pull request
if: steps.update.outputs.updated == 'true'
env:
GITEA_TOKEN: ${{ secrets.tea_token || secrets.TEA_TOKEN }}
shell: bash
run: |
set -euo pipefail
api="https://gitea.unrail.xyz/api/v1/repos/thomas/nixos-config"
branch="bot/helium-${{ steps.update.outputs.version }}"
if [ -z "${GITEA_TOKEN:-}" ]; then
echo "GITEA_TOKEN is empty (check repo secret tea_token/TEA_TOKEN)"
exit 1
fi
# Skip if PR for this branch already exists
existing=$(curl -fsS \
-H "Authorization: token ${GITEA_TOKEN}" \
"${api}/pulls?state=open" \
| python -c 'import json,sys; d=json.load(sys.stdin); b="'"$branch"'"; print(next((str(pr["number"]) for pr in d if pr.get("head",{}).get("ref")==b), ""))')
if [ -n "$existing" ]; then
echo "PR already exists: #$existing"
exit 0
fi
echo "Creating PR..."
created="false"
for head in "${branch}" "thomas:${branch}"; do
echo "Trying head=${head}"
payload=$(printf '{"title":"update helium to %s","head":"%s","base":"main","body":"automated update of helium appimage version and hash"}' \
"${{ steps.update.outputs.version }}" "$head")
response=$(curl -sS -w '\n%{http_code}' -X POST \
-H "Authorization: token ${GITEA_TOKEN}" \
-H "Content-Type: application/json" \
"${api}/pulls" \
-d "$payload")
body=$(printf '%s\n' "$response" | sed '$d')
code=$(printf '%s\n' "$response" | tail -n1)
echo "Create PR status: $code"
echo "$body"
if [ "$code" -ge 200 ] && [ "$code" -lt 300 ]; then
created="true"
break
fi
done
if [ "$created" != "true" ]; then
echo "PR creation failed"
exit 1
fi
Reference in New Issue View Git Blame Copy Permalink