Skip to content
update rpm packages

update rpm packages #25

Sign in to view logs

update rpm packages

update rpm packages #25

Workflow file for this run

.github/workflows/rpm_updates.yml at 4ecf336
name: update rpm packages
on:
workflow_dispatch:
schedule:
- cron: "0 19 * * 0" # 7pm UTC on Sundays
jobs:
update-rpm-packages:
runs-on: ubuntu-22.04
timeout-minutes: 60
steps:
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with:
ref: ${{ !github.event.pull_request.head.repo.fork && github.head_ref || '' }}
token: ${{ !github.event.pull_request.head.repo.fork && secrets.NUNKI_CI_COMMIT_PUSH_PR || github.token }}
- uses: ./.github/actions/setup_nix
with:
githubToken: ${{ secrets.GITHUB_TOKEN }}
cachixToken: ${{ secrets.CACHIX_AUTH_TOKEN }}
- name: Update Microsoft RPMs
run: |
nix run .#rpm-pin-vendor -- kata-packages-uvm kata-packages-uvm-coco systemd libseccomp > packages/by-name/microsoft/kata-image/package-index.json
- name: Update Kata RPMs
run: |
nix run .#rpm-pin-vendor -- kata-packages-uvm kata-packages-uvm-coco systemd libseccomp core-packages-base-image > packages/by-name/kata/kata-image/package-index.json
- name: Create PR
uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5
with:
title: "deps: update pinned rpm packages"
body: "Automated updated created by [rpm_updates workflow](https://github.com/edgelesssys/contrast/blob/main/.github/workflows/rpm_updates.yml)."
commit-message: "deps: update pinned rpm packages"
base: main
draft: false
labels: "dependencies"
committer: edgelessci <[email protected]>
author: edgelessci <[email protected]>
token: ${{ secrets.NUNKI_CI_COMMIT_PUSH_PR }}
- name: Notify teams channel of failure
if: ${{ failure() && github.ref == 'main' }}
uses: ./.github/actions/post_to_teams
with:
webhook: ${{ secrets.TEAMS_CI_WEBHOOK }}
title: "Failed to update RPM packages"
message: ""